ALT Linux Team

Branch p10 update on 2024-08-29

2024-08-29

ALT-BU-2024-11789-1

Branch p10 update bulletin.

ALT-PU-2024-11080-3

Package evms updated to version 2.5.5-alt80 for branch p10 in task 354970.

Closed bugs

Bug #48723

После создания raid1 на nvme разделе остается device-mapper устройство раздела

ALT-PU-2024-11082-3

Package guile-evms updated to version 0.6.6-alt1 for branch p10 in task 354970.

Closed bugs

Bug #49698

Расширение поддержки LVM (/boot LV внутри LVM, RAID LV)

ALT-PU-2024-11706-2

Package mongo6.0 updated to version 6.0.17-alt0.p10.1 for branch p10 in task 356128.

Closed vulnerabilities

Published: 2024-08-07
Modified: 2024-09-19

CVE-2024-7553

Incorrect validation of files loaded from a local untrusted directory may allow local privilege escalation if the underlying operating systems is Windows. This may result in the application executing arbitrary behaviour determined by the contents of untrusted files. This issue affects MongoDB Server v5.0 versions prior to 5.0.27, MongoDB Server v6.0 versions prior to 6.0.16, MongoDB Server v7.0 versions prior to 7.0.12, MongoDB Server v7.3 versions prior 7.3.3, MongoDB C Driver versions prior to 1.26.2 and MongoDB PHP Driver versions prior to 1.18.1. Required Configuration: Only environments with Windows as the underlying operating system is affected by this issue

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top