2024-10-09
ALT-BU-2024-13767-1
Branch p11 update bulletin.
Closed bugs
message file /var/lib/firebird/system/firebird.msg not found
Closed bugs
Не стартует zabbix-java-gateway с java-17-openjdk
Closed vulnerabilities
Published: 2024-07-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2024-41815
Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only affects users with custom commands, so the scope is limited, and without knowledge of others' commands, it could be hard to successfully target someone. Version 1.20.0 fixes the vulnerability.
Severity: HIGH (7.0)
Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
References:
- https://github.com/starship/starship/commit/cfc58161e0ec595db90af686ad77a73df6d44d74
- https://github.com/starship/starship/commit/cfc58161e0ec595db90af686ad77a73df6d44d74
- https://github.com/starship/starship/releases/tag/v1.20.0
- https://github.com/starship/starship/releases/tag/v1.20.0
- https://github.com/starship/starship/security/advisories/GHSA-vx24-x4mv-vwr5
- https://github.com/starship/starship/security/advisories/GHSA-vx24-x4mv-vwr5
Package alterator-netinst updated to version 1.9.1-alt9 for branch p11 in task 359241.
Closed bugs
Загрузка образа по ссылке завершается с ошибкой