The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain conditions, which allows a remote attacker to exhaust the system's memory, causing a denial of service (DoS).

The Onion module in toxcore before 0.2.2 doesn't restrict which packets can be onion-routed, which allows a remote attacker to discover a target user's IP address (when knowing only their Tox Id) by positioning themselves close to target's Tox Id in the DHT for the target to establish an onion connection with the attacker, guessing the target's DHT public key and creating a DHT node with public key close to it, and finally onion-routing a NAT Ping Request to the target, requesting it to ping the just created DHT node.

A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calculation during the handling of received network packets) allows remote attackers to crash the process or potentially execute arbitrary code via a network packet.

Уязвимость функции elisp-completion-at-point() и elisp-flymake-byte-compile() режима ELisp текстового редактора EMACS, позволяющая нарушителю выполнить произвольный код

In elisp-mode.el in GNU Emacs before 30.1, a user who chooses to invoke elisp-completion-at-point (for code completion) on untrusted Emacs Lisp source code can trigger unsafe Lisp macro expansion that allows attackers to execute arbitrary code. (This unsafe expansion also occurs if a user chooses to enable on-the-fly diagnosis that byte compiles untrusted Emacs Lisp source code.)

A command injection flaw was found in the text editor Emacs. It could allow a remote, unauthenticated attacker to execute arbitrary shell commands on a vulnerable system. Exploitation is possible by tricking users into visiting a specially crafted website or an HTTP URL with a redirect.

Отвалилась поддержка /etc/emacs/site-start.el

Права устнавливаются серез %post

pkmon: finalized without ever returning

Опечатка в главе ⁠42.4.2. Правила по VID&PID документации docs-alt-server

Отсутствуют драйвера баз данных

В OEM установке на шаге "Язык" меняются местами варианты переключения раскладки клавиатуры

Документация docs-alt-server-v, п.39.4.14. CephFS: опечатка в примечании

Документация docs-alt-server-v, п. 39.5. FC/iSCSI SAN: опечатка в предложении

Документация docs-alt-server-v, п. ⁠43.5. Доступ к LXC контейнеру: дополнить командой в предупреждении

Документация docs-alt-server-v, Глава 44. Миграция ВМ и контейнеров: ошибки пунктуации

Документация docs-alt-server-v, п. ⁠51.4. Двухфакторная аутентификация: ошибки пунктуации

Глава "⁠39.6.3.2. Удаление монитора": необходимо внести правки в пример команды

Глава "39.6.4.2. Удаление менеджера": внести правки в пример команды

Проблемы с пунктуацией в главе "39.6.7. Ceph CRUSH и классы устройств"

Во время установки образа при переходе в tty сообщение: "mkdir: cannot create directory `/root/.kbd': File exists"

Уязвимость плагина Prometheus Remote Write инструмента для сбора и обработки логов Fluent Bit, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании

An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remote Write input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpoint) to perform a remote Denial of service attack. The crash happens because of a NULL pointer dereference when 0 (from the Content-Length) is passed to the function cfl_sds_len, which in turn tries to cast a NULL pointer into struct cfl_sds. This is related to process_payload_metrics_ng() at prom_rw_prot.c.

An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpoint) to perform a remote Denial of service attack. The crash happens because of a NULL pointer dereference when 0 (from the Content-Length) is passed to the function cfl_sds_len, which in turn tries to cast a NULL pointer into struct cfl_sds. This is related to process_payload_traces_proto_ng() at opentelemetry_prot.c.

Документация docs-alt-education - гл. 66: исправить пунктуацию