ALT Linux Team

Branch sisyphus_riscv64 update on 2023-02-25

2023-02-25

ALT-BU-2023-2706-1

Branch sisyphus_riscv64 update bulletin.

ALT-PU-2023-2704-1

Package gdal updated to version 3.6.2-alt1 for branch sisyphus_riscv64.

Closed vulnerabilities

Published: 2021-07-20

BDU:2022-02059

Уязвимость компонента netCDF библиотеки-транслятора для геопространственных данных GDAL, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
Published: 2021-07-20
Modified: 2024-11-21

CVE-2019-25050

netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (called from netCDFDataset::~netCDFDataset and netCDFDataset::~netCDFDataset).

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:

ALT-PU-2023-2705-1

Package sqlite3 updated to version 3.41.0-alt1 for branch sisyphus_riscv64.

Closed vulnerabilities

Published: 2023-06-23
Modified: 2023-11-07

CVE-2023-36191

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.1
Back to top