Branch sisyphus_riscv64 update bulletin.

Package rsyslog updated to version 8.2502.0-alt4.1 for branch sisyphus_riscv64.

rsyslog-mongo: /etc/rsyslog.d/01_mongo.conf: line 1: invalid character '\' in object definition

Не применяются права из директив rsyslog

Package python3-module-pydub updated to version 0.25.1-alt3 for branch sisyphus_riscv64.

ModuleNotFoundError: No module named 'audioop'

Package gem-rexml updated to version 3.4.4-alt1 for branch sisyphus_riscv64.

Published: 2025-09-17
Modified: 2025-09-30

CVE-2025-58767

REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Severity: LOW (1.2) Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References:

Version: 2.1.2

Branch sisyphus_riscv64 update on 2025-10-22

ALT-BU-2025-13385-1

ALT-PU-2025-13381-1

Closed bugs

Bug #54959

Bug #55643

ALT-PU-2025-13383-1

Closed bugs

Bug #56358

ALT-PU-2025-13384-1

Closed vulnerabilities

CVE-2025-58767