ALT Linux Team

Branch sisyphus_e2k update on 2025-05-25

2025-05-25

ALT-BU-2025-7335-1

Branch sisyphus_e2k update bulletin.

ALT-PU-2025-7332-1

Package freecad updated to version 1.0.0-alt4 for branch sisyphus_e2k.

Closed bugs

Bug #52581

FreeCAD 1.0.0 не работает с модулями

Bug #54082

Ошибка при экспорте в форматы OpenSCAD Format, OpenSCAD CSG Format

Bug #54089

Ошибка при выборе верстака OpenSCAD

ALT-PU-2025-7334-1

Package libarchive updated to version 3.7.9-alt1 for branch sisyphus_e2k.

Closed vulnerabilities

Published: 2025-02-24

BDU:2025-05203

Уязвимость файла bsdunzip.c библиотеки Libarchive, позволяющая нарушителю вызвать отказ в обслуживании

Severity: LOW (3.3) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
References:
Published: 2025-03-28
Modified: 2025-04-14

CVE-2024-48615

Null Pointer Dereference vulnerability in libarchive 3.7.6 and earlier when running program bsdtar in function header_pax_extension at rchive_read_support_format_tar.c:1844:8.

References:
Published: 2025-02-24
Modified: 2025-03-25

CVE-2025-1632

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.1
Back to top