Sisyphus repositório
Última atualização: 20 maio 2019 | SRPMs: 17692 | Visitas: 13570447
en ru br
As correcções de segurança

firmware-intel-ucode-9-alt1.20190514   build L.A. Kostis, 2019-05-20


- Sync with Debian 3.20190514.1:
+ New upstream microcode datafile 20190514
+ SECURITY UPDATE
Implements MDS mitigation (RIDL, Fallout, Zombieload), INTEL-SA-00223
CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091
+ New Microcodes:
sig 0x00030678, pf_mask 0x02, 2019-04-22, rev 0x0838, size 52224
sig 0x00030678, pf_mask 0x0c, 2019-04-22, rev 0x0838, size 52224
sig 0x00030679, pf_mask 0x0f, 2019-04-23, rev 0x090c, size 52224
sig 0x000406c3, pf_mask 0x01, 2019-04-23, rev 0x0368, size 69632
sig 0x000406c4, pf_mask 0x01, 2019-04-23, rev 0x0411, size 68608
sig 0x00050657, pf_mask 0xbf, 2019-02-27, rev 0x5000021, size 47104
+ Updated Microcodes:
sig 0x000206a7, pf_mask 0x12, 2019-02-17, rev 0x002f, size 12288
sig 0x000306a9, pf_mask 0x12, 2019-02-13, rev 0x0021, size 14336
sig 0x000306c3, pf_mask 0x32, 2019-02-26, rev 0x0027, size 23552
sig 0x000306d4, pf_mask 0xc0, 2019-03-07, rev 0x002d, size 19456
sig 0x000306e4, pf_mask 0xed, 2019-03-14, rev 0x042e, size 16384
sig 0x000306e7, pf_mask 0xed, 2019-03-14, rev 0x0715, size 17408
sig 0x000306f2, pf_mask 0x6f, 2019-03-01, rev 0x0043, size 34816
sig 0x000306f4, pf_mask 0x80, 2019-03-01, rev 0x0014, size 18432
sig 0x00040651, pf_mask 0x72, 2019-02-26, rev 0x0025, size 21504
sig 0x00040661, pf_mask 0x32, 2019-02-26, rev 0x001b, size 25600
sig 0x00040671, pf_mask 0x22, 2019-03-07, rev 0x0020, size 14336
sig 0x000406e3, pf_mask 0xc0, 2019-04-01, rev 0x00cc, size 100352
sig 0x000406f1, pf_mask 0xef, 2019-03-02, rev 0xb000036, size 30720
sig 0x00050654, pf_mask 0xb7, 2019-04-02, rev 0x200005e, size 32768
sig 0x00050662, pf_mask 0x10, 2019-03-23, rev 0x001a, size 32768
sig 0x00050663, pf_mask 0x10, 2019-03-23, rev 0x7000017, size 24576
sig 0x00050664, pf_mask 0x10, 2019-03-23, rev 0xf000015, size 23552
sig 0x00050665, pf_mask 0x10, 2019-03-23, rev 0xe00000d, size 19456
sig 0x000506c9, pf_mask 0x03, 2019-01-15, rev 0x0038, size 17408
sig 0x000506ca, pf_mask 0x03, 2019-03-01, rev 0x0016, size 15360
sig 0x000506e3, pf_mask 0x36, 2019-04-01, rev 0x00cc, size 100352
sig 0x000506f1, pf_mask 0x01, 2019-03-21, rev 0x002e, size 11264
sig 0x000706a1, pf_mask 0x01, 2019-01-02, rev 0x002e, size 73728
sig 0x000806e9, pf_mask 0x10, 2019-04-01, rev 0x00b4, size 98304
sig 0x000806e9, pf_mask 0xc0, 2019-04-01, rev 0x00b4, size 99328
sig 0x000806ea, pf_mask 0xc0, 2019-04-01, rev 0x00b4, size 99328
sig 0x000806eb, pf_mask 0xd0, 2019-03-30, rev 0x00b8, size 98304
sig 0x000806ec, pf_mask 0x94, 2019-03-30, rev 0x00b8, size 97280
sig 0x000906e9, pf_mask 0x2a, 2019-04-01, rev 0x00b4, size 99328
sig 0x000906ea, pf_mask 0x22, 2019-04-01, rev 0x00b4, size 98304
sig 0x000906eb, pf_mask 0x02, 2019-04-01, rev 0x00b4, size 99328
sig 0x000906ec, pf_mask 0x22, 2019-02-14, rev 0x00ae, size 98304
sig 0x000906ed, pf_mask 0x22, 2019-03-17, rev 0x00b8, size 97280

cve-manager-0.22.0-alt1   build Alexey Appolonov, 2019-05-19


- Multithreading is arranged in a more optimal way;
- 'Complete' matching is not performed for a packages that got one of the
special prefixes ('python-module', 'perl', ...);
- Enhanced algorithm of the 'partial' matching;
- Package names that differ only by numerical part at the end
(so called 'relatives') is handled more wisely during mapping;
- Issues that differ only in additional part of CPE is ignored;
- cve-monitor is using only senior branches (that must be specified
in the conf) in 'cure' suggestions, 'cure' suggestions is optional;
- cve-monitor is placing too long lists of vulnerable versions in footnotes
of the reports.

kernel-image-std-pae-4.19.43-alt1   build Kernel Bot, 2019-05-15


- v4.19.43 (Fixes: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

kernel-image-std-def-4.19.43-alt1   build Kernel Bot, 2019-05-15


- v4.19.43 (Fixes: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

mariadb-10.3.15-alt1   build Alexey Shabalin, 2019-05-15


- 10.3.15
- Fixes for the following security vulnerabilities:
+ CVE-2019-2614
+ CVE-2019-2627
+ CVE-2019-2628

kernel-image-un-def-5.0.16-alt1   build Kernel Bot, 2019-05-15


- v5.0.16 (Fixes: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

kernel-image-std-debug-4.19.43-alt1   build Kernel Bot, 2019-05-15


- v4.19.43 (Fixes: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11091)

kernel-image-std-pae-4.19.42-alt1   build Kernel Bot, 2019-05-11


- v4.19.42 (Fixes: CVE-2011-1079)

kernel-image-std-def-4.19.42-alt1   build Kernel Bot, 2019-05-11


- v4.19.42 (Fixes: CVE-2011-1079)

kernel-image-un-def-5.0.15-alt1   build Kernel Bot, 2019-05-11


- v5.0.15 (Fixes: CVE-2011-1079)

kernel-image-std-debug-4.19.42-alt1   build Kernel Bot, 2019-05-11


- v4.19.42 (Fixes: CVE-2011-1079)

postgresql10-10.8-alt1   build Alexei Takaseev, 2019-05-08


- 10.8
- (Fixes CVE-2019-10130)

postgresql11-11.3-alt1   build Alexei Takaseev, 2019-05-08


- 11.3
- (Fixes CVE-2019-10129, CVE-2019-10130)

postgresql9.5-9.5.17-alt1   build Alexei Takaseev, 2019-05-08


- 9.5.17
- (Fixes CVE-2019-10130)

postgresql9.6-9.6.13-alt1   build Alexei Takaseev, 2019-05-08


- 9.6.13
- (Fixes CVE-2019-10130)

python-module-urllib3-1.24.3-alt1   build Stanislav Levin, 2019-05-06


- 1.24.2 -> 1.24.3 (fixes: CVE-2019-9740).

nautilus-3.32.1-alt1   build Yuri N. Sedunov, 2019-05-05


- 3.32.1 (fixed CVE-2019-11461)

kernel-image-std-pae-4.19.39-alt1   build Kernel Bot, 2019-05-04


- v4.19.39 (Fixes: CVE-2019-3882)

kernel-image-std-def-4.19.39-alt1   build Kernel Bot, 2019-05-04


- v4.19.39 (Fixes: CVE-2019-3882)

kernel-image-un-def-5.0.12-alt1   build Kernel Bot, 2019-05-04


- v5.0.12 (Fixes: CVE-2019-3882)

kernel-image-std-debug-4.19.39-alt1   build Kernel Bot, 2019-05-04


- v4.19.39 (Fixes: CVE-2019-3882)

chromium-74.0.3729.131-alt1   build Alexey Gladkov, 2019-05-03


- New version (74.0.3729.131).
- Security fixes:
- CVE-2019-5805: Use after free in PDFium.
- CVE-2019-5806: Integer overflow in Angle.
- CVE-2019-5807: Memory corruption in V8.
- CVE-2019-5808: Use after free in Blink.
- CVE-2019-5809: Use after free in Blink.
- CVE-2019-5810: User information disclosure in Autofill.
- CVE-2019-5811: CORS bypass in Blink.
- CVE-2019-5812: URL spoof in Omnibox on iOS.
- CVE-2019-5813: Out of bounds read in V8.
- CVE-2019-5814: CORS bypass in Blink.
- CVE-2019-5815: Heap buffer overflow in Blink.
- CVE-2019-5816: Exploit persistence extension on Android.
- CVE-2019-5817: Heap buffer overflow in Angle on Windows.
- CVE-2019-5818: Uninitialized value in media reader.
- CVE-2019-5819: Incorrect escaping in developer tools.
- CVE-2019-5820: Integer overflow in PDFium.
- CVE-2019-5821: Integer overflow in PDFium.
- CVE-2019-5822: CORS bypass in download manager.
- CVE-2019-5823: Forced navigation from service worker.
- CVE-2019-5824: Parameter passing error in media player.
- CVE-2019-5825: Out-of-bounds write in V8
- CVE-2019-5826: Use-after-free in IndexedDB
- CVE-2019-5827: Out-of-bounds access in SQLite.

gnome-desktop3-3.32.1.2-alt1   build Yuri N. Sedunov, 2019-04-25


- 3.32.1.2 (fixed CVE-2019-1146)

bind-9.11.6.P1-alt1   build Stanislav Levin, 2019-04-25


- 9.11.6 -> 9.11.6.P1 (fixes: CVE-2018-5743).

gnome-desktop3-3.32.1.1-alt1   build Yuri N. Sedunov, 2019-04-23


- 3.32.1.1 (fixed CVE-2019-11459)
 
projeto & código: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
mantenedor atual: Michael Shigorin
mantenedor da tradução: Fernando Martini aka fmartini © 2009