ALT Linux Team

Branch sisyphus update on 2022-10-05

2022-10-05

ALT-BU-2022-6382-13

Branch sisyphus update bulletin.

ALT-PU-2022-2715-2

Package php7 updated to version 7.4.32-alt1 for branch sisyphus in task 307739.

Closed vulnerabilities

Published: 2024-07-31
Modified: 2024-09-24

BDU:2024-05844

Уязвимость интерпретатора языка программирования PHP, связанная с неправильной проверкой входных данных, позволяющая нарушителю устанавливать в браузере стандартный небезопасный файл cookie

Severity: MEDIUM (6.5)Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Severity: HIGH (7.8)Vector: AV:N/AC:L/Au:N/C:N/I:C/A:N
References:
Published: 2024-09-23
Modified: 2025-12-02

BDU:2024-07319

Уязвимость языка программирования PHP, связанная с выполнением цикла с недоступным условием выхода, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.5)Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM (4.6)Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C
References:
Published: 2022-09-28
Modified: 2024-11-21

CVE-2022-31628

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.

Severity: MEDIUM (5.5)Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2022-09-28
Modified: 2025-11-04

CVE-2022-31629

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.

Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
References:

ALT-PU-2022-2727-2

Package u-boot-tools updated to version 2022.10-alt1 for branch sisyphus in task 307855.

Closed vulnerabilities

Published: 2025-10-31

BDU:2025-13599

Уязвимость компонента drivers/usb/gadget/f_dfu.c загрузчика U-Boot, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

Severity: HIGH (7.7)Vector: AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Severity: MEDIUM (6.2)Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
References:
Published: 2022-09-23
Modified: 2025-11-03

CVE-2022-2347

There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download setup packet with a `wLength` greater than 4096 bytes, they can write beyond the heap-allocated request buffer.

Severity: HIGH (7.1)Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References:

ALT-PU-2022-2730-1

Package kernel-image-un-def updated to version 5.19.13-alt1 for branch sisyphus in task 307867.

Closed vulnerabilities

Published: 2022-10-12
Modified: 2024-11-07

BDU:2022-06228

Уязвимость функции roccat_report_event (drivers/hid/hid-roccat.c) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.7)Vector: AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM (4.6)Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C
References:
Published: 2022-12-22
Modified: 2023-12-20

BDU:2022-07356

Уязвимость драйвера drivers/char/pcmcia/synclink_cs.c ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.2)Vector: AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM (4.0)Vector: AV:L/AC:H/Au:N/C:N/I:N/A:C
References:
Published: 2022-12-22
Modified: 2024-11-07

BDU:2022-07357

Уязвимость драйвера drivers/video/fbdev/smscufx.c ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (4.2)Vector: AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM (4.0)Vector: AV:L/AC:H/Au:N/C:N/I:N/A:C
References:
Published: 2022-09-30
Modified: 2025-05-20

CVE-2022-41848

drivers/char/pcmcia/synclink_cs.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl, aka a race condition between mgslpc_ioctl and mgslpc_detach.

Severity: MEDIUM (4.2)Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2022-09-30
Modified: 2024-11-21

CVE-2022-41849

drivers/video/fbdev/smscufx.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open(), aka a race condition between ufx_ops_open and ufx_usb_disconnect.

Severity: MEDIUM (4.2)Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2022-09-30
Modified: 2024-11-21

CVE-2022-41850

roccat_report_event in drivers/hid/hid-roccat.c in the Linux kernel through 5.19.12 has a race condition and resultant use-after-free in certain situations where a report is received while copying a report->value is in progress.

Severity: MEDIUM (4.7)Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
References:

Closed bugs

Bug #43916

Модуль amdgpu собран без поддержки видеокарт Southern Islands

VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: 2.1.2
Back to top