ALT-BU-2023-7570-1
Branch sisyphus update bulletin.
Package papirus-icon-theme updated to version 20231101-alt2 for branch sisyphus in task 334536.
Closed bugs
papirus-remix-icon-theme со всеми цветовыми темами
Closed vulnerabilities
BDU:2023-02021
Уязвимость компонента mod_proxy_uwsgi веб-сервера Apache HTTP Server связанная с недостатками обработки HTTP-запросов, позволяющая нарушителю выполнять атаку "контрабанда HTTP-запросов"
Modified: 2025-02-13
CVE-2023-27522
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can truncate/split the response forwarded to the client.
- https://httpd.apache.org/security/vulnerabilities_24.html
- https://httpd.apache.org/security/vulnerabilities_24.html
- https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html
- https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html
- https://security.gentoo.org/glsa/202309-01
- https://security.gentoo.org/glsa/202309-01
Closed vulnerabilities
Modified: 2024-11-21
CVE-2023-1672
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time window where Tang private keys become readable by other processes on the same host.
- https://access.redhat.com/security/cve/CVE-2023-1672
- https://access.redhat.com/security/cve/CVE-2023-1672
- RHBZ#2180999
- RHBZ#2180999
- https://github.com/latchset/tang/commit/8dbbed10870378f1b2c3cf3df2ea7edca7617096
- https://github.com/latchset/tang/commit/8dbbed10870378f1b2c3cf3df2ea7edca7617096
- https://lists.debian.org/debian-lts-announce/2023/11/msg00004.html
- https://lists.debian.org/debian-lts-announce/2023/11/msg00004.html
- https://www.openwall.com/lists/oss-security/2023/06/15/1
- https://www.openwall.com/lists/oss-security/2023/06/15/1
Package qbittorrent updated to version 4.6.1-alt1 for branch sisyphus in task 335054.
Closed bugs
Пропал значок в трее
Пропал значок в трее