Security

adobe-flash-player Jan 12, 2017, 05:06 AMJan 12, 2017, 05:06 AM
Version: 24-alt0.M70P.2
Summary: Adobe Flash Player
Changelog:
- new version
- security fixes:
  CVE-2017-2925, CVE-2017-2926, CVE-2017-2927, CVE-2017-2928,
  CVE-2017-2930, CVE-2017-2931, CVE-2017-2932, CVE-2017-2933,
  CVE-2017-2934, CVE-2017-2935, CVE-2017-2936, CVE-2017-2937,
  CVE-2017-2938
openssh Nov 8, 2016, 06:08 PMNov 8, 2016, 06:08 PM
Version: 6.7p1-alt1.M60P.4
Summary: OpenSSH free Secure Shell (SSH) implementation
Changelog:
- Backported upstream fixes for CVE-2015-5352, CVE-2015-6563,
  CVE-2015-6564.
bind Oct 21, 2016, 06:15 PMOct 21, 2016, 06:15 PM
Version: 9.3.6-alt7.M60P.3
Summary: ISC BIND - DNS server
Changelog:
- Really applied upstream fix for CVE-2016-2776.
- Applied fix for CVE-2016-2848.
ImageMagick Jun 11, 2016, 12:32 PMJun 11, 2016, 12:32 PM
Version: 6.6.9.7-alt0.M60P.1
Summary: An X application for displaying and manipulating images
Changelog:
- Thanks Alt Linux Active Users Club and personally yyy@
- Apply security patch from Debian:
  Disable support for reading input from a shell command, or writing
  output to a shell command. This was done by the pipe (|) prefix. It
  was possible to perform a command injection as discrived by
  CVE-2016-5118 since it use popen.
glibc Feb 16, 2016, 11:06 PMFeb 16, 2016, 11:06 PM
Version: 2.11.3-alt8.M60P.5
Summary: The GNU libc libraries
Changelog:
- Fixed CVE-2015-7547.
openssl10 Apr 23, 2015, 12:25 PMApr 23, 2015, 12:25 PM
Version: 1.0.0p-alt0.M60P.1
Summary: OpenSSL - Secure Sockets Layer and cryptography shared libraries and tools
Changelog:
- Updated to 1.0.0p (fixes CVE-2014-3571, CVE-2015-0206,
  CVE-2014-3569, CVE-2014-3572, CVE-2015-0204, CVE-2015-0205,
  CVE-2014-8275, CVE-2014-3570).
nss Nov 23, 2013, 03:41 PMNov 23, 2013, 03:41 PM
Version: 3.14.5-alt0.M60P.1
Summary: Netscape Network Security Services(NSS)
Changelog:
- New version 3.14.5
- Security fixes:
  + CVE-2013-5605 Handle invalid handshake packets
curl Jun 24, 2013, 02:41 PMJun 24, 2013, 02:41 PM
Version: 7.24.0-alt1.M60P.1
Summary: Gets a file from a FTP, GOPHER or HTTP server
Changelog:
- CVE-2013-2174 fixed (curl_easy_unescape() may parse data beyond the end of the input buffer)
strongswan Apr 30, 2013, 04:18 PMApr 30, 2013, 04:18 PM
Version: 4.6.4-alt1.M60T.1
Summary: StrongSWAN IPSEC implementation
Changelog:
- applied the upstream provided patch to fix CVE-2013-2944
  (ECDSA signature vulnerability if openssl backend is loaded)
perl Mar 12, 2013, 11:27 AMMar 12, 2013, 11:27 AM
Version: 5.12.5-alt2.M60T.1
Summary: Practical Extraction and Report Language
Changelog:
- Fixed CVE-2013-1667: memory exhaustion with arbitrary hash keys
pidgin Oct 25, 2012, 02:25 PMOct 25, 2012, 02:25 PM
Version: 2.10.6-alt1.M60P.1
Summary: A GTK+ based multiprotocol instant messaging client
Changelog:
- 2.10.6
- p6 security update (fix CVE-2012-3374)
freeradius Sep 14, 2012, 02:52 PMSep 14, 2012, 02:52 PM
Version: 2.1.10-alt3.M60T.1
Summary: High-performance and highly configurable free RADIUS server
Changelog:
- Security fix: CVE-2012-3547
- Fixed permissions for /etc/raddb/modules, /etc/raddb/sql/mysql,
  /etc/raddb/sql/postgresql dirs (640 -> 750)
samba Apr 11, 2012, 09:20 AMApr 11, 2012, 09:20 AM
Version: 3.6.4-alt1
Summary: Server and Client software to interoperate with Windows machines
Changelog:
- 3.6.4 (CVE-2012-1182)
libpng Apr 5, 2012, 04:38 AMApr 5, 2012, 04:38 AM
Version: 1.2.49-alt1
Summary: A library of functions for manipulating PNG image format files
Changelog:
- Updated to 1.2.49 (fixes CVE-2011-3048).
libtasn1 Mar 23, 2012, 07:18 PMMar 23, 2012, 07:18 PM
Version: 2.12-alt1
Summary: The ASN.1 library used in GNUTLS
Changelog:
- Updated to 2.12 (fixes CVE-2012-1569).
cyrus-imapd Nov 1, 2011, 11:32 PMNov 1, 2011, 11:32 PM
Version: 2.4.12-alt0.M60P.1
Summary: A high-performance mail store with IMAP and POP3 support
Changelog:
- Backport to p6 branch (fixes CVE-2011-3372)
radvd Oct 7, 2011, 04:16 PMOct 7, 2011, 04:16 PM
Version: 1.8.2-alt1
Summary: A Router Advertisement daemon
Changelog:
- 1.8.2. Security fixes:
  + CVE-2011-3601
  + CVE-2011-3602
  + CVE-2011-3603
  + CVE-2011-3604
  + CVE-2011-3605
libmodplug Sep 3, 2011, 06:21 PMSep 3, 2011, 06:21 PM
Version: 0.8.8.4-alt1
Summary: Modplug mod music file format library
Changelog:
- NMU: 0.8.8.4
- Security fixes:
  CVE-2011-2911 CVE-2011-2912 CVE-2011-2913 CVE-2011-2914 CVE-2011-2915
tor Jun 25, 2011, 04:20 AMJun 25, 2011, 04:20 AM
Version: 0.2.1.30-alt1
Summary: Anonymizing overlay network for TCP (The onion router)
Changelog:
- Blindly updated 0.2.1.30 (fixes numerous bugs including CVE-2011-0427).
- Updated build dependencies.
xen Jun 16, 2011, 12:41 PMJun 16, 2011, 12:41 PM
Version: 4.1.1-alt1
Summary: Xen is a virtual machine monitor
Changelog:
- 4.1.1 including CVE-2011-1898 fix
Back to Top