Репозитории ALT
Последнее обновление в Пт, 24 июля 2020, 14:09:54 +0000 | Пакетов: 23025
en ru
Исправления уязвимостей

cacti-1.2.15-alt1.src.rpm  сборка 2020-11-23

Группа: Мониторинг
О пакете: The complete RRDTool-based graphing solution.
Изменения:

- Updated to upstream version 1.2.15 (Fixes: CVE-2020-13230, CVE-2020-13231).

helm-3.4.1-alt1.src.rpm  сборка 2020-11-23

Группа: Разработка/Инструменты
О пакете: The Kubernetes Package Manager
Изменения:

- Updated to upstream version 3.4.1 (Fixes: CVE-2020-4053, CVE-2020-11013,
CVE-2020-15184, CVE-2020-15185, CVE-2020-15186, CVE-2020-15187).

kernel-image-std-pae-2:5.4.79-alt1.src.rpm  сборка 2020-11-22

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v5.4.79 (Fixes: CVE-2020-4788)

kernel-image-std-def-2:5.4.80-alt1.src.rpm  сборка 2020-11-22

Группа: Система/Ядро и оборудование
О пакете: The Linux kernel (the core of the Linux operating system)
Изменения:

- v5.4.79 (Fixes: CVE-2020-4788)

chromium-87.0.4280.66-alt1.src.rpm  сборка 2020-11-21

Группа: Сети/WWW
О пакете: An open source web browser developed by Google
Изменения:

- New version (87.0.4280.66).
- Security fixes:
- CVE-2019-8075: Insufficient data validation in Flash.
- CVE-2020-16012: Side-channel information leakage in graphics.
- CVE-2020-16014: Use after free in PPAPI.
- CVE-2020-16015: Insufficient data validation in WASM.
- CVE-2020-16018: Use after free in payments.
- CVE-2020-16019: Inappropriate implementation in filesystem.
- CVE-2020-16020: Inappropriate implementation in cryptohome.
- CVE-2020-16021: Race in ImageBurner.
- CVE-2020-16022: Insufficient policy enforcement in networking.
- CVE-2020-16023: Use after free in WebCodecs.
- CVE-2020-16024: Heap buffer overflow in UI.
- CVE-2020-16025: Heap buffer overflow in clipboard.
- CVE-2020-16026: Use after free in WebRTC.
- CVE-2020-16027: Insufficient policy enforcement in developer tools.
- CVE-2020-16028: Heap buffer overflow in WebRTC.
- CVE-2020-16029: Inappropriate implementation in PDFium.
- CVE-2020-16030: Insufficient data validation in Blink.
- CVE-2020-16031: Incorrect security UI in tab preview.
- CVE-2020-16032: Incorrect security UI in sharing.
- CVE-2020-16033: Incorrect security UI in WebUSB.
- CVE-2020-16034: Inappropriate implementation in WebRTC.
- CVE-2020-16035: Insufficient data validation in cros-disks.
- CVE-2020-16036: Inappropriate implementation in cookies.

sqliteodbc-0.9996-alt3.src.rpm  сборка 2020-11-20

Группа: Базы данных
О пакете: ODBC driver for SQLite
Изменения:

- Updated rpm post script (Fixes: CVE-2020-12050).

jbig2dec-0.19-alt1.src.rpm  сборка 2020-11-20

Группа: Графика
О пакете: A decoder implementation of the JBIG2 image compression format
Изменения:

- Updated to upstream version 0.19 (Fixes: CVE-2016-9601, CVE-2020-12268).

consul-1.8.6-alt1.src.rpm  сборка 2020-11-20

Группа: Другие
О пакете: Consul is a tool for service discovery and configuration
Изменения:

- Updated to upstream version 1.8.6 (Fixes: CVE-2019-9764, CVE-2019-12291,
CVE-2020-7219, CVE-2020-7955, CVE-2020-12797, CVE-2020-13170, CVE-2020-13250).

krb5-1.18.3-alt1.src.rpm  сборка 2020-11-19

Группа: Система/Библиотеки
О пакете: The Kerberos network authentication system
Изменения:

- 1.18.3 (Fixes: CVE-2020-28196)

ceph-15.2.6-alt1.src.rpm  сборка 2020-11-19

Группа: Система/Основа
О пакете: User space components of the Ceph file system
Изменения:

- 15.2.6
- Fixes for the following security vulnerabilities:
+ CVE-2020-25660 Fix a regression in Messenger V2 replay attacks

python-2.7.18-alt2.src.rpm  сборка 2020-11-19

Группа: Разработка/Python
О пакете: An interpreted, interactive object-oriented programming language
Изменения:

- Fixed CVE-2019-20907 and CVE-2019-CVE-2020-26116.

thunderbird-78.5.0-alt1.src.rpm  сборка 2020-11-19

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (78.5.0).
- Fixes:
+ CVE-2020-26951 Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code
+ CVE-2020-16012 Variable time processing of cross-origin images during drawImage calls
+ CVE-2020-26953 Fullscreen could be enabled without displaying the security UI
+ CVE-2020-26956 XSS through paste (manual and clipboard API)
+ CVE-2020-26958 Requests intercepted through ServiceWorkers lacked MIME type restrictions
+ CVE-2020-26959 Use-after-free in WebRequestService
+ CVE-2020-26960 Potential use-after-free in uses of nsTArray
+ CVE-2020-15999 Heap buffer overflow in freetype
+ CVE-2020-26961 DoH did not filter IPv4 mapped IP Addresses
+ CVE-2020-26965 Software keyboards may have remembered typed passwords
+ CVE-2020-26966 Single-word search queries were also broadcast to local network
+ CVE-2020-26968 Memory safety bugs fixed in Thunderbird 78.5
- Fix guess timezone for calendar (ALT #38081).

dovecot-2.3.11.3-alt1.src.rpm  сборка 2020-11-19

Группа: Система/Серверы
О пакете: Dovecot secure IMAP/POP3 server
Изменения:

- Updated to 2.3.11.3 (Fixes: CVE-2020-12100, CVE-2020-12673, CVE-2020-12674).

cifs-utils-6.11-alt1.src.rpm  сборка 2020-11-19

Группа: Система/Ядро и оборудование
О пакете: Utilities for doing and managing mounts of the Linux CIFS filesystem
Изменения:

- Updated to upstream version 6.11 (Fixes: CVE-2020-14342).

matrix-synapse-1.23.0-alt1.src.rpm  сборка 2020-11-18

Группа: Коммуникации
О пакете: Synapse: Matrix reference homeserver
Изменения:

- new version 1.23.0 (with rpmrb script)
- Unknown CVE: there are a trivially exploitable DoS vulnerability
in versions of Synapse prior to 1.20.0.
Complete details will be disclosed on Monday, November 23rd.

libXrender-0.9.10-alt1.src.rpm  сборка 2020-11-17

Группа: Система/Библиотеки
О пакете: X Render Library
Изменения:

- 0.9.10
- securuty fixes: CVE-2016-7949, CVE-2016-7950

libXtst-1.2.3-alt1.src.rpm  сборка 2020-11-17

Группа: Система/Библиотеки
О пакете: The Xtst Library
Изменения:

- 1.2.3
- securuty fixes: CVE-2016-7951, CVE-2016-7952

tigervnc-1.10.1-alt4.src.rpm  сборка 2020-11-17

Группа: Сети/Удалённый доступ
О пакете: A TigerVNC remote display system
Изменения:

- Fix CVE-2020-26117

firefox-83.0-alt1.src.rpm  сборка 2020-11-17

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New release (83.0).
- Security fixes:
+ CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code
+ CVE-2020-26952: Out of memory handling of JITed, inlined functions could lead to a memory corruption
+ CVE-2020-16012: Variable time processing of cross-origin images during drawImage calls
+ CVE-2020-26953: Fullscreen could be enabled without displaying the security UI
+ CVE-2020-26954: Local spoofing of web manifests for arbitrary pages in Firefox for Android
+ CVE-2020-26955: Cookies set during file downloads are shared between normal and Private Browsing Mode in Firefox for Android
+ CVE-2020-26956: XSS through paste (manual and clipboard API)
+ CVE-2020-26957: OneCRL was not working in Firefox for Android
+ CVE-2020-26958: Requests intercepted through ServiceWorkers lacked MIME type restrictions
+ CVE-2020-26959: Use-after-free in WebRequestService
+ CVE-2020-26960: Potential use-after-free in uses of nsTArray
+ CVE-2020-15999: Heap buffer overflow in freetype
+ CVE-2020-26961: DoH did not filter IPv4 mapped IP Addresses
+ CVE-2020-26962: Cross-origin iframes supported login autofill
+ CVE-2020-26963: History and Location interfaces could have been used to hang the browser
+ CVE-2020-26964: Firefox for Android's Remote Debugging via USB could have been abused by untrusted apps on older versions of Android
+ CVE-2020-26965: Software keyboards may have remembered typed passwords
+ CVE-2020-26966: Single-word search queries were also broadcast to local network
+ CVE-2020-26967: Mutation Observers could break or confuse Firefox Screenshots feature
+ CVE-2020-26968: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78.5
+ CVE-2020-26969: Memory safety bugs fixed in Firefox 83

firmware-intel-ucode-2:14-alt1.20201110.src.rpm  сборка 2020-11-17

Группа: Система/Ядро и оборудование
О пакете: Microcode definitions for Intel processors
Изменения:

- Sync with Debian 3.20201110.1:
+ New upstream microcode datafile 20201110:
+ Implements mitigation for CVE-2020-8696 and CVE-2020-8698,
aka INTEL-SA-00381: AVX register information leakage;
Fast-Forward store predictor information leakage
+ Implements mitigation for CVE-2020-8695, Intel SGX information
disclosure via RAPL, aka INTEL-SA-00389
+ Fixes critical errata on several processor models
+ Reintroduces SRBDS mitigations(CVE-2020-0543, INTEL-SA-00320)
for Skylake-U/Y, Skylake Xeon E3
+ New Microcodes:
sig 0x0005065b, pf_mask 0xbf, 2020-08-20, rev 0x700001e, size 27648
sig 0x000806a1, pf_mask 0x10, 2020-06-26, rev 0x0028, size 32768
sig 0x000806c1, pf_mask 0x80, 2020-10-02, rev 0x0068, size 107520
sig 0x000a0652, pf_mask 0x20, 2020-07-08, rev 0x00e0, size 93184
sig 0x000a0653, pf_mask 0x22, 2020-07-08, rev 0x00e0, size 94208
sig 0x000a0655, pf_mask 0x22, 2020-07-08, rev 0x00e0, size 93184
sig 0x000a0661, pf_mask 0x80, 2020-07-02, rev 0x00e0, size 93184
+ Updated Microcodes:
sig 0x000306f2, pf_mask 0x6f, 2020-05-27, rev 0x0044, size 34816
sig 0x000406e3, pf_mask 0xc0, 2020-07-14, rev 0x00e2, size 105472
sig 0x00050653, pf_mask 0x97, 2020-06-18, rev 0x1000159, size 33792
sig 0x00050654, pf_mask 0xb7, 2020-06-16, rev 0x2006a08, size 35840
sig 0x00050656, pf_mask 0xbf, 2020-06-18, rev 0x4003003, size 52224
sig 0x00050657, pf_mask 0xbf, 2020-06-18, rev 0x5003003, size 52224
sig 0x000506c9, pf_mask 0x03, 2020-02-27, rev 0x0040, size 17408
sig 0x000506ca, pf_mask 0x03, 2020-02-27, rev 0x001e, size 15360
sig 0x000506e3, pf_mask 0x36, 2020-07-14, rev 0x00e2, size 105472
sig 0x000706a8, pf_mask 0x01, 2020-06-09, rev 0x0018, size 75776
sig 0x000706e5, pf_mask 0x80, 2020-07-30, rev 0x00a0, size 109568
sig 0x000806e9, pf_mask 0x10, 2020-05-27, rev 0x00de, size 104448
sig 0x000806e9, pf_mask 0xc0, 2020-05-27, rev 0x00de, size 104448
sig 0x000806ea, pf_mask 0xc0, 2020-06-17, rev 0x00e0, size 104448
sig 0x000806eb, pf_mask 0xd0, 2020-06-03, rev 0x00de, size 104448
sig 0x000806ec, pf_mask 0x94, 2020-05-18, rev 0x00de, size 104448
sig 0x000906e9, pf_mask 0x2a, 2020-05-26, rev 0x00de, size 104448
sig 0x000906ea, pf_mask 0x22, 2020-05-25, rev 0x00de, size 103424
sig 0x000906eb, pf_mask 0x02, 2020-05-25, rev 0x00de, size 104448
sig 0x000906ec, pf_mask 0x22, 2020-06-03, rev 0x00de, size 103424
sig 0x000906ed, pf_mask 0x22, 2020-05-24, rev 0x00de, size 103424
sig 0x000a0660, pf_mask 0x80, 2020-07-08, rev 0x00e0, size 94208
+ 0x806c1: remove the new Tiger Lake update: causes hang on cold/warm boot
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/44
INTEL-SA-00381 AND INTEL-SA-00389 MITIGATIONS ARE THEREFORE NOT INSTALLED
FOR 0x806c1 TIGER LAKE PROCESSORS by this package update. Contact your
system vendor for a firmware update, or wait fo a possible fix in a future
Intel microcode release.
+ source: update symlinks to reflect id of the latest release, 20201110
+ source: ship new upstream documentation (security.md, releasenote.md)

c-ares-1.16.1-alt2.src.rpm  сборка 2020-11-17

Группа: Система/Библиотеки
О пакете: A library that performs asynchronous DNS operations
Изменения:

- added 0d252eb commit from upstream to resolve security issue (fixes: CVE-2020-8277)

firefox-83.0-alt2.src.rpm  сборка 2020-11-17

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New release (83.0).
- Security fixes:
+ CVE-2020-26951: Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code
+ CVE-2020-26952: Out of memory handling of JITed, inlined functions could lead to a memory corruption
+ CVE-2020-16012: Variable time processing of cross-origin images during drawImage calls
+ CVE-2020-26953: Fullscreen could be enabled without displaying the security UI
+ CVE-2020-26954: Local spoofing of web manifests for arbitrary pages in Firefox for Android
+ CVE-2020-26955: Cookies set during file downloads are shared between normal and Private Browsing Mode in Firefox for Android
+ CVE-2020-26956: XSS through paste (manual and clipboard API)
+ CVE-2020-26957: OneCRL was not working in Firefox for Android
+ CVE-2020-26958: Requests intercepted through ServiceWorkers lacked MIME type restrictions
+ CVE-2020-26959: Use-after-free in WebRequestService
+ CVE-2020-26960: Potential use-after-free in uses of nsTArray
+ CVE-2020-15999: Heap buffer overflow in freetype
+ CVE-2020-26961: DoH did not filter IPv4 mapped IP Addresses
+ CVE-2020-26962: Cross-origin iframes supported login autofill
+ CVE-2020-26963: History and Location interfaces could have been used to hang the browser
+ CVE-2020-26964: Firefox for Android's Remote Debugging via USB could have been abused by untrusted apps on older versions of Android
+ CVE-2020-26965: Software keyboards may have remembered typed passwords
+ CVE-2020-26966: Single-word search queries were also broadcast to local network
+ CVE-2020-26967: Mutation Observers could break or confuse Firefox Screenshots feature
+ CVE-2020-26968: Memory safety bugs fixed in Firefox 83 and Firefox ESR 78.5
+ CVE-2020-26969: Memory safety bugs fixed in Firefox 83

c-ares-1.17.1-alt1.src.rpm  сборка 2020-11-17

Группа: Система/Библиотеки
О пакете: A library that performs asynchronous DNS operations
Изменения:

- added 0d252eb commit from upstream to resolve security issue (fixes: CVE-2020-8277)

postgresql10-10.15-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 10.15 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql11-11.10-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 11.10 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql12-12.5-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 12.5 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql12-1C-12.5-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries (edition for 1C 8.3.13 and later)
Изменения:

- 12.5 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)
- Re-applay patch from 1C

postgresql13-13.1-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 13.1 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

bluez-5.55-alt1.src.rpm  сборка 2020-11-16

Группа: Сети/Прочее
О пакете: Bluetooth utilities
Изменения:

- 5.55;
- securuty fixes:
+ CVE-2020-27153 (closes #39291)

postgresql9.5-9.5.24-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 9.5.24 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql9.6-9.6.20-alt1.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 9.6.20 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

openvpn-2.4.9-alt1.src.rpm  сборка 2020-11-16

Группа: Система/Серверы
О пакете: a full-featured SSL VPN solution
Изменения:

- New version
- Security fixes:
+ CVE-2020-11810: race condition allowes one client kills other
client session via false client floating (Closes: 39122)

firefox-esr-78.5.0-alt1.src.rpm  сборка 2020-11-16

Группа: Сети/WWW
О пакете: The Mozilla Firefox project is a redesign of Mozilla's browser
Изменения:

- New version (78.5.0).
- Fixes:
+ CVE-2020-26951 Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code
+ CVE-2020-16012 Variable time processing of cross-origin images during drawImage calls
+ CVE-2020-26953 Fullscreen could be enabled without displaying the security UI
+ CVE-2020-26956 XSS through paste (manual and clipboard API)
+ CVE-2020-26958 Requests intercepted through ServiceWorkers lacked MIME type restrictions
+ CVE-2020-26959 Use-after-free in WebRequestService
+ CVE-2020-26960 Potential use-after-free in uses of nsTArray
+ CVE-2020-15999 Heap buffer overflow in freetype
+ CVE-2020-26961 DoH did not filter IPv4 mapped IP Addresses
+ CVE-2020-26965 Software keyboards may have remembered typed passwords
+ CVE-2020-26966 Single-word search queries were also broadcast to local network
+ CVE-2020-26968 Memory safety bugs fixed in Firefox 83 and Firefox ESR 78.5

node-14.15.1-alt1.src.rpm  сборка 2020-11-16

Группа: Разработка/Инструменты
О пакете: Evented I/O for V8 Javascript
Изменения:

- new version 14.15.1 (with rpmrb script)
- set c-ares >= 1.16.1-alt2
- CVE-2020-8277: Denial of Service through DNS request (High)

postgresql10-10.15-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 10.15 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql11-11.10-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 11.10 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql12-12.5-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 12.5 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql12-1C-12.5-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries (edition for 1C 8.3.13 and later)
Изменения:

- 12.5 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)
- Re-applay patch from 1C

postgresql13-13.1-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 13.1 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql9.5-9.5.24-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 9.5.24 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

postgresql9.6-9.6.20-alt2.src.rpm  сборка 2020-11-16

Группа: Базы данных
О пакете: PostgreSQL client programs and libraries
Изменения:

- 9.6.20 (Fixes CVE-2020-25694, CVE-2020-25695, CVE-2020-25696)

cryptsetup-2.3.4-alt1.src.rpm  сборка 2020-11-14

Группа: Система/Ядро и оборудование
О пакете: Utility to setup a encrypted disks with LUKS support
Изменения:

- 2.3.4 (Fixes: CVE-2020-14382)

golang-1.15.5-alt1.src.rpm  сборка 2020-11-14

Группа: Разработка/Прочее
О пакете: The Go Programming Language
Изменения:

- New version (1.15.5).
- Fixes:
+ CVE-2020-28362
+ CVE-2020-28366
+ CVE-2020-28367

unzip-6.0-alt4.src.rpm  сборка 2020-11-13

Группа: Архивирование/Сжатие
О пакете: An utility for unpacking zip archives
Изменения:

- Build with bzip2 compression method support
- Massive apply security patches from Fedora and openSUSE
- Fixes:
+ CVE-2014-8139 CRC32 verification heap-based buffer overread
+ CVE-2014-8140 out-of-bounds write issue in test_compr_eb()
+ CVE-2014-8141 getZip64Data() out-of-bounds read issues
+ CVE-2014-9913 buffer overflow in zipinfo
+ CVE-2014-9636 out-of-bounds read or write and crash
+ CVE-2015-7696 fix for heap overflow
+ CVE-2015-7697 fix infinite loop when extracting empty bzip2 data
+ CVE-2016-9844 buffer overflow in zipinfo in similar way like fix for CVE-2014-9913
+ CVE-2018-1000035 heap based buffer overflow when opening password protected files
+ CVE-2018-18384 buffer overflow, when a ZIP archive specially crafted

mariadb-10.4.17-alt1.src.rpm  сборка 2020-11-12

Группа: Базы данных
О пакете: A very fast and reliable SQL database engine
Изменения:

- 10.4.17
- backport fix for MDEV-24096, MDEV-24121, MDEV-24134
- Fixes for the following security vulnerabilities:
+ CVE-2020-14812
+ CVE-2020-14765
+ CVE-2020-14776
+ CVE-2020-14789
+ CVE-2020-15180

thunderbird-78.4.2-alt1.src.rpm  сборка 2020-11-11

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (78.4.2).
- Fixes:
+ CVE-2020-26950 Write side effects in MCallGetProperty opcode not accounted for

gnuplot-1:5.4.0-alt2.src.rpm  сборка 2020-11-11

Группа: Науки/Прочее
О пакете: A program for plotting mathematical expressions and data
Изменения:

- Quickfix (Fixes: CVE-2020-25559, CVE-2020-25412) (Closes: #39253).

libproxy-0.4.15-alt5.src.rpm  сборка 2020-11-11

Группа: Система/Библиотеки
О пакете: A library handling all the details of proxy configuration
Изменения:

- Applied security fixes from upstream (Fixes: CVE-2020-25219, CVE-2020-26154)

thunderbird-78.4.3-alt1.src.rpm  сборка 2020-11-11

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (78.4.2).
- Fixes:
+ CVE-2020-26950 Write side effects in MCallGetProperty opcode not accounted for

thunderbird-78.5.0-alt1.src.rpm  сборка 2020-11-11

Группа: Сети/Почта
О пакете: Thunderbird is Mozilla's e-mail client
Изменения:

- New version (78.4.2).
- Fixes:
+ CVE-2020-26950 Write side effects in MCallGetProperty opcode not accounted for

  1         3     4     5            Последняя »  

 
Ветви:
свернуть окно
Проект Geyser основан на коде из проекта Prometheus 2.0, который был доступен по лицензии MIT