[cyber] I: Sisyphus-20210419 packages: -1 +10 (17847)

QA Team Robot qa на altlinux.org
Пн Апр 19 03:14:20 MSK 2021


	1 REMOVED package

kernel-image-clr-native	5.9.16-alt1.clr1009

	10 UPDATED packages

chromium - An open source web browser developed by Google       	[1078M]
* Thu Apr 15 2021 Alexey Gladkov <legion на altlinux> 90.0.4430.72-alt1
- New version (90.0.4430.72).
- Security fixes:
  - CVE-2021-21201: Use after free in permissions.
  - CVE-2021-21202: Use after free in extensions.
  - CVE-2021-21203: Use after free in Blink.
  - CVE-2021-21204: Use after free in Blink.
  - CVE-2021-21205: Insufficient policy enforcement in navigation.
  - CVE-2021-21207: Use after free in IndexedDB.
  - CVE-2021-21208: Insufficient data validation in QR scanner.
  - CVE-2021-21209: Inappropriate implementation in storage.
  - CVE-2021-21210: Inappropriate implementation in Network.
  - CVE-2021-21211: Inappropriate implementation in Navigation.
  - CVE-2021-21212: Incorrect security UI in Network Config UI.
  - CVE-2021-21213: Use after free in WebMIDI.
  - CVE-2021-21214: Use after free in Network API.
  - CVE-2021-21215: Inappropriate implementation in Autofill.
  - CVE-2021-21216: Inappropriate implementation in Autofill.
  - CVE-2021-21217: Uninitialized Use in PDFium.
  - CVE-2021-21218: Uninitialized Use in PDFium.
  - CVE-2021-21219: Uninitialized Use in PDFium.
  - CVE-2021-21221: Insufficient validation of untrusted input in Mojo.
* Thu Apr 08 2021 Alexey Gladkov <legion на altlinux> 89.0.4389.114-alt1

chromium-gost - An open source web browser developed by Google  	[1056M]
* Sun Apr 18 2021 Fr. Br. George <george на altlinux> 89.0.4389.114-alt1
- Build GOST version
* Thu Apr 08 2021 Alexey Gladkov <legion на altlinux> 89.0.4389.114-alt0
- New version (89.0.4389.114).
- Security fixes:
  - CVE-2021-21194: Use after free in screen capture.
  - CVE-2021-21195: Use after free in V8.
  - CVE-2021-21196: Heap buffer overflow in TabStrip.
  - CVE-2021-21197: Heap buffer overflow in TabStrip.
  - CVE-2021-21198: Out of bounds read in IPC.
  - CVE-2021-21199: Use Use after free in Aura.
* Mon Mar 15 2021 Alexey Gladkov <legion на altlinux> 89.0.4389.90-alt1
- New version (89.0.4389.90).
- Security fixes:
  - CVE-2021-21191: Use after free in WebRTC.
  - CVE-2021-21192: Heap buffer overflow in tab groups.
  - CVE-2021-21193: Use after free in Blink.
* Tue Mar 09 2021 Alexey Gladkov <legion на altlinux> 89.0.4389.82-alt1
- New version (89.0.4389.82).
- Security fixes:
  - CVE-2020-27844: Heap buffer overflow in OpenJPEG.
  - CVE-2021-21159: Heap buffer overflow in TabStrip.
  - CVE-2021-21160: Heap buffer overflow in WebAudio.
  - CVE-2021-21161: Heap buffer overflow in TabStrip.
  - CVE-2021-21162: Use after free in WebRTC.
  - CVE-2021-21163: Insufficient data validation in Reader Mode.
  - CVE-2021-21164: Insufficient data validation in Chrome for iOS.
  - CVE-2021-21165: Object lifecycle issue in audio.
  - CVE-2021-21166: Object lifecycle issue in audio.
  - CVE-2021-21167: Use after free in bookmarks.
  - CVE-2021-21168: Insufficient policy enforcement in appcache.
  - CVE-2021-21169: Out of bounds memory access in V8.
  - CVE-2021-21170: Incorrect security UI in Loader.
  - CVE-2021-21171: Incorrect security UI in TabStrip and Navigation.
  - CVE-2021-21172: Insufficient policy enforcement in File System API.
  - CVE-2021-21173: Side-channel information leakage in Network Internals.
  - CVE-2021-21174: Inappropriate implementation in Referrer.
  - CVE-2021-21175: Inappropriate implementation in Site isolation.
  - CVE-2021-21176: Inappropriate implementation in full screen mode.
  - CVE-2021-21177: Insufficient policy enforcement in Autofill.
  - CVE-2021-21178: Inappropriate implementation in Compositing.
  - CVE-2021-21179: Use after free in Network Internals.
  - CVE-2021-21180: Use after free in tab search.
  - CVE-2021-21181: Side-channel information leakage in autofill.
  - CVE-2021-21182: Insufficient policy enforcement in navigations.
  - CVE-2021-21183: Inappropriate implementation in performance APIs.
  - CVE-2021-21184: Inappropriate implementation in performance APIs.
  - CVE-2021-21185: Insufficient policy enforcement in extensions.
  - CVE-2021-21186: Insufficient policy enforcement in QR scanning.
  - CVE-2021-21187: Insufficient data validation in URL formatting.
  - CVE-2021-21188: Use after free in Blink.
  - CVE-2021-21189: Insufficient policy enforcement in payments.
  - CVE-2021-21190: Uninitialized Use in PDFium.
* Mon Feb 08 2021 Fr. Br. George <george на altlinux> 88.0.4324.150-alt1

dbeaver - Universal Database Manager                            	[175M]
* Sun Apr 18 2021 Nazarov Denis <nenderus на altlinux> 21.0.3-alt1
- Version 21.0.3
* Mon Apr 05 2021 Nazarov Denis <nenderus на altlinux> 21.0.2-alt1

kaptain - An universal graphical front-end for command line programs
* Sun Apr 18 2021 Fr. Br. George <george на altlinux> 0.73-alt2
- Fix build with bison3.7
- Fix parallel build race
* Thu Sep 05 2013 Fr. Br. George <george на altlinux> 0.73-alt1

kernel-image-drm-tip - The drm-tip Linux kernel (bleeding edge of kernel graphics)
* Sun Apr 18 2021 Kernel Pony <kernelpony на altlinux> 5.12.0+rc7.20210418-alt1
- drm-tip 2021y-04m-17d-23h-38m-38s (3fc393180390).
Note: changelog entry for 5.12.0+rc7.20210414-alt1 not found.

mapsoft2 - mapsoft2 - programs for working with maps and geodata
* Sun Apr 18 2021 Vladislav Zavjalov <slazav на altlinux> 1.6-alt1
- Drawing maps, tracks, waypoints, srtm-data:
    Fix projection setting if map boundaries can not be converted.
    Fix adjusting waypolit lable positions, avoid infinite loops.
    Fix multi-thread locking in waypoint rendering.
    Fix default track color (blue).
    Fix drawing summit labels on tiles (srtm layer).
    Use srtm_bgcolor if picture is out-of-scale
    When drawing tiled maps do not fail at empty images, return color 0
- Geodata, geo-conversions:
  - Read-only support for Polygon/MultiPolygon features in GeoJSON.
  - New alias: SU<n>N for soviet grid without zone prefix.
- Creating map references (mkref):
  - Allow floating-point arguments in --mag and --dpi options when creating a map.
  - Add --north option for --mkref=nom.
  - Set default border in "tiles" and "proj" modes.
- Vector maps:
  - Add `clip` drawing feature: set clipping for all following steps
  - Value of --clip-border setting is not changing then configuring `brd`
    step, it also affects out-of-scale filling.
  - Add `fit_patt_size` drawing option.
  - Always load patterns at original size.
  - Fix a few problems with pattern rendering.
  - Support lable scaling (import/export/rendering).
- Rendering tiles:
  - Always crop tile range to [0,0,2^z,2^z]
  - Create sub-directories when creating tiles, allow tile templates with subdirs
    (thanks to @ioctl).
  - A few optimizations for creating tile maps (thanks to @ioctl):
    do not create empty tiles, do not re-assemble old tiles in --tmap_scale mode,
    a bit faster color quantization.
- geo_nom, geo_tiles:
  - ms2nom: -W option: use WGS coordinates in calculations.
  - Fix problems with crossing lon=+180/-180 
  - Add --cover option with figure or geo-file argument (thanks to @ioctl).
* Thu Dec 03 2020 Vladislav Zavjalov <slazav на altlinux> 1.5-alt1

matterbridge - A simple chat bridge
* Sun Apr 18 2021 Vladimir D. Seleznev <vseleznv на altlinux> 1.22.1-alt1
- Updated to 1.22.1.
* Wed Feb 03 2021 Vladimir D. Seleznev <vseleznv на altlinux> 1.22.0-alt1

p7zip - 7zip unofficial port - a file-archiver with highest compression ratio
* Sun Apr 18 2021 Fr. Br. George <george на altlinux> 17.04-alt1
- Autobuild version bump to 17.04
- Reduce i686 memory on tests
- Closes (#31806, #39640)
* Wed Feb 03 2021 Fr. Br. George <george на altlinux> 17.03-alt1
- Autobuild version bump to 17.03
* Mon Jul 20 2020 Fr. Br. George <george на altlinux> 17.02-alt2

tcc - A small but hyper fast C compiler
* Sat Apr 17 2021 Fr. Br. George <george на altlinux> 0.9.27-alt3.740.g347c036
- Switch to git origin/mob build
- Update to 2021/04/17
- Debian patches applied
* Fri Dec 18 2020 Fr. Br. George <george на altlinux> 0.9.27-alt2
- Fix build
- Rename devel to devel-static
- Introduced cross-compilers
* Mon Feb 05 2018 Fr. Br. George <george на altlinux> 0.9.27-alt1

xdg-desktop-portal - Portal frontend service to Flatpak
* Sun Apr 18 2021 Yuri N. Sedunov <aris на altlinux> 1.8.1-alt2
- updated to 1.8.1-3-g89d2197
* Thu Feb 18 2021 Yuri N. Sedunov <aris на altlinux> 1.8.1-alt1

Total 17847 source packages.


Подробная информация о списке рассылки Sisyphus-cybertalk