Branch sisyphus update bulletin.

Package qt5-base updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Уязвимость плагина SQL ODBC кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Qt before 6.4.3 allows a denial of service via a crafted string when the SQL ODBC driver plugin is used and the size of SQLTCHAR is 4. The affected versions are 5.x before 5.15.13, 6.x before 6.2.8, and 6.3.x before 6.4.3.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-declarative updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-xmlpatterns updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-tools updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-websockets updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-multimedia updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-serialport updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-location updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-sensors updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-webglplugin updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-webchannel updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-quickcontrols updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-script updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-x11extras updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-svg updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-imageformats updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-quickcontrols2 updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-quicktimeline updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-connectivity updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-serialbus updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-translations updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-graphicaleffects updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-doc updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-wayland updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-webview updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-3d updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-virtualkeyboard updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-scxml updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-charts updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-speech updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-datavis3d updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-gamepad updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-networkauth updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package qt5-remoteobjects updated to version 5.15.13-alt1 for branch sisyphus in task 344719.

Published: 2023-04-15

BDU:2023-02373

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

CVE-2023-24607

Published: 2023-04-15
Modified: 2024-11-21

CVE-2023-24607

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package pve-qemu-server updated to version 8.1.1-alt2 for branch sisyphus in task 344982.

pve-qemu-server: устаревший патч qemu-server-aarch64.patch

Package zabbix updated to version 6.0.28-alt2 for branch sisyphus in task 344991.

отсутствует зависимость на zabbix-phpfrontend-engine

Package php8.3 updated to version 8.3.6-alt1 for branch sisyphus in task 344089.

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-1874

In PHP versions 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, when using proc_open() command with array syntax, due to insufficient escaping, if the arguments of the executed command are controlled by a malicious user, the user can supply arguments that would execute arbitrary commands in Windows shell.

References:

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-2756

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a __Host- or __Secure- cookie by PHP applications.

References:

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-2757

In PHP 8.3.* before 8.3.5, function mb_encode_mimeheader() runs endlessly for some inputs that contain long strings of non-space characters followed by a space. This could lead to a potential DoS attack if a hostile user sends data to an application that uses this function.

References:

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-3096

In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00), testing a blank string as the password via password_verify() will incorrectly return true.

References:

Package php8.2 updated to version 8.2.18-alt1 for branch sisyphus in task 345013.

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-1874

References:

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-2756

References:

Published: 2024-04-29
Modified: 2025-02-13

CVE-2024-3096

References:

Package warp updated to version 0.7.0-alt1.1 for branch sisyphus in task 345020.

Отсутствие кнопки для QR-кода в поле ввода кода получения файла

Version: 2.1.0

ALT-BU-2024-6456-1

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed bugs

Closed bugs

Closed vulnerabilities