ALT-BU-2024-12379-1
Branch c10f2 update bulletin.
Package python3-module-Pygments updated to version 2.17.2-alt1 for branch c10f2 in task 348659.
Closed vulnerabilities
BDU:2024-00830
Уязвимость файла pygments/lexers/smithy.py компонента SmithyLexer программы подсветки синтаксиса Pygments, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2022-40896
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.
- https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
- https://github.com/pygments/pygments/blob/master/pygments/lexers/smithy.py#L61
- FEDORA-2024-8eaf80107a
- FEDORA-2024-8eaf80107a
- FEDORA-2024-db87ce2a47
- FEDORA-2024-db87ce2a47
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EZGMXALE3HSP4OXC7UUWIKX3OXKZDTY3/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VUZO4BQCIY2S2KZYHERQMKURB7AHXDBO/
- https://pypi.org/project/Pygments/
- https://pypi.org/project/Pygments/
- https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
- https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages-part-2/
Package python3-module-mkdocs updated to version 1.4.0-alt0.c10.1 for branch c10f2 in task 348659.
Closed bugs
Не загружаются иконочные шрифты
Closed bugs
После создания raid1 на nvme разделе остается device-mapper устройство раздела
Package guile-evms updated to version 0.6.6-alt1 for branch c10f2 in task 356272.
Closed bugs
Расширение поддержки LVM (/boot LV внутри LVM, RAID LV)
Closed vulnerabilities
Modified: 2024-11-21
CVE-2022-36148
fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at /src/wav_reader.c.
Modified: 2025-01-03
CVE-2023-34823
fdkaac before 1.0.5 was discovered to contain a stack overflow in read_callback function in src/main.c.
Modified: 2025-01-03
CVE-2023-34824
fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in caf_info function in caf_reader.c.