PT-2017-18781 · None +2 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to a "cannot be represented in type int" problem in the input-tga.c file of AutoTrace. Recommendations: For AutoTrace version 0.31.1, at the...

PT-2017-18779 · None +2 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to a "cannot be represented in type int" problem in the input-tga.c file of AutoTrace. Recommendations: For AutoTrace version 0.31.1, at the...

PT-2017-18777 · Autotrace +1 · Autotrace +2

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to a heap-based buffer over-read in the ReadImage function, located in input-tga.c. This function is part of the libautotrace.a library in...

PT-2017-18768 · None +2 · Autotrace +2

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to a "cannot be represented in type int" problem in the input-bmp.c file at line 326:17 of the libautotrace.a library in AutoTrace. There is...

PT-2017-18782 · Martin Weber +2 · Autotrace +1

Name of the Vulnerable Software and Affected Versions: AutoTrace version 0.31.1 ALT Linux affected versions not specified Description: The issue is related to a "cannot be represented in type int" problem in the input-tga.c file of AutoTrace. This is a technical issue that may lead to unintended...

Security fix for the ALT Linux 8 package kde5-smb4k version 2.0.1-alt1.M80P.1

2.0.1-alt1.M80P.1 built May 19, 2017 Sergey V Turchin in task 183142 --- May 19, 2017 Sergey V Turchin - security fixes: CVE-2017-8849...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.25-alt1

May 18, 2017 Anton Farygin 1:2.4.25-alt1 - updated to 2.4.25 witch security fixes: + CVE-2016-8740 modhttp2: Mitigate DoS memory exhaustion via endless CONTINUATION frames. + CVE-2016-5387 core: Mitigate fcgi "httpoxy" issues + CVE-2016-2161 modauthdigest: Prevent segfaults during client entry...

Security fix for the ALT Linux 10 package apache2 version 1:2.4.25-alt1

May 18, 2017 Anton Farygin 1:2.4.25-alt1 - updated to 2.4.25 witch security fixes: + CVE-2016-8740 modhttp2: Mitigate DoS memory exhaustion via endless CONTINUATION frames. + CVE-2016-5387 core: Mitigate fcgi "httpoxy" issues + CVE-2016-2161 modauthdigest: Prevent segfaults during client entry...

Security fix for the ALT Linux 8 package apache2 version 1:2.4.25-alt1

May 18, 2017 Anton Farygin 1:2.4.25-alt1 - updated to 2.4.25 witch security fixes: + CVE-2016-8740 modhttp2: Mitigate DoS memory exhaustion via endless CONTINUATION frames. + CVE-2016-5387 core: Mitigate fcgi "httpoxy" issues + CVE-2016-2161 modauthdigest: Prevent segfaults during client entry...

Security fix for the ALT Linux 9 package openvpn version 2.4.2-alt1

May 14, 2017 Nikolay A. Fetisov 2.4.2-alt1 - New version - Security fixes: + CVE-2017-7478 Don't assert out on receiving too-large control packets + CVE-2017-7479 Drop packets instead of assert out if packet id rolls over...

Security fix for the ALT Linux 10 package git version 2.10.3-alt1

May 11, 2017 Dmitry V. Levin 2.10.3-alt1 - 2.10.2 - 2.10.3 fixes: CVE-2017-8386...

Security fix for the ALT Linux 8 package jq version 1.5-alt1.M80P.1

1.5-alt1.M80P.1 built May 11, 2017 Anton Farygin in task 182774 May 10, 2017 Anton Farygin - new version with security fixes CVE-2015-8863...

Security fix for the ALT Linux 8 package git version 2.10.3-alt1

May 11, 2017 Dmitry V. Levin 2.10.3-alt1 - 2.10.2 - 2.10.3 fixes: CVE-2017-8386...

Security fix for the ALT Linux 10 package firefox-esr version 52.0-alt1

May 8, 2017 Andrey Cherepanov 52.0-alt1 - New release 52.0 based on legion@ build. - Built with internal icu. - Fixed: + CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP + CVE-2017-5401: Memory Corruption when handling ErrorResult + CVE-2017-5402: Use-after-free working with events in...

Security fix for the ALT Linux 10 package firefox-esr version 52.1.1-alt1

May 8, 2017 Andrey Cherepanov 52.1.1-alt1 - New ESR version 52.1.1 - Set plugin.loadflashonly setting to false to allow use all NPAPI plugins - Security fixes since 52.0: + CVE-2016-10196: Vulnerabilities in Libevent library + CVE-2017-5031: Use after free in ANGLE + CVE-2017-5428: integer overfl...

Security fix for the ALT Linux 8 package mariadb version 10.1.23-alt1

May 5, 2017 Alexey Shabalin 10.1.23-alt1 - 10.1.23 - add maria-backup package - Fixes for the following security vulnerabilities: + CVE-2017-3302 + CVE-2017-3313 + CVE-2017-3308 + CVE-2017-3309 + CVE-2017-3453 + CVE-2017-3456 + CVE-2017-3464...

Security fix for the ALT Linux 10 package thunderbird version 52.1.0-alt1

May 2, 2017 Andrey Cherepanov 52.1.0-alt1 - New version 52.0.1 - Security fixes: + CVE-2017-5429: Memory safety bugs fixed in Firefox 53, Firefox ESR + CVE-2017-5430: Memory safety bugs fixed in Firefox 53, Firefox ESR + CVE-2017-5432: Use-after-free in text input selection + CVE-2017-5433:...

Security fix for the ALT Linux 10 package firefox-esr version 45.9.0-alt1

April 20, 2017 Andrey Cherepanov 45.9.0-alt1 - New ESR version - Security fixes: + CVE-2017-5429: Memory safety bugs fixed in Firefox 53, Firefox ESR 45.9, + CVE-2017-5462: DRBG flaw in NSS + CVE-2017-5445: Uninitialized values used while parsing + CVE-2017-5469: Potential Buffer overflow in...

Security fix for the ALT Linux 8 package curl version 7.54.0-alt1

April 19, 2017 Anton Farygin 7.54.0-alt1 - new version with security fixes: CVE-2016-5419: TLS session resumption client cert bypass again...

Security fix for the ALT Linux 9 package wireshark version 2.2.6-alt1

April 14, 2017 Anton Farygin 2.2.6-alt1 - new version with these security fixes: wnpa-sec-2017-12 IMAP dissector crash CVE-2017-7703 wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702 wnpa-sec-2017-14 NetScaler file parser infinite loop CVE-2017-7700 wnpa-sec-2017-15 RPCoRDMA dissector...