ALT-BU-2025-10136-2

Branch p11 update bulletin.

Package php8.3-soap updated to version 8.3.24-alt1 for branch p11 in task 391361.

Уязвимость функции PQescapeIdentifier() интерпретатора языка программирования PHP, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-1735

Уязвимость интерпретатора языка программирования PHP, связанная с ошибками разыменования указателей, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-1220

Уязвимость функции xmlNodeSetName() интерпретатора языка программирования PHP, позволяющая нарушителю вызвать отказ в обслуживании

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-6491

In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.

Severity: MEDIUM (5.3)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References:

In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* pgsql and pdo_pgsql escaping functions do not check if the underlying quoting functions returned errors. This could cause crashes if Postgres server rejects the string as invalid.

Severity: HIGH (7.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to null pointer dereference. This may lead to crashes and affect the availability of the target server.

Severity: MEDIUM (5.9)Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package steam updated to version 1.0.0.83-alt2 for branch p11 in task 390661.

Зависит от gtk2

Package php8.3 updated to version 8.3.24-alt1 for branch p11 in task 391361.

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-1735

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-1220

Severity: MEDIUM (5.9)Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: MEDIUM (5.4)Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C

References:

CVE-2025-6491

Severity: MEDIUM (5.3)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References:

Severity: HIGH (7.5)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Severity: MEDIUM (5.9)Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Package augeas updated to version 1.14.1-alt2 for branch p11 in task 391557.

Уязвимость функции re_case_expand компонента src/fa.c инструмента редактирования конфигураций Augeas, позволяющая нарушителю вызвать отказ в обслуживании

Severity: LOW (3.3)Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Severity: LOW (1.7)Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P

References:

CVE-2025-2588

A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function re_case_expand of the file src/fa.c. The manipulation of the argument re leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Severity: LOW (1.7)Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P

Severity: LOW (3.3)Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Severity: MEDIUM (4.8)Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References:

Package glpi updated to version 10.0.19-alt1 for branch p11 in task 391565.

Уязвимость системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, связанная с непринятием мер по нейтрализации script-related тэгов HTML на веб-странице, позволяющая нарушителю выполнить произвольный код

Severity: MEDIUM (5.4)Vector: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Severity: MEDIUM (5.5)Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

References:

CVE-2025-27514

Уязвимость системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, связанная с недостаточной проверкой запросов на стороне сервера, позволяющая нарушителю осуществить SSRF-атаку

Severity: MEDIUM (5.0)Vector: AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Severity: MEDIUM (4.0)Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

References:

CVE-2025-52567

Severity: MEDIUM (6.5)Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Severity: HIGH (7.8)Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

References:

CVE-2025-52897

Уязвимость программного обеспечения для управления активами и центрами обработки данных GLPI, связанная с неправильным управлением привилегиями, позволяющая нарушителю повысить свои привилегии

Severity: HIGH (7.5)Vector: AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: HIGH (7.1)Vector: AV:N/AC:H/Au:S/C:C/I:C/A:C

References:

CVE-2025-53105

Уязвимость системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, связанная с недостаточной защитой регистрационных данных, позволяющая нарушителю получить несанкционированный доступ к учётным данным пользователя

Severity: MEDIUM (6.5)Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: MEDIUM (6.8)Vector: AV:N/AC:L/Au:S/C:C/I:N/A:N

References:

Уязвимость системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, связанная с ошибками разграничения доступа, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

Severity: MEDIUM (6.5)Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: MEDIUM (6.8)Vector: AV:N/AC:L/Au:S/C:C/I:N/A:N

References:

Severity: MEDIUM (4.3)Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Severity: MEDIUM (4.0)Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

References:

Уязвимость функции внешних ссылок системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, позволяющая нарушителю раскрыть защищаемую информацию

Severity: LOW (2.7)Vector: AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Severity: MEDIUM (4.0)Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

References:

Уязвимость системы заявок, инцидентов и инвентаризации компьютерного оборудования GLPI, связанная с обходом авторизации посредством ключа, позволяющая нарушителю получить несанкционированный доступ на изменение защищаемой информации

Severity: MEDIUM (5.4)Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Severity: MEDIUM (5.5)Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N

References:

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In versions 9.5.0 through 10.0.18, a technician can use a malicious payload to trigger a stored XSS on the project's kanban. This is fixed in version 10.0.19.

Severity: MEDIUM (5.4)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

References:

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In versions 0.84 through 10.0.18, usage of RSS feeds or external calendars when planning is subject to SSRF exploit. The previous security patches provided since GLPI 10.0.4 were not robust enough for certain specific cases. This is fixed in version 10.0.19.

Severity: MEDIUM (5.0)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-5mp6-mgmh-vrq7

GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19.

Severity: MEDIUM (6.1)Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-6whm-q2rp-prqm

GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 9.3.1 through 10.0.19, a connected user can use a malicious payload to steal mail receiver credentials. This is fixed in version 10.0.19.

Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-52h8-76ph-4j9q

GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 10.0.0 to before 10.0.19, a connected user without administration rights can change the rules execution order. This issue has been patched in version 10.0.19.

Severity: HIGH (7.5)Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

GLPI is a Free Asset and IT Management Software package. In versions 0.80 through 10.0.18, a lack of permission checks can result in unauthorized access to some resources. This is fixed in version 10.0.19.

Severity: MEDIUM (6.5)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-p665-mqcr-j96j

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 9.1.0 through 10.0.18, a lack of permission checks can result in unauthorized removal of some specific resources. This is fixed in version 10.0.19.

Severity: MEDIUM (4.3)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-rp7w-6343-3m2r

GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.65 through 10.0.18, a technician can use the external links feature to fetch information on items they do not have the right to see. This is fixed in version 10.0.19.

Severity: LOW (2.7)Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-r2mm-6499-4m8j

GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.78 through 10.0.18, a connected user can alter the reservations of another user. This is fixed in version 10.0.19.

Severity: MEDIUM (5.4)Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

References:

https://github.com/glpi-project/glpi/security/advisories/GHSA-x9mj-822q-6cf8

Version: 2.1.2

ALT-BU-2025-10136-2

Closed vulnerabilities

Closed bugs

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities