2023-03-08
ALT-BU-2023-2792-1
Branch sisyphus update bulletin.
Package lxqt-config updated to version 1.2.0-alt2 for branch sisyphus in task 316362.
Closed bugs
Не собирается с plasma-5.27
Closed vulnerabilities
Published: 2023-03-07
BDU:2023-02657
Уязвимость методов ScalarMult и ScalarBaseMult языка программирования Go, позволяющая нарушителю оказать воздействие на целостность защищаемой информации
Severity: MEDIUM (5.3)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
References:
Published: 2023-03-08
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2023-24532
The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars (a scalar larger than the order of the curve). This does not impact usages of crypto/ecdsa or crypto/ecdh.
Severity: MEDIUM (5.3)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
References:
- https://go.dev/cl/471255
- https://go.dev/cl/471255
- https://go.dev/issue/58647
- https://go.dev/issue/58647
- https://groups.google.com/g/golang-announce/c/3-TpUx48iQY
- https://groups.google.com/g/golang-announce/c/3-TpUx48iQY
- https://pkg.go.dev/vuln/GO-2023-1621
- https://pkg.go.dev/vuln/GO-2023-1621
- https://security.netapp.com/advisory/ntap-20230331-0011/
Package rednotebook updated to version 2.29.3-alt1 for branch sisyphus in task 316369.
Closed bugs
RedNotebook не запускается