ALT Linux Team

Branch sisyphus update on 2021-06-30

2021-06-30

ALT-BU-2021-4008-1

Branch sisyphus update bulletin.

ALT-PU-2021-2082-1

Package cifs-utils updated to version 6.13-alt1 for branch sisyphus in task 271899.

Closed vulnerabilities

Published: 2021-04-20
Modified: 2024-11-21

CVE-2021-20208

A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.

Severity: MEDIUM (6.1) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:N
References:

ALT-PU-2021-2084-1

Package python3 updated to version 3.9.6-alt1 for branch sisyphus in task 276295.

Closed vulnerabilities

Published: 2021-05-03

BDU:2022-05830

Уязвимость компонента urllib интерпретатора языка программирования Python, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2022-03-04
Modified: 2024-11-21

CVE-2021-3737

A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinite loop, consuming CPU time. The highest threat from this vulnerability is to system availability.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

Closed bugs

Bug #40291

В python3 два раза собирается shared сборка.

ALT-PU-2021-2086-1

Package tcl-tktable updated to version 2.10-alt2 for branch sisyphus in task 276355.

Closed bugs

Bug #40311

Обновить или убить tcl-tktable

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top