ALT Linux Team

Branch sisyphus update on 2021-09-25

2021-09-25

ALT-BU-2021-4228-2

Branch sisyphus update bulletin.

ALT-PU-2021-2876-1

Package php8.0 updated to version 8.0.11-alt1 for branch sisyphus in task 285815.

Closed vulnerabilities

Published: 2017-08-10
Modified: 2021-03-23

BDU:2017-01814

Уязвимость функции zend_string_extend интерпретатора PHP, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: HIGH (7.5)Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
References:
Published: 2021-12-17
Modified: 2024-09-16

BDU:2021-06176

Уязвимость функции ZipArchive::extractTo интерпретатора PHP, позволяющая нарушителю создать или перезаписать файлы

Severity: MEDIUM (5.3)Vector: AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
Severity: HIGH (7.1)Vector: AV:N/AC:M/Au:N/C:N/I:C/A:N
References:
Published: 2017-05-12
Modified: 2025-04-20

CVE-2017-8923

The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.

Severity: HIGH (7.5)Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Severity: CRITICAL (9.8)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2021-10-04
Modified: 2024-11-21

CVE-2021-21706

In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS permissions.

Severity: MEDIUM (4.3)Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
References:

ALT-PU-2021-2883-1

Package propagator updated to version 20210922-alt1 for branch sisyphus in task 284872.

Closed bugs

Bug #40710

propagator: загрузка по http с нераспакованной ISO

ALT-PU-2021-2884-2

Package ImageMagick updated to version 6.9.12.23-alt1 for branch sisyphus in task 285886.

Closed vulnerabilities

Published: 2023-07-20
Modified: 2024-04-03

BDU:2023-03836

Уязвимость файла policy.xml консольного графического редактора ImageMagick, позволяющая нарушителю получить доступ к конфиденциальным данным и нарушить их целостность

Severity: MEDIUM (4.4)Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Severity: LOW (3.2)Vector: AV:L/AC:L/Au:S/C:P/I:P/A:N
References:
Published: 2021-09-13
Modified: 2024-11-21

CVE-2021-39212

ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when specifically excluded by a `module` policy in `policy.xml`. ex. . The issue has been resolved in ImageMagick 7.1.0-7 and in 6.9.12-22. Fortunately, in the wild, few users utilize the `module` policy and instead use the `coder` policy that is also our workaround recommendation: .

Severity: LOW (3.6)Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N
Severity: LOW (3.6)Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
References:

ALT-PU-2021-4931-1

Package php8.0-soap updated to version 8.0.11-alt1 for branch sisyphus in task 285815.

Closed vulnerabilities

Published: 2017-08-10
Modified: 2021-03-23

BDU:2017-01814

Уязвимость функции zend_string_extend интерпретатора PHP, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: HIGH (7.5)Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
References:
Published: 2021-12-17
Modified: 2024-09-16

BDU:2021-06176

Уязвимость функции ZipArchive::extractTo интерпретатора PHP, позволяющая нарушителю создать или перезаписать файлы

Severity: MEDIUM (5.3)Vector: AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
Severity: HIGH (7.1)Vector: AV:N/AC:M/Au:N/C:N/I:C/A:N
References:
Published: 2017-05-12
Modified: 2025-04-20

CVE-2017-8923

The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.

Severity: HIGH (7.5)Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Severity: CRITICAL (9.8)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2021-10-04
Modified: 2024-11-21

CVE-2021-21706

In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS permissions.

Severity: MEDIUM (4.3)Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
References:
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: 2.1.2
Back to top