ALT-BU-2025-6056-1
Branch sisyphus update bulletin.
Package qutebrowser updated to version 3.5.0-alt2 for branch sisyphus in task 382691.
Closed bugs
Не запускается
Closed bugs
chatty 0.8.7-alt1 не запускается в Phosh
Closed vulnerabilities
BDU:2022-01836
Уязвимость функции ReadInt32DataDouble библиотеки для чтения и записи файлов MATLAB MATIO, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2019-13107
Multiple integer overflows exist in MATIO before 1.5.16, related to mat.c, mat4.c, mat5.c, mat73.c, and matvar_struct.c
- https://github.com/tbeu/matio/compare/f8cd397...fabac6c
- https://github.com/tbeu/matio/compare/f8cd397...fabac6c
- https://github.com/tbeu/matio/pull/118
- https://github.com/tbeu/matio/pull/118
- https://github.com/tbeu/matio/releases/tag/v1.5.16
- https://github.com/tbeu/matio/releases/tag/v1.5.16
- FEDORA-2019-a1a2f55fcf
- FEDORA-2019-a1a2f55fcf
Modified: 2024-11-21
CVE-2020-36428
matio (aka MAT File I/O Library) 1.5.18 through 1.5.21 has a heap-based buffer overflow in ReadInt32DataDouble (called from ReadInt32Data and Mat_VarRead4).
Modified: 2024-11-21
CVE-2022-1515
A memory leak was discovered in matio 1.5.21 and earlier in Mat_VarReadNextInfo5() in mat5.c via a crafted file. This issue can potentially result in DoS.
Package qt5-webengine updated to version 5.15.18-alt1 for branch sisyphus in task 382598.
Closed vulnerabilities
BDU:2025-04695
Уязвимость функции encrypted() кроссплатформенного фреймворка для разработки программного обеспечения Qt, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2025-03-19
CVE-2024-39936
An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x through 6.7.x before 6.7.3. Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed..