Maintainer Alexander Danilov in the c9f2 branch: Information
Maintainer name: Alexander Danilov (admsasha)
Built source packages in this branch: 30
Last changes
Jun 6, 2024, 05:51 PM
#349885 sent by Alexander Danilov
fix_CVE-2023-48795,CVE-2023-49568
Packer is a tool for creating identical machine images for multiple platforms from a single source configuration
May 28, 2024 Mikhail Gordeev:
- new version 1.10.3
May 28, 2024, 05:35 PM
#349476 sent by Alexander Danilov
fix_CVE-2023-35852,CVE-2023-35853
Intrusion Detection System
May 27, 2024 Alexander Danilov:
- Backported to c9f2.
May 27, 2024, 09:16 AM
#348709 sent by Alexander Danilov
fix_CVE-2023-5528
deleted kubernetes
deleted cri-o
deleted cri-tools
CLI and validation tools for Kubelet Container Runtime Interface (CRI)
CLI and validation tools for Kubelet Container Runtime Interface (CRI)
Container cluster management
May 23, 2024, 02:54 PM
#348670 sent by Alexander Danilov
fix_CVE-2021-35063,CVE-2021-37592,CVE-2021-45098
RPM build enviroment to build rust packages
cbindgen creates C/C++11 headers for Rust libraries which expose a public C API
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces
Intrusion Detection System
May 22, 2024 Alexander Danilov:
- Backported to c9f2.
May 22, 2024, 06:08 PM
#348598 sent by Alexander Danilov
fix_CVEs
IT and asset management software
May 27, 2023 Pavel Zilke:
- New version 9.5.13 - This release fixes several security issues that have been recently discovered. Update is recommended! - Security fixes: + CVE-2023-28632 : Account takeover by authenticated user + CVE-2023-28838 : SQL injection through dynamic reports + CVE-2023-28852 : Stored XSS through dashboard administration + CVE-2023-28636 : Stored XSS on external links + CVE-2023-28639 : Reflected XSS in search pages + CVE-2023-28634 : Privilege Escalation from technician to super-admin + CVE-2023-28633 : Blind Server-Side Request Forgery (SSRF) in RSS feeds
May 21, 2024, 09:16 AM
#348304 sent by Alexander Danilov
fix_CVE-2017-17514
An image processing system
Jan. 26, 2020 Vitaly Lipatov:
- NMU: new version 8.7.1 (with rpmrb script) - rebuild with new libvips 8
May 20, 2024, 05:43 PM
#348309 sent by Alexander Danilov
fix_CVE-2021-41990,CVE-2021-41991,CVE-2021-45079,CVE-2022-40617,CVE-2023-41913
strongSwan IPsec implementation
May 17, 2024 Alexander Danilov:
- Backport to c9f2.
May 17, 2024, 09:15 PM
#348297 sent by Alexander Danilov
fix_CVE-2023-27320,CVE-2023-28486,CVE-2023-28487,CVE-2023-42456,CVE-2023-42465
Allows command execution as another user
May 17, 2024 Alexander Danilov:
- Backport to c9f2.
May 15, 2024, 12:44 PM
#347918 sent by Alexander Danilov
fix_CVE-2023-7101
Extract information from Excel file
Jan. 2, 2024 Igor Vlasenko:
- automated CPAN update
May 8, 2024, 04:57 PM
#347676 sent by Alexander Danilov
fix_CVE-2019-14247
A Free command-line mp3 player, compatible with mpg123
Oct. 27, 2021 Ilya Kurdyukov:
- e2k: inline without static leads to a link error on the EDG frontend.
Apr 26, 2024, 05:56 PM
#345826 sent by Alexander Danilov
fix_CVE-2018-1000825
FreeCol is opensource Colonization clone.
Oct. 19, 2020 Aleksei Nikiforov:
- Applied security fix from Debian (Fixes: CVE-2018-1000825). - Updated license tag.
Apr 26, 2024, 12:49 PM
#345806 sent by Alexander Danilov
fix_CVE-2021-41054,CVE-2021-46671
Advanced Trivial File Transfer Protocol
Feb. 13, 2024 Anton Farygin:
- fixed systemd unit (Closes: #49359)
Apr 24, 2024, 03:42 PM
#345698 sent by Alexander Danilov
fix_CVE-2014-7204
A C programming language indexing and/or cross-reference tool
April 6, 2023 Vladimir D. Seleznev:
- Fixed arbitrary command execution via a tag file with a crafted filename (fixes CVE-2022-4515).
Apr 23, 2024, 11:24 AM
#345644 sent by Alexander Danilov
fix_CVEs
A general purpose sound file conversion tool
March 28, 2024 Andrey Kovalev:
- Added patches from debian and fix vulnerabilities (Fixes: CVE-2017-15371, CVE-2019-8355, CVE-2021-33844, CVE-2017-15370, CVE-2019-8356, CVE-2021-3643, CVE-2017-11332, CVE-2019-8357, CVE-2021-40426, CVE-2017-11359, CVE-2023-32627, CVE-2022-31650, CVE-2017-15372, CVE-2017-11358, CVE-2022-31651, CVE-2017-15642, CVE-2019-13590, CVE-2019-8354, CVE-2021-23159): + fixed hcom big endian + fixed resource leak comments + fixed resource leak hcom + added handle vorbis analysis headerout errors + added wavpack check errors + added xa validate channel count
Apr 7, 2024, 05:33 PM
#344277 sent by Alexander Danilov
fix_CVE-2024-0553,CVE-2024-0567,CVE-2024-28834,CVE-2024-28835
A TLS protocol implementation
March 29, 2024 Mikhail Efremov:
- Fix side-channel in the deterministic ECDSA (fixes: CVE-2024-28834). - tests: Add test for CVE-2024-28835. - rsa-psk: minimize branching after decryption (fixes: CVE-2024-0553). - x509: detect loop in certificate chain (fixes: CVE-2024-0567).
Apr 2, 2024, 05:29 PM
#343880 sent by Alexander Danilov
fix_CVE-2017-14232,CVE-2018-10971,CVE-2018-10972,CVE-2018-11507,CVE-2018-12109,CVE-2018-14876,CVE-2019-14373
Free Lossless Image Format
March 28, 2024 Vitaly Lipatov:
- new version 0.4 (fixes: CVE-2017-14232, CVE-2018-10971, CVE-2018-11507, CVE-2018-12109, CVE-2018-14876, CVE-2019-14373)
Mar 27, 2024, 12:15 PM
#343064 sent by Alexander Danilov
fix_CVE-2021-4048
Optimized BLAS library based on GotoBLAS2 1.13
Feb. 2, 2024 Stanislav Levin:
- 0.3.23 -> 0.3.26.
Mar 23, 2024, 12:50 PM
#342798 sent by Alexander Danilov
fix_CVE-2019-19906,CVE-2022-24407
SASL2 is the Simple Authentication and Security Layer
Feb. 25, 2024 Andrey Limachko:
- NMU: 2.1.28 (Closes: #49511)
Mar 23, 2024, 12:34 PM
#342752 sent by Alexander Danilov
fix_CVEs
A very fast and reliable SQL database engine
March 15, 2024 Alexander Danilov:
- backport to c9 branch new version.
Mar 15, 2024, 12:52 PM
#342256 sent by Alexander Danilov
fix_CVE-2020-10232,CVE-2020-10233
Library and tools to support the Expert Witness Compression Format
The Sleuth Kit
Dec. 25, 2023 Vitaly Lipatov:
- new version 4.12.1 (with rpmrb script)
Mar 15, 2024, 12:27 PM
#342505 sent by Alexander Danilov
fix_CVEs
Modular text mode IRC client with Perl scripting
Dec. 8, 2020 Aleksei Nikiforov:
- Updated to upstream version 1.2.2 (Fixes: CVE-2019-13045, CVE-2019-15717).
Mar 14, 2024, 09:54 PM
#342504 sent by Alexander Danilov
fix_CVE-2020-24361
An SNMP trap handler written in Perl
Oct. 27, 2020 Aleksei Nikiforov:
- Updated to upstream version 1.4.2 (Fixes: CVE-2020-24361).
Mar 13, 2024, 04:09 PM
#342233 sent by Alexander Danilov
fix_CVE-2017-1000421
command-line program for manipulating GIF images
July 27, 2021 Aleksei Nikiforov:
- Updated to upstream version 1.93.
Mar 13, 2024, 04:04 PM
#342492 sent by Alexander Danilov
fix_CVE-2022-38795,CVE-2022-42968,CVE-2023-3515
Git with a cup of tea, painless self-hosted git service
Oct. 6, 2023 Alexey Shabalin:
- 1.20.5
Mar 11, 2024, 05:37 PM
#342157 sent by Alexander Danilov
fix_CVE-2024-24806
Evented I/O for NodeJS
Feb. 18, 2024 Vitaly Lipatov:
- new version 1.48.0 (with rpmrb script) - CVE-2024-24806
Mar 7, 2024, 02:53 PM
#341617 sent by Alexander Danilov
fix_CVE-2022-3479
Netscape Network Security Services(NSS)
Feb. 24, 2024 Alexey Gladkov:
- New version (3.98). - Certificate Authority Changes: + Add CN=D-Trust SBR Root CA 1 2022 + Add CN=D-Trust SBR Root CA 2 2022 + Add CN=Telekom Security SMIME ECC Root 2021 + Add CN=Telekom Security SMIME RSA Root 2023 + Add CN=Telekom Security TLS ECC Root 2020 + Add CN=Telekom Security TLS RSA Root 2023
Mar 1, 2024, 05:02 PM
#340468 sent by Alexander Danilov
fix_CVEs
An X application for displaying and manipulating images
rebuild ale-0.9.0.3-alt9
Combining multiple inputs representing the same scene
converts Postscript(TM) and PDF files to other vector graphic formats
rebuild autotrace-0.31.1-alt9
Bitmap to vector graphics converter
rebuild converseen-0.9.7.2-alt2
Converseen is a free cross-platform batch image processor.
rebuild cuneiform-1.1.0-alt4
Cuneiform is an OCR system originally developed and open sourced by Cognitive technologies.
rebuild dvdauthor-0.7.2-alt3
set of tools to author a DVD
rebuild emacs26-26.1.92-alt5
GNU Emacs text editor
rebuild freeswitch-1.10.10-alt1
FreeSWITCH open source telephony platform
rebuild gem-rmagick-4.1.1-alt1
ImageMagick for Ruby
rebuild imagescan-3.61.0-alt1
EPSON Image Scan v3 front-end for scanners and all-in-ones
rebuild inkscape-1.0-alt1
A Vector Drawing Application
rebuild kde5-digikam-6.4.0-alt4
digiKam is an advanced digital photo management application for linux
rebuild kde5-kcm-grub2-0.6.4-alt3
Configuring the GRUB2
rebuild libopenshot-0.2.5-alt1
OpenShot Video Library
rebuild pfstools-2.1.0-alt4.1
High Dynamic Range (HDR) Images and Video manipulation tools
rebuild php7-imagick-3.7.0-alt1.33
PHP wrapper to the ImageMagick library
rebuild php8.1-imagick-3.7.0-alt1.16
PHP wrapper to the ImageMagick library
Minimalist Image Viewer
Object-oriented Python interface to ImageMagick
rebuild rss_glx-0.9.1-alt8
Really Slick Screensavers
rebuild synfigstudio-1.3.12-alt1
Synfig studio - animation program
rebuild transcode-1.1.7-alt12
A linux video stream processing utility
rebuild vips-8.4.5-alt3
Large image processing library
rebuild zbar-0.10-alt9
A library for scanning and decoding bar codes
The GNUstep GUI library
A Framework for accessing and rendering PDF content
Oct. 12, 2020 Andrey Cherepanov:
- Build without libgnustep-objc2-devel. - Build on aarch64 architectire.
Implementation of the PreferencePanes framework (NSPreferencePane)
The GNUstep Workspace Manager of which the most visible part is the filebrowser
rebuild gnustep-IMImage-2004-alt8
IMImage image Inspector for GWorkspace.app to preview many types of graphics formats
Feb 29, 2024, 05:46 PM
#341031 sent by Alexander Danilov
fix_CVE-2020-8002,CVE-2020-8003
Virgl Rendering library
Feb. 9, 2024 Alexey Shabalin:
- Add info about CVE to changelog.
Feb 27, 2024, 07:30 PM
#341148 sent by Alexander Danilov
fix_CVE-2024-22667
VIsual editor iMproved
Jan. 25, 2024 Gleb Fotengauer-Malinovskiy:
- Reverted upstream commit "patch 9.1.0041: xxd -i may generate incorrect C statements" to fix regression in xxd -i output (ALT#49180).
Feb 26, 2024, 03:36 PM
#341115 sent by Alexander Danilov
fix_CVE-2023-50387
A lightweight caching nameserver
Feb. 19, 2024 Mikhail Efremov:
- Fixed different signedness comparison on 32bit systems. - Dropped obsoleted patches. - Patches from upstream git: + Add missing CHANGELOG entries for 2.90; + Fix spurious "resource limit exceeded" messages. - Updated to 2.90 (fixes: CVE-2023-50387,CVE 2023-50868).
Feb 22, 2024, 01:32 PM
#340608 sent by Alexander Danilov
fix_CVE-2023-52071,CVE-2024-0853
Gets a file from a FTP, GOPHER or HTTP server
Jan. 31, 2024 Anton Farygin:
- 8.5.0 -> 8.6.0 - Fixes: * CVE-2024-0853 : OCSP verification bypass with TLS session reuse
Feb 20, 2024, 05:52 PM
#340762 sent by Alexander Danilov
fix_CVE-2024-22211
Remote Desktop Protocol functionality
Feb. 11, 2024 Andrey Cherepanov:
- New version.
Feb 14, 2024, 03:33 PM
#340033 sent by Alexander Danilov
fix_CVE-2024-0408,CVE-2024-0409
Multiplatform C++ GUI Fast Light ToolKit
VESA CVT standard timing modelines generator
X.Org combined protocol headers
A TigerVNC remote display system
Dec. 19, 2023 George V. Kouryachy:
- Eliminate missing -rfbwait option
Feb 6, 2024, 04:43 PM
#339892 sent by Alexander Danilov
fix_CVE-2023-40546,CVE-2023-40547,CVE-2023-40548,CVE-2023-40549,CVE-2023-40550,CVE-2023-40551,CVE-2023-4692,CVE-2023-4693
First-stage UEFI bootloader
Feb. 1, 2024 Egor Ignatov:
- new version - update shim-15.8-alt-Bump-grub-SBAT-revocation-to-4 patch - Fixes: + CVE-2023-40546 mok: fix LogError() invocation + CVE-2023-40547 - avoid incorrectly trusting HTTP headers + CVE-2023-40548 Fix integer overflow on SBAT section size on 32-bit system + CVE-2023-40549 Authenticode: verify that the signature header is in bounds. + CVE-2023-40550 pe: Fix an out-of-bound read in verify_buffer_sbat() + CVE-2023-40551: pe-relocate: Fix bounds check for MZ binaries
Feb 6, 2024, 11:08 AM
#338932 sent by Alexander Danilov
fix_CVE-2023-5455
The Identity, Policy and Audit system
Certificate status monitor and PKI enrollment client
Dec. 21, 2023 Stanislav Levin:
- 0.79.18 -> 0.79.19.
Feb 6, 2024, 10:38 AM
#339383 sent by Alexander Danilov
fix_CVE-2023-5981
A TLS protocol implementation
Nov. 23, 2023 Mikhail Efremov:
- auth/rsa_psk: side-step potential side-channel (fixes: CVE-2023-5981).
Feb 5, 2024, 04:37 PM
#339369 sent by Alexander Danilov
fix_CVE-2023-48795
OpenSSH free Secure Shell (SSH) implementation
Jan. 16, 2024 Gleb Fotengauer-Malinovskiy:
- Backported upstream security fix for Terrapin attack (fixes CVE-2023-48795).
Feb 5, 2024, 11:45 AM
#339388 sent by Alexander Danilov
fix_CVE-2023-52339
Extensible Binary Meta Language access library
Jan. 24, 2024 Konstantin Lepikhov:
- 1.4.5.
Jan 24, 2024, 07:40 PM
#338423 sent by Alexander Danilov
fix_CVE-2023-34058,CVE-2023-34059,CVE-2023-20900,CVE-2023-20867
Open Virtual Machine Tools for virtual machines hosted on VMware
Jan. 18, 2024 Alexander Danilov:
- Backport to c9.
Jan 19, 2024, 04:25 PM
#338356 sent by Alexander Danilov
fix_CVE-2021-20314,CVE-2021-33912,CVE-2021-33913
Implementation of the SPF specification
Oct. 15, 2021 Aleksei Nikiforov:
- Updated to latest upstream snapshot
Dec 27, 2023, 10:17 AM
#337195 sent by Alexander Danilov
fix_CVE-2017-18926,CVE-2020-25713
RDF Parser Toolkit for Redland
Dec. 25, 2023 Sergey V Turchin:
- new version (fixes: CVE-2017-18926 CVE-2020-25713) (closes: 48916)
Dec 21, 2023, 07:17 PM
#336757 sent by Alexander Danilov
fix_CVE-2023-46218,CVE-2023-46219
Gets a file from a FTP, GOPHER or HTTP server
Dec. 6, 2023 Anton Farygin:
- 8.4.0 -> 8.5.0 - Fixes: * CVE-2023-46218: cookie mixed case PSL bypass * CVE-2023-46219: HSTS long file name clears contents
Dec 18, 2023, 04:28 PM
#336551 sent by Alexander Danilov
fix_CVE-2019-17362
A comprehensive, portable cryptographic toolkit
Sept. 21, 2021 Grigory Ustinov:
- Drop devel-static subpackage.
Dec 18, 2023, 09:59 AM
#336518 sent by Alexander Danilov
fix_CVE-2023-2977,CVE-2023-40660,CVE-2023-40661,CVE-2023-4535
OpenSC library - for accessing SmartCard devices using PC/SC Lite
Dec. 14, 2023 Andrey Cherepanov:
- New version.
Dec 14, 2023, 05:56 PM
#336273 sent by Alexander Danilov
fix_CVE-2023-49284,CVE-2022-20001
A friendly interactive shell
Dec. 6, 2023 Alexey Shabalin:
- 3.6.4 (Fixes: CVE-2023-49284)