ALT-BU-2023-7749-1
Branch sisyphus update bulletin.
Closed bugs
Картинка фона рабочего стола: задаёт фоновую картинку по неверному пути
Package admx-basealt updated to version 0.1.13.3-alt1 for branch sisyphus in task 335038.
Closed bugs
Тема курсора: задаёт курсор по неверному пути
Цвета: задаёт курсор по неверному пути
Package NetworkManager-applet-gtk updated to version 1.34.0-alt2 for branch sisyphus in task 335456.
Closed bugs
build with indicator support
Package kde5-kalarm updated to version 23.08.3-alt2 for branch sisyphus in task 335480.
Closed bugs
Некорректно показывается имя в kalarm при удалении календаря
Package kubernetes1.25 updated to version 1.25.16-alt1 for branch sisyphus in task 335528.
Closed vulnerabilities
BDU:2023-07938
Уязвимость утилиты kubelet программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии до уровня администратора
Modified: 2025-01-03
CVE-2023-5528
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
- https://github.com/kubernetes/kubernetes/issues/121879
- https://github.com/kubernetes/kubernetes/issues/121879
- https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA
- https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JH444PWZBINXLLFV7XLIJIZJHSK6UEZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4XZIX727JIKF5RQW7RVVBLWXBCDIBJA7/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7MPGMITSZXUCAVO7Q75675SOLXC2XXU4/
- https://security.netapp.com/advisory/ntap-20240119-0009/
Package kubernetes1.26 updated to version 1.26.11-alt1 for branch sisyphus in task 335528.
Closed vulnerabilities
BDU:2023-07938
Уязвимость утилиты kubelet программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии до уровня администратора
Modified: 2025-01-03
CVE-2023-5528
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
- https://github.com/kubernetes/kubernetes/issues/121879
- https://github.com/kubernetes/kubernetes/issues/121879
- https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA
- https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JH444PWZBINXLLFV7XLIJIZJHSK6UEZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4XZIX727JIKF5RQW7RVVBLWXBCDIBJA7/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7MPGMITSZXUCAVO7Q75675SOLXC2XXU4/
- https://security.netapp.com/advisory/ntap-20240119-0009/
Package pve-access-control updated to version 7.4.3-alt3 for branch sisyphus in task 335541.
Closed bugs
Ошибка входа при использовании 2FA