ALT-BU-2022-6296-1
Branch sisyphus_e2k update bulletin.
Package eepm updated to version 3.27.0-alt1 for branch sisyphus_e2k.
Closed bugs
epm play onlyoffice: отсутствует иконка приложения
epm play slack: find-requires: ERROR: /usr/lib/rpm/lib.req failed
epm play flyview-client: find-requires: ERROR: /usr/lib/rpm/lib.req failed
epm play flyview-server: не устанавливается в связи с неудовлетворенными зависимостями
Команда "epm install --repack rstudio-2022.07.1-554-x86_64.rpm" завершается с ошибкой из-за python
Package freeipa updated to version 4.9.10-alt3 for branch sisyphus_e2k.
Closed bugs
Ошибка в связанных пакетах рушит работу системы
Package jpegoptim updated to version 1.5.0-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2022-32325
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c.
- https://github.com/tjko/jpegoptim/issues/107
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRPXTW3IARYQVKZBPIPIEKABN7DSS5XY/
- https://github.com/tjko/jpegoptim/issues/107
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XRPXTW3IARYQVKZBPIPIEKABN7DSS5XY/
Package libstfl0 updated to version 0.24-alt10 for branch sisyphus_e2k.
Closed bugs
cannot load such file -- stfl
Package expat updated to version 2.4.9-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
Modified: 2025-09-05
BDU:2023-02596
Уязвимость функции doContent файла xmlparse.c библиотеки синтаксического анализатора XML libexpat, позволяющая нарушителю выполнить произвольный код
Modified: 2025-05-30
CVE-2022-40674
libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
- https://github.com/libexpat/libexpat/pull/629
- https://github.com/libexpat/libexpat/pull/640
- https://lists.debian.org/debian-lts-announce/2022/09/msg00029.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GSVZN3IJ6OCPSJL7AEX3ZHSHAHFOGESK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J2IGJNHFV53PYST7VQV3T4NHVYAMXA36/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQB6FJAM5YQ35SF5B2MN25Y2FX56EOEZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2ZKEPGFCZ7R6DRVH3K6RBJPT42ZBEG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XCGBVQQ47URGJAZWHCISHDWF6QBTV2LE/
- https://security.gentoo.org/glsa/202209-24
- https://security.gentoo.org/glsa/202211-06
- https://security.netapp.com/advisory/ntap-20221028-0008/
- https://www.debian.org/security/2022/dsa-5236
- https://github.com/libexpat/libexpat/pull/629
- https://github.com/libexpat/libexpat/pull/640
- https://lists.debian.org/debian-lts-announce/2022/09/msg00029.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GSVZN3IJ6OCPSJL7AEX3ZHSHAHFOGESK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J2IGJNHFV53PYST7VQV3T4NHVYAMXA36/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQB6FJAM5YQ35SF5B2MN25Y2FX56EOEZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2ZKEPGFCZ7R6DRVH3K6RBJPT42ZBEG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XCGBVQQ47URGJAZWHCISHDWF6QBTV2LE/
- https://security.gentoo.org/glsa/202209-24
- https://security.gentoo.org/glsa/202211-06
- https://security.netapp.com/advisory/ntap-20221028-0008/
- https://www.debian.org/security/2022/dsa-5236