Репозитории ALT
Последнее обновление в Сб, 06 июня 2020, 00:47:39 +0000 | Пакетов: 16795
en ru
Исправления уязвимостей

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2020-01-15

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.210(Fixes:_CVE-2019-14615,_CVE-2019-14895)

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2020-01-08

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.4.1).
- Fixed:
+ CVE-2019-17015 Memory corruption in parent process during new content process initialization on Windows
+ CVE-2019-17016 Bypass of @namespace CSS sanitization during pasting
+ CVE-2019-17017 Type Confusion in XPCVariant.cpp
+ CVE-2019-17021 Heap address disclosure in parent process during content process initialization on Windows
+ CVE-2019-17022 CSS sanitization does not escape HTML tags
+ CVE-2019-17024 Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-12-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.207 (Fixes: CVE-2019-19332)

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-12-05

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.3.0).
- Fixed:
+ CVE-2019-17008 Use-after-free in worker destruction
+ CVE-2019-13722 Stack corruption due to incorrect number of arguments in WebRTC code
+ CVE-2019-11745 Out of bounds write in NSS when encrypting with a block cipher
+ CVE-2019-17009 Updater temporary files accessible to unprivileged processes
+ CVE-2019-17010 Use-after-free when performing device orientation checks
+ CVE-2019-17005 Buffer overflow in plain text serializer
+ CVE-2019-17011 Use-after-free when retrieving a document in antitracking
+ CVE-2019-17012 Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3

oniguruma-6.9.4-alt1.src.rpm  сборка 2019-12-02

Группа: Система/Библиотеки
О пакете: Regular expressions library
Изменения:

- 6.9.4
- fixes:
* CVE-2019-19012 Integer overflow related to reg->dmax in search_in_range()
* CVE-2019-19203 heap-buffer-overflow in gb18030_mbc_enc_len()
* CVE-2019-19204 heap-buffer-overflow in fetch_interval_quantifier()

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-11-29

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.205 (Fixes: CVE-2019-18660)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-11-10

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.200 (Fixes: CVE-2017-5715)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-11-06

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.199 (Fixes: CVE-2019-15098)

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-10-27

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.2.0).
- Fixed:
+ CVE-2019-15903 Heap overflow in expat library in XML_GetCurrentLineNumber
+ CVE-2019-11757 Use-after-free when creating index updates in IndexedDB
+ CVE-2019-11758 Potentially exploitable crash due to 360 Total Security
+ CVE-2019-11759 Stack buffer overflow in HKDF output
+ CVE-2019-11760 Stack buffer overflow in WebRTC networking
+ CVE-2019-11761 Unintended access to a privileged JSONView object
+ CVE-2019-11762 document.domain-based origin isolation has same-origin-property violation
+ CVE-2019-11763 Incorrect HTML parsing results in XSS bypass technique
+ CVE-2019-11764 Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2

sudo-1:1.8.28-alt1.src.rpm  сборка 2019-10-15

Группа: Система/Основа
О пакете: Allows command execution as another user
Изменения:

- Update to autumn security release (closes: 37334)
- Code execution with euid==0 in rare box configurations (fixes: CVE-2019-14287)
- Fix post script for sudowheel control in case of upgrade in not default state

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-09-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.194 (Fixes: CVE-2019-14814, CVE-2019-14815, CVE-2019-14816, CVE-2019-14821)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-09-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.194 (Fixes: CVE-2019-14814, CVE-2019-14815, CVE-2019-14816, CVE-2019-14821)

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-09-06

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.191 (Fixes: CVE-2019-3900)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-09-06

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.191 (Fixes: CVE-2019-3900)

libspice-gtk-0.34-alt0.M80C.1.src.rpm  сборка 2019-09-04

Группа: Система/Библиотеки
О пакете: A GTK widget for SPICE clients
Изменения:

- Port to c8.1 branch due to upgrade of the server side (SPICE);
- (Fixes: CVE-2016-3066).

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-09-04

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.1.0).
- Fixed:
+ CVE-2019-11751 Malicious code execution through command line parameters
+ CVE-2019-11746 Use-after-free while manipulating video
+ CVE-2019-11744 XSS by breaking out of title and textarea elements using innerHTML
+ CVE-2019-11742 Same-origin policy violation with SVG filters and canvas to steal cross-origin images
+ CVE-2019-11736 File manipulation and privilege escalation in Mozilla Maintenance Service
+ CVE-2019-11753 Privilege escalation with Mozilla Maintenance Service in custom Firefox installation location
+ CVE-2019-11752 Use-after-free while extracting a key value in IndexedDB
+ CVE-2019-9812 Sandbox escape through Firefox Sync
+ CVE-2019-11743 Cross-origin access to unload event attributes
+ CVE-2019-11748 Persistence of WebRTC permissions in a third party context
+ CVE-2019-11749 Camera information available without prompting using getUserMedia
+ CVE-2019-11750 Type confusion in Spidermonkey
+ CVE-2019-11738 Content security policy bypass through hash-based sources in directives
+ CVE-2019-11747 'Forget about this site' removes sites from pre-loaded HSTS list
+ CVE-2019-11735 Memory safety bugs fixed in Firefox 69 and Firefox ESR 68.1
+ CVE-2019-11740 Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9
- Build in 8 jobs.

dovecot-pigeonhole-1:0.4.11-alt1.M80C.1.src.rpm  сборка 2019-08-30

Группа: Система/Серверы
О пакете: Sieve language and the ManageSieve protocol for the Dovecot Secure IMAP Server
Изменения:

- Applied upstream security fix (fixes CVE-2019-11500).

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-08-15

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.0.2).
- Fixed:
+ CVE-2019-11733 Stored passwords in 'Saved Logins' can be copied without master password entry

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-08-11

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.189 (Fixes: CVE-2019-11478)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-08-11

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.189 (Fixes: CVE-2019-11478)

nagios-nrpe-3.2.1-alt2.M80C.2.src.rpm  сборка 2019-08-05

Группа: Мониторинг
О пакете: NRPE -- Nagios(R) Remote Plug-ins Execution daemon.
Изменения:

- do not allow arguments (to harden more against CVE-2014-2913, BDU:2019-01845):
+ set dont_blame_nrpe=0
+ --disable-command-args
- package check_timed_logs.pl

kernel-image-std-def-2:4.4.188-alt0.M80C.1.src.rpm  сборка 2019-08-05

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.187 (Fixes: CVE-2019-10207, CVE-2019-13648)

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-08-05

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.187 (Fixes: CVE-2019-10207, CVE-2019-13648)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-08-05

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.187 (Fixes: CVE-2019-10207, CVE-2019-13648)

samba-DC-4.6.16-alt1.M80C.1.src.rpm  сборка 2019-07-23

Группа: Система/Серверы
О пакете: Samba Active Directory Domain Controller
Изменения:

- Update to latest samba-4.6 security release
- Security fixes:
+ CVE-2018-10858 Insufficient input validation on client directory
listing in libsmbclient
+ CVE-2018-10919 Confidential attribute disclosure from the AD LDAP server

kernel-image-std-def-2:4.4.188-alt0.M80C.1.src.rpm  сборка 2019-07-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.186 (Fixes: CVE-2019-3846)

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-07-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.186 (Fixes: CVE-2019-3846)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-07-21

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.186 (Fixes: CVE-2019-3846)

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-07-19

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (68.0.1).
- Fixed:
+ CVE-2019-9811 Sandbox escape via installation of malicious language pack
+ CVE-2019-11711 Script injection within domain through inner window reuse
+ CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
+ CVE-2019-11713 Use-after-free with HTTP/2 cached stream
+ CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
+ CVE-2019-11715 HTML parsing error can contribute to content XSS
+ CVE-2019-11717 Caret character improperly escaped in origins
+ CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
+ CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
+ CVE-2019-11709 Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8

thunderbird-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-07-10

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (60.8.0).
- Fixed:
+ CVE-2019-9811 Sandbox escape via installation of malicious language pack
+ CVE-2019-11711 Script injection within domain through inner window reuse
+ CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
+ CVE-2019-11713 Use-after-free with HTTP/2 cached stream
+ CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
+ CVE-2019-11715 HTML parsing error can contribute to content XSS
+ CVE-2019-11717 Caret character improperly escaped in origins
+ CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
+ CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
+ CVE-2019-11709 Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 60.8
- Enigmail 2.0.12.

firefox-esr-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-07-09

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.8.0).
- Fixed:
+ CVE-2019-9811 Sandbox escape via installation of malicious language pack
+ CVE-2019-11711 Script injection within domain through inner window reuse
+ CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
+ CVE-2019-11713 Use-after-free with HTTP/2 cached stream
+ CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
+ CVE-2019-11715 HTML parsing error can contribute to content XSS
+ CVE-2019-11717 Caret character improperly escaped in origins
+ CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
+ CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
+ CVE-2019-11709 Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-07-09

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.8.0).
- Fixed:
+ CVE-2019-9811 Sandbox escape via installation of malicious language pack
+ CVE-2019-11711 Script injection within domain through inner window reuse
+ CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
+ CVE-2019-11713 Use-after-free with HTTP/2 cached stream
+ CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
+ CVE-2019-11715 HTML parsing error can contribute to content XSS
+ CVE-2019-11717 Caret character improperly escaped in origins
+ CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
+ CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
+ CVE-2019-11709 Memory safety bugs fixed in Firefox 68 and Firefox ESR 60.8

kernel-image-std-def-2:4.4.188-alt0.M80C.1.src.rpm  сборка 2019-07-03

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.184 (Fixes: CVE-2011-1079, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130,
CVE-2019-11091, CVE-2019-11477, CVE-2019-11478, CVE-2019-11479,
CVE-2019-11833, CVE-2019-3882)

kernel-image-std-def-2:4.4.194-alt0.M80C.1.src.rpm  сборка 2019-07-03

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.184 (Fixes: CVE-2011-1079, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130,
CVE-2019-11091, CVE-2019-11477, CVE-2019-11478, CVE-2019-11479,
CVE-2019-11833, CVE-2019-3882)

kernel-image-std-def-2:4.4.211-alt0.M80C.1.src.rpm  сборка 2019-07-03

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.184 (Fixes: CVE-2011-1079, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130,
CVE-2019-11091, CVE-2019-11477, CVE-2019-11478, CVE-2019-11479,
CVE-2019-11833, CVE-2019-3882)

thunderbird-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-06-22

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (60.7.2).
- Fixed:
+ CVE-2019-11707 Type confusion in Array.pop
+ CVE-2019-11708 sandbox escape using Prompt:Open

firefox-esr-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-06-20

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.2).
- Fixed:
+ CVE-2019-11708 sandbox escape using Prompt:Open

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-06-20

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.2).
- Fixed:
+ CVE-2019-11708 sandbox escape using Prompt:Open

<<<<<<< HEAD

kernel-image-std-def-2:4.4.181-alt0.M80C.1.src.rpm  сборка 2019-06-18

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v4.4.181
+ (Fixes: CVE-2019-11477, CVE-2019-11478, CVE-2019-11479)

firefox-esr-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-06-18

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.1).
- Fixed:
+ CVE-2019-11707 Type confusion in Array.pop

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-06-18

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.1).
- Fixed:
+ CVE-2019-11707 Type confusion in Array.pop

thunderbird-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-06-14

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (60.7.1).
- Fixed:
+ CVE-2019-11703 Heap buffer overflow in icalparser.c
+ CVE-2019-11704 Heap buffer overflow in icalvalue.c
+ CVE-2019-11705 Stack buffer overflow in icalrecur.c
+ CVE-2019-11706 Type confusion in icalproperty.c
- Enigmail 2.0.11.
- thunderbird-enigmail now requires pinentry-x11 (ALT #18790).
- Use juniorModeForceOff by default in Enigmail (ALT #36447).
- Fix l10n dtd of Enigmail.

firefox-esr-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-05-21

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.0).
- Fixed:
+ CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS
+ CVE-2019-9816 Type confusion with object groups and UnboxedObjects
+ CVE-2019-9817 Stealing of cross-domain images using canvas
+ CVE-2019-9818 Use-after-free in crash generation server
+ CVE-2019-9819 Compartment mismatch with fetch API
+ CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell
+ CVE-2019-11691 Use-after-free in XMLHttpRequest
+ CVE-2019-11692 Use-after-free removing listeners in the event listener manager
+ CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux
+ CVE-2019-7317 Use-after-free in png_image_free of libpng library
+ CVE-2019-9797 Cross-origin theft of images with createImageBitmap
+ CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext
+ CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox
+ CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks
+ CVE-2019-5798 Out-of-bounds read in Skia
+ CVE-2019-9800 Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-05-21

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.7.0).
- Fixed:
+ CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS
+ CVE-2019-9816 Type confusion with object groups and UnboxedObjects
+ CVE-2019-9817 Stealing of cross-domain images using canvas
+ CVE-2019-9818 Use-after-free in crash generation server
+ CVE-2019-9819 Compartment mismatch with fetch API
+ CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell
+ CVE-2019-11691 Use-after-free in XMLHttpRequest
+ CVE-2019-11692 Use-after-free removing listeners in the event listener manager
+ CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux
+ CVE-2019-7317 Use-after-free in png_image_free of libpng library
+ CVE-2019-9797 Cross-origin theft of images with createImageBitmap
+ CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext
+ CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox
+ CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks
+ CVE-2019-5798 Out-of-bounds read in Skia
+ CVE-2019-9800 Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7

<<<<<<< HEAD

firmware-intel-ucode-2:9-alt1.20190514.src.rpm  сборка 2019-05-20

Группа: Система/Ядро и оборудование
О пакете: Microcode definitions for Intel processors
Изменения:

- Sync with Debian 3.20190514.1:
+ New upstream microcode datafile 20190514
+ SECURITY UPDATE
Implements MDS mitigation (RIDL, Fallout, Zombieload), INTEL-SA-00223
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
+ New Microcodes:
sig 0x00030678, pf_mask 0x02, 2019-04-22, rev 0x0838, size 52224
sig 0x00030678, pf_mask 0x0c, 2019-04-22, rev 0x0838, size 52224
sig 0x00030679, pf_mask 0x0f, 2019-04-23, rev 0x090c, size 52224
sig 0x000406c3, pf_mask 0x01, 2019-04-23, rev 0x0368, size 69632
sig 0x000406c4, pf_mask 0x01, 2019-04-23, rev 0x0411, size 68608
sig 0x00050657, pf_mask 0xbf, 2019-02-27, rev 0x5000021, size 47104
+ Updated Microcodes:
sig 0x000206a7, pf_mask 0x12, 2019-02-17, rev 0x002f, size 12288
sig 0x000306a9, pf_mask 0x12, 2019-02-13, rev 0x0021, size 14336
sig 0x000306c3, pf_mask 0x32, 2019-02-26, rev 0x0027, size 23552
sig 0x000306d4, pf_mask 0xc0, 2019-03-07, rev 0x002d, size 19456
sig 0x000306e4, pf_mask 0xed, 2019-03-14, rev 0x042e, size 16384
sig 0x000306e7, pf_mask 0xed, 2019-03-14, rev 0x0715, size 17408
sig 0x000306f2, pf_mask 0x6f, 2019-03-01, rev 0x0043, size 34816
sig 0x000306f4, pf_mask 0x80, 2019-03-01, rev 0x0014, size 18432
sig 0x00040651, pf_mask 0x72, 2019-02-26, rev 0x0025, size 21504
sig 0x00040661, pf_mask 0x32, 2019-02-26, rev 0x001b, size 25600
sig 0x00040671, pf_mask 0x22, 2019-03-07, rev 0x0020, size 14336
sig 0x000406e3, pf_mask 0xc0, 2019-04-01, rev 0x00cc, size 100352
sig 0x000406f1, pf_mask 0xef, 2019-03-02, rev 0xb000036, size 30720
sig 0x00050654, pf_mask 0xb7, 2019-04-02, rev 0x200005e, size 32768
sig 0x00050662, pf_mask 0x10, 2019-03-23, rev 0x001a, size 32768
sig 0x00050663, pf_mask 0x10, 2019-03-23, rev 0x7000017, size 24576
sig 0x00050664, pf_mask 0x10, 2019-03-23, rev 0xf000015, size 23552
sig 0x00050665, pf_mask 0x10, 2019-03-23, rev 0xe00000d, size 19456
sig 0x000506c9, pf_mask 0x03, 2019-01-15, rev 0x0038, size 17408
sig 0x000506ca, pf_mask 0x03, 2019-03-01, rev 0x0016, size 15360
sig 0x000506e3, pf_mask 0x36, 2019-04-01, rev 0x00cc, size 100352
sig 0x000506f1, pf_mask 0x01, 2019-03-21, rev 0x002e, size 11264
sig 0x000706a1, pf_mask 0x01, 2019-01-02, rev 0x002e, size 73728
sig 0x000806e9, pf_mask 0x10, 2019-04-01, rev 0x00b4, size 98304
sig 0x000806e9, pf_mask 0xc0, 2019-04-01, rev 0x00b4, size 99328
sig 0x000806ea, pf_mask 0xc0, 2019-04-01, rev 0x00b4, size 99328
sig 0x000806eb, pf_mask 0xd0, 2019-03-30, rev 0x00b8, size 98304
sig 0x000806ec, pf_mask 0x94, 2019-03-30, rev 0x00b8, size 97280
sig 0x000906e9, pf_mask 0x2a, 2019-04-01, rev 0x00b4, size 99328
sig 0x000906ea, pf_mask 0x22, 2019-04-01, rev 0x00b4, size 98304
sig 0x000906eb, pf_mask 0x02, 2019-04-01, rev 0x00b4, size 99328
sig 0x000906ec, pf_mask 0x22, 2019-02-14, rev 0x00ae, size 98304
sig 0x000906ed, pf_mask 0x22, 2019-03-17, rev 0x00b8, size 97280

thunderbird-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-05-20

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (60.7.0).
- Fixed:
+ CVE-2019-9815 Disable hyperthreading on content JavaScript threads on macOS
+ CVE-2019-9816 Type confusion with object groups and UnboxedObjects
+ CVE-2019-9817 Stealing of cross-domain images using canvas
+ CVE-2019-9818 Use-after-free in crash generation server
+ CVE-2019-9819 Compartment mismatch with fetch API
+ CVE-2019-9820 Use-after-free of ChromeEventHandler by DocShell
+ CVE-2019-11691 Use-after-free in XMLHttpRequest
+ CVE-2019-11692 Use-after-free removing listeners in the event listener manager
+ CVE-2019-11693 Buffer overflow in WebGL bufferdata on Linux
+ CVE-2019-7317 Use-after-free in png_image_free of libpng library
+ CVE-2019-9797 Cross-origin theft of images with createImageBitmap
+ CVE-2018-18511 Cross-origin theft of images with ImageBitmapRenderingContext
+ CVE-2019-11694 Uninitialized memory memory leakage in Windows sandbox
+ CVE-2019-11698 Theft of user history data through drag and drop of hyperlinks to and from bookmarks
+ CVE-2019-5798 Out-of-bounds read in Skia
+ CVE-2019-9800 Memory safety bugs fixed in Firefox 67, Firefox ESR 60.7, and Thunderbird 60.7

dhcpcd-1:6.11.7-alt1.src.rpm  сборка 2019-05-14

Группа: Система/Серверы
О пакете: DHCP Client
Изменения:

- Fix crash on lease renewals (closes: #36730).
- Updated to 6.11.7 (fixes: CVE-2019-11766).

thunderbird-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-03-26

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (60.6.1).
- Fixes:
+ CVE-2019-9810 IonMonkey MArraySlice has incorrect alias information
+ CVE-2019-9813 Ionmonkey type confusion with __proto__ mutations

firefox-esr-60.8.0-alt0.M80C.1.src.rpm  сборка 2019-03-23

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.6.1).
- Fixed:
+ CVE-2019-9810 IonMonkey MArraySlice has incorrect alias information
+ CVE-2019-9813 Ionmonkey type confusion with __proto__ mutations

firefox-esr-68.4.1-alt0.M80C.1.src.rpm  сборка 2019-03-23

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New ESR version (60.6.1).
- Fixed:
+ CVE-2019-9810 IonMonkey MArraySlice has incorrect alias information
+ CVE-2019-9813 Ionmonkey type confusion with __proto__ mutations

  1         3     4     5            Последняя »  

 
Ветви:
свернуть окно
Проект Geyser основан на коде из проекта Prometheus 2.0, который был доступен по лицензии MIT