CVE-2023-52429

dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References:

Package kde5-plasma-addon-alt-weather updated to version 1.0.19-alt1 for branch sisyphus in task 341603.

Показывает старую версию

Слишком большая пиктограмма в лотке

Package mate-panel updated to version 1.28.0-alt2 for branch sisyphus in task 341636.

mate-panel 1.28 бесконечно перезапускается, если не установлен dconf-editor

Package libcap updated to version 2.69-alt1 for branch sisyphus in task 339667.

Published: 2023-06-06
Modified: 2024-11-21

CVE-2023-2603

A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Branch sisyphus update on 2024-02-29

ALT-BU-2024-3169-2

ALT-PU-2024-3144-1

Closed vulnerabilities

CVE-2023-52429

ALT-PU-2024-3147-4

Closed bugs

Bug #49309

Bug #49542

ALT-PU-2024-3163-1

Closed bugs

Bug #49555

ALT-PU-2024-5948-1

Closed vulnerabilities

CVE-2023-2603