ALT Linux Team

Branch sisyphus_loongarch64 update on 2025-03-06

2025-03-06

ALT-BU-2025-3960-1

Branch sisyphus_loongarch64 update bulletin.

ALT-PU-2025-3953-1

Package tinyxml updated to version 2.6.2-alt2 for branch sisyphus_loongarch64.

Closed vulnerabilities

Published: 2021-09-14

BDU:2022-06895

Уязвимость функции TiXmlParsingData::Stamp компонента tinyxmlparser.cpp XML-парсера TinyXML, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2023-12-06

BDU:2024-00003

Уязвимость функции TiXmlDeclaration::Parse() компонента tinyxmlparser.cpp XML-парсера TinyXML, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.5) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2021-10-11
Modified: 2024-11-21

CVE-2021-42260

TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXML_UTF_LEAD_0 case. It can be triggered by a crafted XML message and leads to a denial of service.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
Published: 2023-12-13
Modified: 2024-11-21

CVE-2023-34194

StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a reachable assertion (and application exit) via a crafted XML document with a '\0' located after whitespace.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:

ALT-PU-2025-3955-1

Package admc updated to version 0.19.0-alt1 for branch sisyphus_loongarch64.

Closed bugs

Bug #45839

Ошибки в журнале изменений (changelog)

ALT-PU-2025-3956-1

Package iperf3 updated to version 3.18.1-alt2 for branch sisyphus_loongarch64.

Closed bugs

Bug #53164

iperf3-3.18.1 собран из исходных кодов 3.8.1

ALT-PU-2025-3957-1

Package dqt5-tools updated to version 5.15.13-alt0.dde.3 for branch sisyphus_loongarch64.

Closed bugs

Bug #53326

Путает пакеты

ALT-PU-2025-3958-1

Package dqt6-tools updated to version 6.8.2-alt0.dde.2 for branch sisyphus_loongarch64.

Closed bugs

Bug #53326

Путает пакеты

ALT-PU-2025-3959-1

Package ruby updated to version 3.3.7-alt1.1 for branch sisyphus_loongarch64.

Closed bugs

Bug #49375

Добавляет несуществующий каталог в $PATH

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top