ALT-BU-2024-10125-1
Branch sisyphus_loongarch64 update bulletin.
Package kf5-kio updated to version 5.116.0-alt3 for branch sisyphus_loongarch64.
Closed bugs
В dolphin в примонтированном сетевом ресурсе файл открывается как папка
Package plasma5-sddm-kcm updated to version 5.27.11-alt2 for branch sisyphus_loongarch64.
Closed bugs
Кнопка выходит за границы окна в настройках SDDM
Визуальные артефакты в kde5-plasma-settings
Package vsftpd updated to version 3.0.5-alt1 for branch sisyphus_loongarch64.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2021-30047
VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed.
Modified: 2024-11-21
CVE-2021-3618
ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
- https://alpaca-attack.com/
- https://alpaca-attack.com/
- https://bugzilla.redhat.com/show_bug.cgi?id=1975623
- https://bugzilla.redhat.com/show_bug.cgi?id=1975623
- [debian-lts-announce] 20221122 [SECURITY] [DLA 3203-1] nginx security update
- [debian-lts-announce] 20221122 [SECURITY] [DLA 3203-1] nginx security update
Package asbru-cm updated to version 6.4.0-alt2 for branch sisyphus_loongarch64.
Closed bugs
Не хвататет зависимостей на libwnck3-gir и libvte3-gir