As correcções de segurança
clamav-0.100.2-alt1
build Sergey Y. Afonin,
2018-10-17
- 0.100.2 (CVE-2018-15378, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682)
libssh-0.8.4-alt1 build Sergey V Turchin, 2018-10-17
- new version
- security fix: CVE-2018-10933
libssh-0.8.4-alt2 build Sergey V Turchin, 2018-10-17
- fix changelog
- security fixes: CVE-2018-10933
kernel-image-std-pae-4.4.161-alt1 build Kernel Bot, 2018-10-15
- v4.4.161 (Fixes: CVE-2018-10879, CVE-2018-10880, CVE-2018-7755)
kernel-image-std-def-4.14.76-alt1 build Kernel Bot, 2018-10-15
- v4.14.76 (Fixes: CVE-2018-15471)
cve-manager-0.18.0-alt1 build Alexey Appolonov, 2018-10-15
- Names of avalible branches are section names of the conf;
- Each branch now have a set of params;
- Renaming 'paths' section of the conf to 'common';
- Skipping repetition of branch sections in conf;
- There is no cve-import's "--space" param anymore;
- Russian manual.
kernel-image-un-def-4.18.14-alt1 build Kernel Bot, 2018-10-15
- v4.18.14 (Fixes: CVE-2018-15471)
wireshark-2.6.4-alt1 build Anton Farygin, 2018-10-13
- 2.6.4 (fixes: CVE-2018-18227, CVE-2018-18225, CVE-2018-18225, CVE-2018-12086)
- disabled build gtk+ UI
glusterfs3-3.12.15-alt1 build Vitaly Lipatov, 2018-10-13
- new version 3.12.15 (with rpmrb script)
- CVE-2018-10907, CVE-2018-10904, CVE-2018-10911 CVE-2018-10913, CVE-2018-10923, CVE-2018-10930
libgit2-0.26.7-alt1 build Yuri N. Sedunov, 2018-10-12
- 0.26.7 (fixed CVE-2018-17456)
tinc-1.0.35-alt1 build Nikolay A. Fetisov, 2018-10-11
- New version
* Prevent oracle attacks (CVE-2018-16737, CVE-2018-16738)
* Prevent a MITM from forcing a NULL cipher for UDP (CVE-2018-16758)
- Disabling VDE support
libpng16-1.6.35-alt1 build Sergey Bolshakov, 2018-10-10
- 1.6.35 (fixes: CVE-2018-13785, CVE-2018-14048)
kernel-image-std-def-4.14.74-alt1 build Kernel Bot, 2018-10-04
- v4.14.74 (Fixes: CVE-2018-7755)
firefox-62.0.3-alt1 build Alexey Gladkov, 2018-10-04
- New release (62.0.3).
+ CVE-2018-12386: Type confusion in JavaScript
+ CVE-2018-12387: A vulnerability where the JavaScript JIT compiler
+ CVE-2018-12385: Crash in TransportSecurityInfo due to cached data
+ CVE-2018-12377: Use-after-free in refresh driver timers
+ CVE-2018-12378: Use-after-free in IndexedDB
+ CVE-2018-12379: Out-of-bounds write with malicious MAR file
+ CVE-2017-16541: Proxy bypass using automount and autofs
+ CVE-2018-12381: Dragging and dropping Outlook email message results in page navigation
+ CVE-2018-12382: Addressbar spoofing with javascript URI on Firefox for Android
+ CVE-2018-12383: Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords
+ CVE-2018-12375: Memory safety bugs fixed in Firefox 62
+ CVE-2018-12376: Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2
kernel-image-un-def-4.18.12-alt1 build Kernel Bot, 2018-10-04
- v4.18.12 (Fixes: CVE-2018-7755)
adobe-flash-player-ppapi-31-alt1 build Sergey V Turchin, 2018-10-02
- new version
- security fixes: CVE-2018-15967
firefox-esr-60.2.2-alt1 build Andrey Cherepanov, 2018-10-02
- New ESR version (60.2.2)
- Fixed:
+ CVE-2018-12386 Type confusion in JavaScript
+ CVE-2018-12387 JavaScript JIT compiler inlines Array.prototype.push with multiple arguments
kernel-image-std-pae-4.4.159-alt1 build Kernel Bot, 2018-10-01
- v4.4.159 (Fixes: CVE-2018-14633)
kernel-image-std-def-4.14.73-alt1 build Kernel Bot, 2018-10-01
- v4.14.73 (Fixes: CVE-2018-14633)
kernel-image-un-def-4.18.11-alt1 build Kernel Bot, 2018-10-01
- v4.18.11 (Fixes: CVE-2018-14633)
cve-manager-0.17.1-alt1 build Alexey Appolonov, 2018-09-30
- Running downloader without 'noreplace' flag in auto mode;
- Fix of the 'cve-monitor --map' command;
- Printing with TPrinter of the libcontrol++.
mediawiki-1.31.1-alt1 build Vitaly Lipatov, 2018-09-29
- new version 1.31.1 (with rpmrb script)
- CVE-2018-0503, CVE-2018-0505, CVE-2018-1325
- fix apache configs
git-2.17.2-alt1 build Dmitry V. Levin, 2018-09-27
- 2.17.1 -> 2.17.2 (fixes: CVE-2018-17456).
mosquitto-1.5.3-alt1 build Pavel Vainerman, 2018-09-27
- new version (1.5.3) with rpmgs script
- fix CVE-2018-12543
firefox-esr-60.2.1-alt1 build Andrey Cherepanov, 2018-09-24
- New ESR version (60.2.1).
- Fixed:
+ CVE-2018-12385 Crash in TransportSecurityInfo due to cached data
+ CVE-2018-12383 Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords
projeto & código: Vladimir Lettiev aka crux © 2004-2005,
Andrew Avramenko aka liks © 2007-2008
mantenedor atual: Michael Shigorin
mantenedor da tradução: Fernando Martini aka fmartini © 2009
mantenedor atual: Michael Shigorin
mantenedor da tradução: Fernando Martini aka fmartini © 2009