ALT-BU-2025-11148-1
Branch sisyphus_loongarch64 update bulletin.
Package squidmill updated to version 2.7.0-alt2 for branch sisyphus_loongarch64.
Closed vulnerabilities
No data currently available.
Closed bugs
Ошибка открытия сокета при запуске службы
Ошибка открытия сокета при запуске службы
squidmill не отвечает на запросы
Ошибка при очистке временных файлов в /run/squidmill
Не запускается squidmill.service
Package python3-module-numexpr updated to version 2.11.0-alt2 for branch sisyphus_loongarch64.
Closed bugs
numpy-tests dependency
Package kubernetes1.31 updated to version 1.31.12-alt1 for branch sisyphus_loongarch64.
Closed vulnerabilities
Modified: 2025-08-29
CVE-2025-5187
A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently deleted, the given node object will be deleted via garbage collection.
Package nheko updated to version 0.12.0-alt3 for branch sisyphus_loongarch64.
Closed bugs
При запуске приложения белый экран
Пустое окно авторизации в nheko
Package kubernetes1.33 updated to version 1.33.4-alt1 for branch sisyphus_loongarch64.
Closed vulnerabilities
Modified: 2025-08-29
CVE-2025-5187
A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently deleted, the given node object will be deleted via garbage collection.
Package exiv2 updated to version 0.28.7-alt1 for branch sisyphus_loongarch64.
Closed vulnerabilities
Modified: 2025-09-02
CVE-2025-54080
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2 versions 0.28.5 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when writing the metadata, which is a less frequently used Exiv2 operation than reading the metadata. The bug is fixed in version 0.28.6.
Modified: 2025-09-02
CVE-2025-55304
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was found in Exiv2 version 0.28.5: a quadratic algorithm in the ICC profile parsing code in jpegBase::readMetadata() can cause Exiv2 to run for a long time. The denial-of-service is triggered when Exiv2 is used to read the metadata of a crafted jpg image file. The bug is fixed in version 0.28.6.
Package kubernetes1.32 updated to version 1.32.8-alt1 for branch sisyphus_loongarch64.
Closed vulnerabilities
Modified: 2025-08-29
CVE-2025-5187
A vulnerability exists in the NodeRestriction admission controller in Kubernetes clusters where node users can delete their corresponding node object by patching themselves with an OwnerReference to a cluster-scoped resource. If the OwnerReference resource does not exist or is subsequently deleted, the given node object will be deleted via garbage collection.
Package zxing-cpp updated to version 2.3.0-alt4 for branch sisyphus_loongarch64.
Closed bugs
Прошу собрать с учетом модуля python