ALT-BU-2022-5524-1
Branch sisyphus_e2k update bulletin.
Package hardinfo updated to version 0.6-alt2.20220113 for branch sisyphus_e2k.
Closed bugs
Программа не там ищет файлы перевода
Package fdkaac updated to version 1.0.3-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2022-36148
fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at /src/wav_reader.c.
Package tor updated to version 0.4.7.8-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
BDU:2023-02936
Уязвимость анонимного веб-браузера Tor, связанная с некорректной зачисткой или освобождением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-19
CVE-2021-3838
DomPDF before version 2.0.0 is vulnerable to PHAR deserialization due to a lack of checking on the protocol before passing it into the file_get_contents() function. An attacker who can upload files of any type to the server can pass in the phar:// protocol to unserialize the uploaded file and instantiate arbitrary PHP objects. This can lead to remote code execution, especially when DOMPdf is used with frameworks with documented POP chains like Laravel or vulnerable developer code.
Modified: 2024-11-21
CVE-2022-33903
Tor 0.4.7.x before 0.4.7.8 allows a denial of service via the wedging of RTT estimation.
Package installer updated to version 1.11.2-alt2 for branch sisyphus_e2k.
Closed bugs
Поддержка установки при загрузке с ventoy
Package installer-alterator-pkg updated to version 3.0.1-alt1 for branch sisyphus_e2k.
Closed bugs
Groups multiple lists