ALT-BU-2024-10682-1
Branch sisyphus update bulletin.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2024-28882
OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session
Modified: 2025-04-04
CVE-2024-4877
OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges
Modified: 2025-04-03
CVE-2024-5594
OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs.
Closed bugs
Update zig to 0.13.0
Package alt-csp-cryptopro updated to version 0.3.0-alt4 for branch sisyphus in task 354134.
Closed bugs
Задана неверная маска или ключ при подписании группы файлов с помощью alt-csp-cryptopro
Package docker-compose-v2 updated to version 2.29.1-alt2 for branch sisyphus in task 354142.
Closed bugs
dep on docker-cli is wrong
Closed bugs
Завершает работу при наведении курсора
Package plasma5-kscreen updated to version 5.27.11-alt2 for branch sisyphus in task 354159.
Closed bugs
Некорректное отображение виджета "Настройка экранов"
Package moka-icon-theme updated to version 5.3.6-alt2 for branch sisyphus in task 354184.
Closed bugs
Moka наследует несуществующую тему Faba