Security fix for the ALT Linux 10 package firefox-esr version 91.3.0-alt1

91.3.0-alt1 built Nov. 9, 2021 Andrey Cherepanov in task 288753 Nov. 2, 2021 Andrey Cherepanov - New ESR version. - Security fixes: + CVE-2021-38503 iframe sandbox rules did not apply to XSLT stylesheets + CVE-2021-38504 Use-after-free in file picker dialog + CVE-2021-38505 Windows 10 Cloud...

Security fix for the ALT Linux 10 package java-11-openjdk version 0:11.0.13.8-alt1_1jpp11

0:11.0.13.8-alt11jpp11 built Nov. 8, 2021 Andrey Cherepanov in task 287838 Oct. 23, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-35550 Update the default enabled cipher suites preference + CVE-2021-35565 com.sun.net.HttpsServer spins on TLS session close + CVE-2021-35556...

Security fix for the ALT Linux 10 package bind version 9.11.36-alt1

9.11.36-alt1 built Nov. 8, 2021 Stanislav Levin in task 288327 Oct. 28, 2021 Stanislav Levin - 9.11.32 - 9.11.36 fixes: CVE-2021-25219...

Security fix for the ALT Linux 10 package samba version 4.14.10-alt1

Nov. 7, 2021 Evgeny Sinelnikov 4.14.10-alt1 - Update to latest security release of Samba 4.14 - Security fixes: + CVE-2016-2124: SMB1 client connections can be downgraded to plaintext authentication. https://www.samba.org/samba/security/CVE-2016-2124.html + CVE-2020-25717: A user on the domain ca...

Security fix for the ALT Linux 9 package mailman version 5:2.1.35-alt1

Nov. 6, 2021 Konstantin Lepikhov 5:2.1.35-alt1 - Updated to 2.1.35: - Security fixes: + CVE-2021-42096: Attack to obtain the list admin password. + CVE-2021-42097: A CSRF attack via the user options page could allow takeover of a users...

Security fix for the ALT Linux 10 package golang version 1.17.3-alt1

Nov. 4, 2021 Alexey Shabalin 1.17.3-alt1 - New version 1.17.3 Fixes: CVE-2021-41771, CVE-2021-41772...

Security fix for the ALT Linux 10 package firefox-esr version 91.2.0-alt1

91.2.0-alt1 built Nov. 2, 2021 Anton Farygin in task 281644 91.2.0-alt1 built Oct. 12, 2021 Andrey Cherepanov in task 286492 Oct. 5, 2021 Andrey Cherepanov - New ESR version. - Security fixes: + CVE-2021-38496 Use-after-free in MessageTask + CVE-2021-38497 Validation message could have been...

Security fix for the ALT Linux 10 package php8.0 version 8.0.12-alt1

8.0.12-alt1 built Nov. 2, 2021 Anton Farygin in task 287171 Oct. 28, 2021 Anton Farygin - 8.0.12 Fixes: CVE-2021-21703...

Security fix for the ALT Linux 10 package thunderbird version 91.2.1-alt1

91.2.1-alt1 built Nov. 2, 2021 Anton Farygin in task 281644 91.2.1-alt1 built Oct. 26, 2021 Andrey Cherepanov in task 287811 Oct. 22, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-38502 Downgrade attack on SMTP STARTTLS connections + CVE-2021-38496 Use-after-free in MessageTa...

Security fix for the ALT Linux 9 package freerdp version 2.4.1-alt1

2.4.1-alt1 built Nov. 1, 2021 Andrey Cherepanov in task 287815 Oct. 21, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-41159 Improper client input validation for gateway connections allows to overwrite memory + CVE-2021-41160 Improper region checks in all clients allow out of...

Security fix for the ALT Linux 10 package samba version 4.14.9-alt1

Nov. 1, 2021 Evgeny Sinelnikov 4.14.9-alt1 - Update to latest security release of Samba 4.14 - Backport bronze bit fixes, tests, and selftest improvements. Provide a fix for MS in Samba SECURITY 'Bronze bit' S4U2Proxy Constrained Delegation bypass in Samba with embedded Heimdal Fixes:...

Security fix for the ALT Linux 9 package php7 version 7.3.32-alt1

7.3.32-alt1 built Oct. 30, 2021 Anton Farygin in task 285278 Oct. 28, 2021 Anton Farygin - 7.3.32 Fixes: CVE-2021-21703...

Security fix for the ALT Linux 10 package php8.2 version 8.0.12-alt1

Oct. 28, 2021 Anton Farygin 8.0.12-alt1 - 8.0.12 Fixes: CVE-2021-21703...

Security fix for the ALT Linux 10 package php8.1 version 8.0.12-alt1

Oct. 28, 2021 Anton Farygin 8.0.12-alt1 - 8.0.12 Fixes: CVE-2021-21703...

Security fix for the ALT Linux 10 package samba version 4.14.8-alt1

4.14.8-alt1 built Oct. 20, 2021 Evgeny Sinelnikov in task 286522 Oct. 6, 2021 Evgeny Sinelnikov - Update to latest security release of Samba 4.14 - Fix performance regressions in lsaLookupSids3/LookupNames4 since Samba 4.9 by using an explicit database handle cache and address a signifcant in...

Security fix for the ALT Linux 9 package glpi version 9.5.6-alt1

9.5.6-alt1 built Oct. 18, 2021 Pavel Zilke in task 287044 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...

Security fix for the ALT Linux 10 package glpi version 9.5.6-alt1

9.5.6-alt1 built Oct. 14, 2021 Pavel Zilke in task 287043 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.51-alt1

1:2.4.51-alt1 built Oct. 13, 2021 Anton Farygin in task 286599 Oct. 10, 2021 Anton Farygin - 2.4.51 Fixes: CVE-2021-42013...

Security fix for the ALT Linux 10 package golang version 1.17.2-alt1

Oct. 11, 2021 Alexey Shabalin 1.17.2-alt1 - New version 1.17.2. - Fixes: + CVE-2021-38297...

Security fix for the ALT Linux 10 package apache2 version 1:2.4.51-alt1

1:2.4.51-alt1 built Oct. 11, 2021 Anton Farygin in task 286598 Oct. 10, 2021 Anton Farygin - 2.4.51 Fixes: CVE-2021-42013...

Security fix for the ALT Linux 10 package apache2 version 1:2.4.50-alt1

Oct. 7, 2021 Anton Farygin 1:2.4.50-alt1 - 2.4.50 Fixes: CVE-2021-41773, CVE-2021-41524...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.50-alt1

Oct. 7, 2021 Anton Farygin 1:2.4.50-alt1 - 2.4.50 Fixes: CVE-2021-41773, CVE-2021-41524...

Security fix for the ALT Linux 10 package php8.0 version 8.0.11-alt1

8.0.11-alt1 built Oct. 4, 2021 Anton Farygin in task 285866 Sept. 23, 2021 Anton Farygin - 8.0.11 Fixes: CVE-2021-21706...

Security fix for the ALT Linux 10 package apache2 version 1:2.4.49-alt1

1:2.4.49-alt1 built Oct. 4, 2021 Anton Farygin in task 285801 Sept. 23, 2021 Anton Farygin - 2.4.48 - 2.4.49 Fixes: CVE-2021-40438, CVE-2021-39275, CVE-2021-36160, CVE-2021-34798, CVE-2021-33193...

Security fix for the ALT Linux 9 package php7 version 7.3.31-alt1

7.3.31-alt1 built Sept. 30, 2021 Anton Farygin in task 285609 Sept. 21, 2021 Anton Farygin - 7.3.31 Fixes: CVE-2021-21706...

Security fix for the ALT Linux 10 package firefox-esr version 91.1.0-alt1

91.1.0-alt1 built Sept. 24, 2021 Andrey Cherepanov in task 284980 Sept. 7, 2021 Andrey Cherepanov - New ESR version. - Security fixes: + CVE-2021-38492 Navigating to mk: URL scheme could load Internet Explorer + CVE-2021-38495 Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1...

Security fix for the ALT Linux 9 package glibc version 6:2.27-alt14

6:2.27-alt14 built Sept. 23, 2021 Dmitry V. Levin in task 285569 July 9, 2021 Dmitry V. Levin - Updated to glibc-2.27-174-g73886db621 from 2.27 branch fixes: CVE-2016-10228, CVE-2020-1751, CVE-2020-10029, CVE-2020-27618, CVE-2020-29562, CVE-2021-27645, CVE-2021-35942...

Security fix for the ALT Linux 10 package php8.2 version 8.0.11-alt1

Sept. 23, 2021 Anton Farygin 8.0.11-alt1 - 8.0.11 Fixes: CVE-2021-21706...

Security fix for the ALT Linux 10 package php8.1 version 8.0.11-alt1

Sept. 23, 2021 Anton Farygin 8.0.11-alt1 - 8.0.11 Fixes: CVE-2021-21706...

Security fix for the ALT Linux 9 package apache2 version 1:2.4.49-alt1

Sept. 23, 2021 Anton Farygin 1:2.4.49-alt1 - 2.4.48 - 2.4.49 Fixes: CVE-2021-40438, CVE-2021-39275, CVE-2021-36160, CVE-2021-34798, CVE-2021-33193...

Security fix for the ALT Linux 9 package libssh version 0.9.6-alt1

0.9.6-alt1 built Sept. 17, 2021 Sergey V Turchin in task 284394 Sept. 2, 2021 Sergey V Turchin - new version - security fixes: CVE-2021-3634...

Security fix for the ALT Linux 9 package php7 version 7.3.30-alt1

7.3.30-alt1 built Sept. 16, 2021 Anton Farygin in task 284588 Sept. 3, 2021 Anton Farygin - 7.3.30 Fixes: CVE-2021-21704...

Security fix for the ALT Linux 10 package thunderbird version 91.1.0-alt1

91.1.0-alt1 built Sept. 15, 2021 Andrey Cherepanov in task 284957 Sept. 8, 2021 Andrey Cherepanov - New version. - Security fixes: + CVE-2021-38492 Navigating to mk: URL scheme could load Internet Explorer + CVE-2021-38495 Memory safety bugs fixed in Thunderbird 91.1...

Security fix for the ALT Linux 8 package cyrus-imapd version 2.5.17-alt0.M80P.2

2.5.17-alt0.M80P.2 built Sept. 13, 2021 Sergey Y. Afonin in task 284610 Sept. 5, 2021 Sergey Y. Afonin - updated to latest cyrus-imapd-2.5 branch 6c804c1337cb; fixes: CVE-2021-33582...

Security fix for the ALT Linux 10 package golang version 1.17.1-alt1

Sept. 13, 2021 Alexey Shabalin 1.17.1-alt1 - New version 1.17.1. - Fixes: + CVE-2021-39293...

Security fix for the ALT Linux 10 package python3-module-django version 3.2.6-alt1

3.2.6-alt1 built Sept. 10, 2021 Alexey Shabalin in task 283535 Aug. 18, 2021 Alexey Shabalin - new version 3.2.6 - Rename dbbackend-psycopg2 to dbbackend-postgresql - Add dbbackend-oracle package - Fixes for the following security vulnerabilities: + CVE-2021-35042 Potential SQL injection via...

Security fix for the ALT Linux 9 package ntfs-3g version 2:2021.8.22-alt1

2:2021.8.22-alt1 built Sept. 10, 2021 Valery Inozemtsev in task 284295 Aug. 31, 2021 Valery Inozemtsev - 2021.8.22 Fixes: CVE-2021-33285, CVE-2021-35269, CVE-2021-35268, CVE-2021-33289, CVE-2021-33286, CVE-2021-35266, CVE-2021-33287, CVE-2021-35267, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253,...

Security fix for the ALT Linux 9 package cyrus-imapd version 3.2.8-alt1

3.2.8-alt1 built Sept. 9, 2021 Sergey Y. Afonin in task 284606 Sept. 5, 2021 Sergey Y. Afonin - 3.2.8 fixes: CVE-2021-33582...

Security fix for the ALT Linux 10 package firefox-esr version 91.0.1-alt1

Sept. 4, 2021 Andrey Cherepanov 91.0.1-alt1 - New ESR version. - Security fixes: + CVE-2021-29991: Header Splitting possible with HTTP/3 Responses + CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT + CVE-2021-29983: Firefox for Android could get stuck in...

Security fix for the ALT Linux 9 package openssl1.1 version 1.1.1l-alt1

1.1.1l-alt1 built Sept. 2, 2021 Gleb Fotengauer-Malinovskiy in task 283690 Aug. 24, 2021 Gleb Fotengauer-Malinovskiy - Updated to 1.1.1l fixes CVE-2021-3711, CVE-2021-3712...

Security fix for the ALT Linux 10 package node version 14.17.6-alt1

Sept. 1, 2021 Vitaly Lipatov 14.17.6-alt1 - new version 14.17.6 with rpmrb script - set npm = 6.14.15 - set openssl = 1.1.1l - CVE-2021-32803, CVE-2021-32804, CVE-2021-37701, CVE-2021-37712, CVE-2021-37713, CVE-2021-39134, CVE-2021-39135...

Security fix for the ALT Linux 10 package openssl1.1 version 1.1.1l-alt1

1.1.1l-alt1 built Aug. 27, 2021 Gleb Fotengauer-Malinovskiy in task 283689 Aug. 24, 2021 Gleb Fotengauer-Malinovskiy - Updated to 1.1.1l fixes CVE-2021-3711, CVE-2021-3712...

Security fix for the ALT Linux 10 package java-11-openjdk version 0:11.0.12.7-alt1_0jpp10

Aug. 25, 2021 Andrey Cherepanov 0:11.0.12.7-alt10jpp10 - new version - security fixes: + CVE-2021-2341: Improve file transfers + CVE-2021-2369: Better jar file validation + CVE-2021-2388: Enhance compiler validation + CVE-2021-2161: Less ambiguous processing + CVE-2021-2163: Enhance opening JARs ...

Security fix for the ALT Linux 10 package thunderbird version 91.0.2-alt1

Aug. 23, 2021 Andrey Cherepanov 91.0.2-alt1 - New version. - Build using LLVM 12.0. - Do not build for armh. - Security fixes in 91.0.1: + CVE-2021-29991 Header Splitting possible with HTTP/3 Responses...

Security fix for the ALT Linux 9 package postgresql12-1C version 12.7-alt0.M90P.2

12.7-alt0.M90P.2 built Aug. 23, 2021 Alexei Takaseev in task 282411 Aug. 11, 2021 Alexei Takaseev - Fixes CVE-2021-3677...

Security fix for the ALT Linux 9 package postgresql12 version 12.8-alt0.M90P.1

12.8-alt0.M90P.1 built Aug. 23, 2021 Alexei Takaseev in task 282411 Aug. 11, 2021 Alexei Takaseev - 12.8 Fixes CVE-2021-3677...

Security fix for the ALT Linux 9 package systemd version 1:246.16-alt1

1:246.16-alt1 built Aug. 20, 2021 Alexey Shabalin in task 283283 Aug. 18, 2021 Alexey Shabalin - 246.16 Fixes CVE-2020-13529 - Package /lib/systemd/system-shutdown and /lib/systemd/system-sleep dirs ALT 39349. - Delete resovconfopenresolv settings before add ALT 33589...

Security fix for the ALT Linux 9 package dovecot version 2.3.16-alt1

2.3.16-alt1 built Aug. 19, 2021 Andrey Cherepanov in task 282506 Aug. 12, 2021 Andrey Cherepanov - Updated to 2.3.16 fixes CVE-2021-33515, CVE-2021-29157, CVE-2021-33515, CVE-2021-29157. - Package watch file...

Security fix for the ALT Linux 9 package c-ares version 1.17.2-alt1

1.17.2-alt1 built Aug. 19, 2021 Anton Farygin in task 282608 Aug. 11, 2021 Anton Farygin - 1.17.2 Fixes: CVE-2021-3672...

Security fix for the ALT Linux 10 package node version 14.17.5-alt1

14.17.5-alt1 built Aug. 17, 2021 Vitaly Lipatov in task 282492 Aug. 11, 2021 Vitaly Lipatov - new version 14.17.5 with rpmrb script - set c-ares = 1.17.2 - CVE-2021-3672, CVE-2021-22931: Improper handling of untypical characters in domain names - CVE-2021-22930: Use after free on close http2 on...