Branch sisyphus update bulletin.

Package recoll updated to version 1.43.2-alt2 for branch sisyphus in task 384776.

recollq is missing

Package crudini updated to version 0.9.6-alt1 for branch sisyphus in task 384778.

crudini: просьба обновить и добавить в p11

Package python3-module-fenrir updated to version 1.9.9-alt2 for branch sisyphus in task 384792.

Unit fenrir.service could not be found

Package userpasswd updated to version 1.0.1-alt1 for branch sisyphus in task 384804.

Содержит dekstop-файл для запуска несуществующей программы

Не работает смена пароля с samba доменом

userpasswd-gnome

Package firefox-esr updated to version 128.10.1-alt1 for branch sisyphus in task 384815.

Published: 2025-05-17
Modified: 2025-09-22

CVE-2025-4918

An attacker was able to perform an out-of-bounds read or write on a JavaScript `Promise` object. This vulnerability affects Firefox < 138.0.4, Firefox ESR < 128.10.1, Firefox ESR < 115.23.1, Thunderbird < 128.10.2, and Thunderbird < 138.0.2.

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2025-05-17
Modified: 2025-05-28

CVE-2025-4919

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by confusing array index sizes. This vulnerability affects Firefox < 138.0.4, Firefox ESR < 128.10.1, Firefox ESR < 115.23.1, Thunderbird < 128.10.2, and Thunderbird < 138.0.2.

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References:

Package integrity-notifier updated to version 0.7.2-alt1 for branch sisyphus in task 384886.

integrity-notifier.service crash and not restart

Version: 2.1.2

Branch sisyphus update on 2025-05-22

ALT-BU-2025-7129-1

ALT-PU-2025-7058-1

Closed bugs

Bug #54354

ALT-PU-2025-7060-1

Closed bugs

Bug #54350

ALT-PU-2025-7107-2

Closed bugs

Bug #54393

ALT-PU-2025-7113-3

Closed bugs

Bug #53977

Bug #54366

Bug #54368

ALT-PU-2025-7115-2

Closed vulnerabilities

CVE-2025-4918

CVE-2025-4919

ALT-PU-2025-7119-1

Closed bugs

Bug #54267