Исправить сборку stk

Исправить сборку apache-commons-lang3

icon-theme-Papirus-Education: missing icons for NetworkManager-applet-gtk

(alt-education-10.2-x86_64.iso) new user defaults for icon-theme-Papirus-Education breaks network applet

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.

Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potential truncation or overruns during the initialisation of some symmetric ciphers. Impact summary: A truncation in the IV can result in non-uniqueness, which could result in loss of confidentiality for some cipher modes. When calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or EVP_CipherInit_ex2() the provided OSSL_PARAM array is processed after the key and IV have been established. Any alterations to the key length, via the "keylen" parameter or the IV length, via the "ivlen" parameter, within the OSSL_PARAM array will not take effect as intended, potentially causing truncation or overreading of these values. The following ciphers and cipher modes are impacted: RC2, RC4, RC5, CCM, GCM and OCB. For the CCM, GCM and OCB cipher modes, truncation of the IV can result in loss of confidentiality. For example, when following NIST's SP 800-38D section 8.2.1 guidance for constructing a deterministic IV for AES in GCM mode, truncation of the counter portion could lead to IV reuse. Both truncations and overruns of the key and overruns of the IV will produce incorrect results and could, in some cases, trigger a memory exception. However, these issues are not currently assessed as security critical. Changing the key and/or IV lengths is not considered to be a common operation and the vulnerable API was recently introduced. Furthermore it is likely that application developers will have spotted this problem during testing since decryption would fail unless both peers in the communication were similarly vulnerable. For these reasons we expect the probability of an application being vulnerable to this to be quite low. However if an application is vulnerable then this issue is considered very serious. For these reasons we have assessed this issue as Moderate severity overall. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this because the issue lies outside of the FIPS provider boundary. OpenSSL 3.1 and 3.0 are vulnerable to this issue.

Ошибка в справке в пункте Брандмауэр - список блокируемых хостов.

Локализация системного аудита в альтераторе отсутствует

Отсутствует справочная информация для модуля Системный аудит в альтераторе

Отсутствует справочная информация для модуля Групповые политики в альтераторе

Отсутствует предупреждение об автологине в справочной информации для модуля Настройка нескольких рабочих мест

Поправить опечатку "Сетевой тунель" в альтераторе

Справка "Дата и время": в разделе "Выбор источника сигнала времени" присутствует несогласованное предложение

В справке "Дата и время" присутствуют пунктуационные ошибки

В справке "Загрузчик Grub" предложение построено неверно

В справке "Перенаправление портов" присутствуют пунктуационные и смысловые ошибки

Опечатка и пунктуационная ошибка в справке "Ручной режим управления"

Лишние запятые в справке "Установка программ"

Пунктуационные ошибки в Справке: Обновления ядра

Ошибки в Справке модуля Обновление системы

Нет перевода для модуля

Исправить сборку autogen

не работает suspend to ram

Заменить абсолютный симлинк на относительный

pve-cluster: cyclic build dependency (blocks perl 5.38 update)

Заменить абсолютный симлинк на относительный

Заменить абсолютный симлинк на относительный

Уязвимость функций XIChangeDeviceProperty (Xi/xiproperty.c) и RRChangeOutputProperty (randr/rrproperty.c) сервера X Window System Xorg-server, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

Уязвимость функции DestroyWindow пакета xorg-x11-server позволяющая нарушителю вызвать отказ в обслуживании

A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty function in Xi/xiproperty.c and in RRChangeOutputProperty function in randr/rrproperty.c, allowing for possible escalation of privileges or denial of service.

A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is destroyed followed by another window being destroyed.

Исправить сборку xmlgraphics-commons