ALT Linux Team

Branch sisyphus_riscv64 update on 2024-08-02

2024-08-02

ALT-BU-2024-10688-1

Branch sisyphus_riscv64 update bulletin.

ALT-PU-2024-10684-1

Package openvpn updated to version 2.6.12-alt1 for branch sisyphus_riscv64.

Closed vulnerabilities

Published: 2024-07-09
Modified: 2024-11-21

CVE-2024-28882

OpenVPN from 2.6.0 through 2.6.10 in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session

References:
Published: 2025-04-03
Modified: 2025-04-04

CVE-2024-4877

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges

References:
Published: 2025-01-06
Modified: 2025-04-03

CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs.

References:

ALT-PU-2024-10686-1

Package docker-compose-v2 updated to version 2.29.1-alt2 for branch sisyphus_riscv64.

Closed bugs

Bug #51024

dep on docker-cli is wrong

ALT-PU-2024-10687-1

Package onboard updated to version 1.4.1-alt7.git8de1177 for branch sisyphus_riscv64.

Closed bugs

Bug #49818

Завершает работу при наведении курсора

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top