TAR Image: alt-education-9.0-aarch64.tar.xz

Summary: Transport Layer Security library

March 29, 2024 Mikhail Efremov:

- Fix side-channel in the deterministic ECDSA (fixes: CVE-2024-28834).
- tests: Add test for CVE-2024-28835.
- rsa-psk: minimize branching after decryption (fixes: CVE-2024-0553).
- x509: detect loop in certificate chain (fixes: CVE-2024-0567).

Version: 3.7.4-alt2 → 3.7.17-alt1

Summary: Libraries and header files needed for Python 3 development

Feb. 18, 2024 Grigory Ustinov:

- Updated to upstream version 3.7.17.
- CVE Fixes (Fixes: CVE-2023-24329, CVE-2022-37454, CVE-2020-10735).

Version: 3.7.4-alt2 → 3.7.17-alt1

Summary: Version 3 of the Python programming language aka Python 3000

Feb. 18, 2024 Grigory Ustinov:

- Updated to upstream version 3.7.17.
- CVE Fixes (Fixes: CVE-2023-24329, CVE-2022-37454, CVE-2020-10735).

Version: 3.7.4-alt2 → 3.7.17-alt1

Summary: Python 3 runtime libraries

Feb. 18, 2024 Grigory Ustinov:

- Updated to upstream version 3.7.17.
- CVE Fixes (Fixes: CVE-2023-24329, CVE-2022-37454, CVE-2020-10735).

Version: 3.7.4-alt2 → 3.7.17-alt1

Summary: A GUI toolkit for Python 3

Feb. 18, 2024 Grigory Ustinov:

- Updated to upstream version 3.7.17.
- CVE Fixes (Fixes: CVE-2023-24329, CVE-2022-37454, CVE-2020-10735).

Version: 3.7.4-alt2 → 3.7.17-alt1

Summary: Python3 shared library

Feb. 18, 2024 Grigory Ustinov:

- Updated to upstream version 3.7.17.
- CVE Fixes (Fixes: CVE-2023-24329, CVE-2022-37454, CVE-2020-10735).

Version: 11.5-alt1 → 12.18-alt0.M90P.1

Summary: The shared libraries required for any PostgreSQL clients

Feb. 12, 2024 Alexei Takaseev:

- 12.18 (Fixes CVE-2024-0985)

Version: 1.20.5-alt2 → 1.20.8-alt12

Summary: A kdrive-based X server

Jan. 16, 2024 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0409, CVE-2024-0408

Version: 1.20.5-alt2 → 1.20.8-alt12

Summary: Wayland X server

Jan. 16, 2024 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0409, CVE-2024-0408

Version: 1.20.5-alt2 → 1.20.8-alt12

Summary: The X server common files

Jan. 16, 2024 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0409, CVE-2024-0408

Version: 1.20.5-alt2 → 1.20.8-alt12

Summary: Xserver - X Window System display server

Jan. 16, 2024 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0409, CVE-2024-0408

Version: 1.20.5-alt2 → 1.20.8-alt11

Summary: A kdrive-based X server

Dec. 13, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6377, CVE-2023-6478

Version: 1.20.5-alt2 → 1.20.8-alt11

Summary: Xserver - X Window System display server

Dec. 13, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6377, CVE-2023-6478

Version: 1.20.5-alt2 → 1.20.8-alt11

Summary: Wayland X server

Dec. 13, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6377, CVE-2023-6478

Version: 1.20.5-alt2 → 1.20.8-alt11

Summary: The X server common files

Dec. 13, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2023-6377, CVE-2023-6478

Version: 3.3.15-alt4.git4c4d8b24640612 → 3.3.17-alt7.g37f1060.p10.2

Summary: System and process monitoring utilities

Dec. 12, 2023 Mikhail Efremov:

- Patch from Fedora:
  + ps: Fix possible buffer overflow in -C option (fixes: CVE-2023-4016).
- Fixed NEWS file.
- spec: added a knob to build without systemd (by Alexey Sheplyakov)
- Makefile.am: fixed build without systemd (by Alexey Sheplyakov)

Version: 3.3.15-alt4.git4c4d8b24640612 → 3.3.17-alt7.g37f1060.p10.2

Summary: procps shared library

Dec. 12, 2023 Mikhail Efremov:

- Patch from Fedora:
  + ps: Fix possible buffer overflow in -C option (fixes: CVE-2023-4016).
- Fixed NEWS file.
- spec: added a knob to build without systemd (by Alexey Sheplyakov)
- Makefile.am: fixed build without systemd (by Alexey Sheplyakov)

Version: 2.80-alt1 → 2.85-alt2.p9.1

Summary: A lightweight caching nameserver

Dec. 12, 2023 Mikhail Efremov:

- Use RPM_OPT_FLAGS when build lease-tools.
- Use RPM_OPT_FLAGS.
- dnsmasq-helper: Fixed deadlock during restart from openresolv
  subscriber.
- Fixed bogus date in changelog.
- Fixed changelog.
- Patches upstream (backport):
  + Set the default maximum DNS UDP packet size to 1232 (fixes: CVE-2023-28450);
  + Minimum safe size is recommended to be 1232;
  + Fix write-after-free error in DHCPv6 code (fixes: CVE-2022-0934).

Version: 3.6.10-alt1 → 3.6.16-alt4

Summary: Transport Layer Security library

Nov. 23, 2023 Mikhail Efremov:

- auth/rsa_psk: side-step potential side-channel (fixes: CVE-2023-5981).

Version: 11.5-alt1 → 12.17-alt0.M90P.1

Summary: The shared libraries required for any PostgreSQL clients

Nov. 9, 2023 Alexei Takaseev:

- 12.17 (Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870)

Version: 1.20.5-alt2 → 1.20.8-alt10

Summary: Wayland X server

Nov. 16, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2021-4011, CVE-2021-4009, CVE-2021-4010,
	CVE-2021-4008, CVE-2022-2320, CVE-2022-2319, CVE-2022-46340, CVE-2022-46341,
	CVE-2022-46342, CVE-2022-46343, CVE-2022-46344, CVE-2022-4283, CVE-2022-46340,
	CVE-2023-0494, CVE-2023-1393, CVE-2023-5367, CVE-2023-5380

Version: 1.20.5-alt2 → 1.20.8-alt10

Summary: A kdrive-based X server

Nov. 16, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2021-4011, CVE-2021-4009, CVE-2021-4010,
	CVE-2021-4008, CVE-2022-2320, CVE-2022-2319, CVE-2022-46340, CVE-2022-46341,
	CVE-2022-46342, CVE-2022-46343, CVE-2022-46344, CVE-2022-4283, CVE-2022-46340,
	CVE-2023-0494, CVE-2023-1393, CVE-2023-5367, CVE-2023-5380

Version: 1.20.5-alt2 → 1.20.8-alt10

Summary: The X server common files

Nov. 16, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2021-4011, CVE-2021-4009, CVE-2021-4010,
	CVE-2021-4008, CVE-2022-2320, CVE-2022-2319, CVE-2022-46340, CVE-2022-46341,
	CVE-2022-46342, CVE-2022-46343, CVE-2022-46344, CVE-2022-4283, CVE-2022-46340,
	CVE-2023-0494, CVE-2023-1393, CVE-2023-5367, CVE-2023-5380

Version: 1.20.5-alt2 → 1.20.8-alt10

Summary: Xserver - X Window System display server

Nov. 16, 2023 Valery Inozemtsev:

- cherry pick upstream fixes for CVE-2021-4011, CVE-2021-4009, CVE-2021-4010,
	CVE-2021-4008, CVE-2022-2320, CVE-2022-2319, CVE-2022-46340, CVE-2022-46341,
	CVE-2022-46342, CVE-2022-46343, CVE-2022-46344, CVE-2022-4283, CVE-2022-46340,
	CVE-2023-0494, CVE-2023-1393, CVE-2023-5367, CVE-2023-5380

Version: 4.4.1-alt1 → 4.4.3.P1-alt1

Summary: Dynamic Host Configuration Protocol (DHCP) distribution

Oct. 7, 2022 Mikhail Efremov:

- Updated to 4.4.3-P1 (fixes: CVE-2022-2928,CVE-2022-2929).

Version: 4.4.1-alt1 → 4.4.3.P1-alt1

Summary: The ISC DHCP client daemon

Oct. 7, 2022 Mikhail Efremov:

- Updated to 4.4.3-P1 (fixes: CVE-2022-2928,CVE-2022-2929).

Version: 4.4.1-alt1 → 4.4.3.P1-alt1

Summary: Shared libraries used by ISC dhcp client and server

Oct. 7, 2022 Mikhail Efremov:

- Updated to 4.4.3-P1 (fixes: CVE-2022-2928,CVE-2022-2929).

Version: 2.02-alt18 → 2.02-alt29.qa5

Summary: GRand Unified Bootloader (UEFI variant)

Sept. 21, 2023 Egor Ignatov:

- backport upstream CVE fix (closes: #45913) (fixes: CVE-2022-3775)
  + add grub-2.06-upstream-font-Fix-an-integer-underflow-in-blit_comb patch

Version: 2.02-alt18 → 2.02-alt29.qa5

Summary: GRand Unified Bootloader (common part)

Sept. 21, 2023 Egor Ignatov:

- backport upstream CVE fix (closes: #45913) (fixes: CVE-2022-3775)
  + add grub-2.06-upstream-font-Fix-an-integer-underflow-in-blit_comb patch

Version: 11.5-alt1 → 12.16-alt0.M90P.1

Summary: The shared libraries required for any PostgreSQL clients

Aug. 9, 2023 Alexei Takaseev:

- 12.16 (Fixes CVE-2023-39417)

Version: 1.16.3-alt1 → 1.17.2-alt5

Summary: Kerberos 5 programs for use on workstations

July 27, 2023 Ivan A. Melnikov:

- Backport fix for use-after-free in kadmin5
  (Fixes: CVE-2023-36054).

Version: 1.16.3-alt1 → 1.17.2-alt5

Summary: The shared libraries used by Kerberos 5

July 27, 2023 Ivan A. Melnikov:

- Backport fix for use-after-free in kadmin5
  (Fixes: CVE-2023-36054).

Version: 60.8.0-alt1 → 102.7.1-alt1

Summary: Thunderbird is Mozilla's e-mail client

Feb. 3, 2023 Pavel Vasenkov:

- New version.
- Security fixes:
  + CVE-2023-0430 Revocation status of S/Mime signature certificates was not checked

Version: 4.1.3-alt2 → 4.3.6-alt1

Summary: FFmpeg audio, video and subtitle streams (de)multiplexing library