ALT-BU-2025-3334-1
Branch sisyphus update bulletin.
Package kubernetes1.30 updated to version 1.30.10-alt1 for branch sisyphus in task 375424.
Closed vulnerabilities
Modified: 2025-02-13
CVE-2025-0426
A security issue was discovered in Kubernetes where a large number of container checkpoint requests made to the unauthenticated kubelet read-only HTTP endpoint may cause a Node Denial of Service by filling the Node's disk.
Package kubernetes1.31 updated to version 1.31.6-alt1 for branch sisyphus in task 375424.
Closed vulnerabilities
Modified: 2025-02-13
CVE-2025-0426
A security issue was discovered in Kubernetes where a large number of container checkpoint requests made to the unauthenticated kubelet read-only HTTP endpoint may cause a Node Denial of Service by filling the Node's disk.
Package kubernetes1.29 updated to version 1.29.14-alt1 for branch sisyphus in task 375424.
Closed vulnerabilities
Modified: 2025-02-13
CVE-2025-0426
A security issue was discovered in Kubernetes where a large number of container checkpoint requests made to the unauthenticated kubelet read-only HTTP endpoint may cause a Node Denial of Service by filling the Node's disk.
Closed bugs
проблемы упаковки
Ненужные сборочные зависимости
Package alterator-netinst updated to version 1.9.3-alt1 for branch sisyphus in task 375468.
Closed bugs
аварийный режим
Closed vulnerabilities
Modified: 2025-02-14
CVE-2025-26519
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8.
- http://www.openwall.com/lists/oss-security/2025/02/13/2
- http://www.openwall.com/lists/oss-security/2025/02/13/3
- http://www.openwall.com/lists/oss-security/2025/02/13/4
- http://www.openwall.com/lists/oss-security/2025/02/13/5
- http://www.openwall.com/lists/oss-security/2025/02/14/5
- http://www.openwall.com/lists/oss-security/2025/02/14/6
- https://git.musl-libc.org/cgit/musl/commit/?id=c47ad25ea3b484e10326f933e927c0bc8cded3da
- https://git.musl-libc.org/cgit/musl/commit/?id=e5adcd97b5196e29991b524237381a0202a60659
- https://www.openwall.com/lists/oss-security/2025/02/13/2
Closed bugs
All releases through 1.2.5 are affected by CVE-2025-26519 and should be patched.
Closed vulnerabilities
Modified: 2025-02-22
CVE-2024-12243
A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.
Package gnome-shell-extension-hidetopbar updated to version 118-alt1 for branch sisyphus in task 375597.
Closed bugs
Не работает с текущей версией Gnome