ALT Linux Team

Branch sisyphus_e2k update on 2022-01-14

2022-01-14

ALT-BU-2022-3600-1

Branch sisyphus_e2k update bulletin.

ALT-PU-2022-3596-1

Package libupnp updated to version 1.14.12-alt1 for branch sisyphus_e2k.

Closed vulnerabilities

Published: 2021-03-12

BDU:2021-01679

Уязвимость функции Parser_parseDocument() набора средств для UPnP устройств PUPnP, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2021-03-12
Modified: 2024-11-21

CVE-2021-28302

A stack overflow in pupnp before version 1.14.5 can cause the denial of service through the Parser_parseDocument() function. ixmlNode_free() will release a child node recursively, which will consume stack space and lead to a crash.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2022-3597-1

Package weston updated to version 9.0.0-alt1.2 for branch sisyphus_e2k.

Closed bugs

Bug #41205

Harden permissions for weston-launch

ALT-PU-2022-3598-1

Package packagekit updated to version 1.2.4-alt4 for branch sisyphus_e2k.

Closed bugs

Bug #41633

Добавить ожидание сети в systemd-сервис

ALT-PU-2022-3599-1

Package biew updated to version 6.1.0-alt4 for branch sisyphus_e2k.

Closed bugs

Bug #40429

biew FTBFS on aarch64, armh, and ppc64le

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top