Branch sisyphus update bulletin.

Package samba updated to version 4.19.3-alt1 for branch sisyphus in task 335768.

Published: 2023-01-17
Modified: 2025-01-22

CVE-2018-14628

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store.

Severity: MEDIUM (4.3) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References:

Package podman updated to version 4.8.1-alt1 for branch sisyphus in task 335815.

/usr/libexec/podman/catatonit: no such file or directory

Package systemd updated to version 254.7-alt1 for branch sisyphus in task 336047.

Published: 2023-06-13
Modified: 2024-11-21

CVE-2023-31439

An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

References:

Package Mesa updated to version 23.3.0-alt4 for branch sisyphus in task 336061.

Падение инсталятора и центра управления системой с Mesa >= 23.3.0-alt1 на системах без аппаратного ускорения

Version: 2.1.0

Branch sisyphus update on 2023-12-08

ALT-BU-2023-7900-1

ALT-PU-2023-7788-2

Closed vulnerabilities

CVE-2018-14628

ALT-PU-2023-7841-2

Closed bugs

Bug #47032

ALT-PU-2023-7891-2

Closed vulnerabilities

CVE-2023-31439

ALT-PU-2023-7895-1

Closed bugs

Bug #48653