ALT-BU-2024-9918-1
Branch sisyphus_riscv64 update bulletin.
Package apache2-mod_http2 updated to version 2.0.29-alt1 for branch sisyphus_riscv64.
Closed vulnerabilities
BDU:2024-05194
Уязвимость протокола WebSocket веб-сервера Apache HTTP Server, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-25
CVE-2024-36387
Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance.
Package snapd-glib-2 updated to version 1.65-alt1.1 for branch sisyphus_riscv64.
Closed bugs
Потерян заголовок Snapd/Notice
Package libgtk+3 updated to version 3.24.43-alt1 for branch sisyphus_riscv64.
Closed vulnerabilities
Modified: 2025-03-14
CVE-2024-6655
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a GTK application from the current working directory.
- http://www.openwall.com/lists/oss-security/2024/09/09/1
- RHSA-2024:6963
- RHSA-2024:9184
- https://access.redhat.com/security/cve/CVE-2024-6655
- https://access.redhat.com/security/cve/CVE-2024-6655
- RHBZ#2297098
- RHBZ#2297098
- https://gitlab.gnome.org/GNOME/gtk/-/merge_requests/7361/diffs?commit_id=3bbf0b6176d42836d23c36a6ac410e807ec0a7a7#diff-content-e3fbe6480add9420b69f82374fb26ccac2c015a0
- https://gitlab.gnome.org/GNOME/gtk/-/merge_requests/7361/diffs?commit_id=3bbf0b6176d42836d23c36a6ac410e807ec0a7a7#diff-content-e3fbe6480add9420b69f82374fb26ccac2c015a0
- https://www.openwall.com/lists/oss-security/2024/09/09/1
Package zabbix-agent2-plugin-postgresql updated to version 6.4.9-alt2 for branch sisyphus_riscv64.
Closed bugs
Некорректный путь до конфигурационного файла
Включить параметр Plugins.PostgreSQL.System.Path в конфигурационном файле по умолчанию