Branch sisyphus_riscv64 update bulletin.

Package samba updated to version 4.19.3-alt1 for branch sisyphus_riscv64.

Published: 2023-01-17
Modified: 2025-01-22

CVE-2018-14628

An information leak vulnerability was discovered in Samba's LDAP server. Due to missing access control checks, an authenticated but unprivileged attacker could discover the names and preserved attributes of deleted objects in the LDAP store.

Severity: MEDIUM (4.3) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References:

Package podman updated to version 4.8.1-alt1 for branch sisyphus_riscv64.

/usr/libexec/podman/catatonit: no such file or directory

Package systemd updated to version 254.7-alt1 for branch sisyphus_riscv64.

Published: 2023-06-13
Modified: 2024-11-21

CVE-2023-31439

An issue was discovered in systemd 253. An attacker can modify the contents of past events in a sealed log file and then adjust the file such that checking the integrity shows no error, despite modifications. NOTE: the vendor reportedly sent "a reply denying that any of the finding was a security vulnerability."

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

References:

Version: 2.1.0

Branch sisyphus_riscv64 update on 2023-12-10

ALT-BU-2023-7968-1

ALT-PU-2023-7965-1

Closed vulnerabilities

CVE-2018-14628

ALT-PU-2023-7966-1

Closed bugs

Bug #47032

ALT-PU-2023-7967-1

Closed vulnerabilities

CVE-2023-31439