ALT Linux Team

Branch sisyphus_riscv64 update on 2024-09-26

2024-09-26

ALT-BU-2024-13298-1

Branch sisyphus_riscv64 update bulletin.

ALT-PU-2024-13295-1

Package deepin-screensaver updated to version 5.0.20.0.2.522b-alt1 for branch sisyphus_riscv64.

Closed bugs

Bug #48138

deepin-default-settings содержит системные настройки

ALT-PU-2024-13297-1

Package libvirt updated to version 10.7.0-alt1 for branch sisyphus_riscv64.

Closed vulnerabilities

Published: 2024-08-30

BDU:2024-07002

Уязвимость библиотеки управления виртуализацией Libvirt, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (6.2) Vector: AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2024-08-30
Modified: 2024-11-21

CVE-2024-8235

A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0 bytes of memory results in a NULL pointer. This corner case would lead to a NULL-pointer dereference and subsequent crash of virtinterfaced. This issue could allow clients connecting to the read-only socket to crash the virtinterfaced daemon.

Severity: MEDIUM (6.2) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top