CVE-2025-54414

Anubis is a Web AI Firewall Utility that weighs the soul of users' connections using one or more challenges in order to protect upstream resources from scraper bots. In versions 1.21.2 and below, attackers can craft malicious pass-challenge pages that cause a user to execute arbitrary JavaScript code or trigger other nonstandard schemes. An incomplete version of this fix was tagged at 1.21.2 and then the release process was aborted upon final testing. To work around this issue: block any requests to the /.within.website/x/cmd/anubis/api/pass-challenge route with the ?redir= parameter set to anything that doesn't start with the URL scheme http, https, or no scheme (local path redirect). This was fixed in version 1.21.3.

Severity: MEDIUM (5.1) Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References:

Package apache2 updated to version 2.4.65-alt1 for branch sisyphus_riscv64.

Published: 2025-07-23
Modified: 2025-08-14

CVE-2025-54090

A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true". Users are recommended to upgrade to version 2.4.65, which fixes the issue.

Severity: MEDIUM (6.3) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

References:

Package gpupdate updated to version 0.13.3-alt1 for branch sisyphus_riscv64.

samba + gpoa(gpupdate): Стал требовать авторизации, которая ему не нужна

Package samba updated to version 4.21.7-alt3 for branch sisyphus_riscv64.

Выполнение net ads keytab create не приводит к созданию keytab-файла на КД

Version: 2.1.2

Branch sisyphus_riscv64 update on 2025-07-28

ALT-BU-2025-9781-1

ALT-PU-2025-9774-1

Closed bugs

Bug #55369

ALT-PU-2025-9776-1

Closed bugs

Bug #55368

ALT-PU-2025-9777-1

Closed vulnerabilities

CVE-2025-54414

ALT-PU-2025-9778-1

Closed vulnerabilities

CVE-2025-54090

ALT-PU-2025-9779-1

Closed bugs

Bug #55324

ALT-PU-2025-9780-1

Closed bugs

Bug #55111