ALT-BU-2025-14373-1
Branch p11 update bulletin.
Closed bugs
plugin doesn't implement qemu_blockdev_options() method
Closed bugs
Кривая сборка документации
Package proxmox-i18n updated to version 3.6.0-alt2 for branch p11 in task 394381.
Closed bugs
Отсутствует поддержка ngettext (нужно обновить пакет)
Closed bugs
Не собирается с poppler-25.07.0
Package supertuxkart updated to version 1.5-alt1 for branch p11 in task 397886.
Closed bugs
/usr/bin/convert dependency
Package myconnector updated to version 2.6.2-alt1 for branch p11 in task 398074.
Closed bugs
Не отображаются иконки при запуске из под пользователя root
Значок Myconnector не появляется в трее, если при настройке Myconnector был запущен от обычного пользователя
Не работает режим КИОСК в Wayland
Package pgbackrest updated to version 2.57.0-alt2 for branch p11 in task 398156.
Closed bugs
Не упакованы необходимые для работы пакета директории
Closed vulnerabilities
Modified: 2025-11-04
CVE-2025-53859
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_mail_smtp_module that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happens during the NGINX SMTP authentication process and requires the attacker to make preparations against the target system to extract the leaked data. The issue affects NGINX only if (1) it is built with the ngx_mail_smtp_module, (2) the smtp_auth directive is configured with method "none," and (3) the authentication server returns the "Auth-Wait" response header. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Package pve-manager updated to version 9.0.6-alt3 for branch p11 in task 394381.
Closed bugs
500 file error - /usr/share/pve-yew-mobile-gui/index.html.tpl: not found