ALT-BU-2024-6788-1
Branch sisyphus_e2k update bulletin.
Package librecad updated to version 2.2.0.2-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2021-45343
In LibreCAD 2.2.0, a NULL pointer dereference in the HATCH handling of libdxfrw allows an attacker to crash the application using a crafted DXF document.
Modified: 2024-11-21
CVE-2023-30259
A Buffer Overflow vulnerability in importshp plugin in LibreCAD 2.2.0 allows attackers to obtain sensitive information via a crafted DBF file.
Package plasma5-addons updated to version 5.27.11-alt2 for branch sisyphus_e2k.
Closed bugs
Некорректное масштабирование виджета "Выбор цвета" в "Группирующий виджет"
Package epmgpi updated to version 1.3-alt1 for branch sisyphus_e2k.
Closed bugs
Некорректное поведение программы
Package vim updated to version 9.1.0050-alt3 for branch sisyphus_e2k.
Closed bugs
vim-common and vim-minimal conflict on merged-usr
Package python3-module-Pillow updated to version 10.3.0-alt1 for branch sisyphus_e2k.
Closed vulnerabilities
Modified: 2024-11-21
CVE-2024-28219
In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.
- [debian-lts-announce] 20240410 [SECURITY] [DLA 3786-1] pillow security update
- [debian-lts-announce] 20240410 [SECURITY] [DLA 3786-1] pillow security update
- FEDORA-2024-e4b1b4eab1
- FEDORA-2024-e4b1b4eab1
- https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html#security
- https://pillow.readthedocs.io/en/stable/releasenotes/10.3.0.html#security