Branch p10 update bulletin.

Package myconnector updated to version 2.4-alt2 for branch p10 in task 309675.

Текстовый редактор - pluma - не найден!

На Workstation K 9.2 не работает киоск с веб-страницей

Дублируется локализация в подсказке для кнопки "Режим КИОСК"

Package erlang updated to version 25.1.2-alt1 for branch p10 in task 309144.

Published: 2022-09-21
Modified: 2024-11-21

CVE-2022-37026

In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before 25.0.2, there is a Client Authentication Bypass in certain client-certification situations for SSL, TLS, and DTLS.

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package libpixman updated to version 0.42.2-alt1 for branch p10 in task 309562.

Published: 2022-11-03

BDU:2022-06667

Уязвимость функции rasterize_edges_8 библиотеки Pixman, позволяющая нарушителю выполнить произвольный код

Severity: HIGH (8.8) Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

CVE-2022-44638

Published: 2022-11-03
Modified: 2024-11-21

CVE-2022-44638

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Branch p10 update on 2022-11-23

ALT-BU-2022-7171-1

ALT-PU-2022-3186-1

Closed bugs

Bug #43114

Bug #43115

Bug #43118

ALT-PU-2022-3187-1

Closed vulnerabilities

CVE-2022-37026

ALT-PU-2022-3188-1

Closed vulnerabilities

BDU:2022-06667

CVE-2022-44638