[cyber] I: Sisyphus-20221118 packages: +18 (17893)

QA Team Robot qa на altlinux.org
Пт Ноя 18 03:13:49 MSK 2022


	18 UPDATED packages

Mesa - OpenGL compatible 3D graphics library                    	[16M]
* Thu Nov 17 2022 Valery Inozemtsev <shrek на altlinux> 4:22.2.4-alt1
- 22.2.4
* Wed Nov 09 2022 Valery Inozemtsev <shrek на altlinux> 4:22.2.3-alt2

chromium-gost - An open source web browser developed by Google  	[2021M]
* Fri Nov 11 2022 Fr. Br. George <george на altlinux> 107.0.5304.87-alt1
- GOST version
* Tue Nov 01 2022 Alexey Gladkov <legion на altlinux> 107.0.5304.87-alt1
- New version (107.0.5304.87).
- Security fixes:
  - CVE-2022-3723: Type Confusion in V8.
  - CVE-2022-3652: Type Confusion in V8.
  - CVE-2022-3653: Heap buffer overflow in Vulkan.
  - CVE-2022-3654: Use after free in Layout.
  - CVE-2022-3655: Heap buffer overflow in Media Galleries.
  - CVE-2022-3656: Insufficient data validation in File System.
  - CVE-2022-3657: Use after free in Extensions.
  - CVE-2022-3658: Use after free in Feedback service on Chrome OS.
  - CVE-2022-3659: Use after free in Accessibility.
  - CVE-2022-3660: Inappropriate implementation in Full screen mode.
  - CVE-2022-3661: Insufficient data validation in Extensions.
* Sat Oct 29 2022 Fr. Br. George <george на altlinux> 106.0.5249.119-alt1

firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)	[486M]
* Wed Nov 16 2022 Pavel Vasenkov <pav на altlinux> 102.5.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-45403 Service Workers might have learned size of cross-origin media files
  + CVE-2022-45404 Fullscreen notification bypass
  + CVE-2022-45405 Use-after-free in InputStream implementation
  + CVE-2022-45406 Use-after-free of a JavaScript Realm
  + CVE-2022-45408 Fullscreen notification bypass via windowName
  + CVE-2022-45409 Use-after-free in Garbage Collection
  + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy
  + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers
  + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers
  + CVE-2022-45416 Keystroke Side-Channel Leakage
  + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI
  + CVE-2022-45420 Iframe contents could be rendered outside the iframe
  + CVE-2022-45421 Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
* Mon Oct 24 2022 Pavel Vasenkov <pav на altlinux> 102.4.0-alt1

krb5 - The Kerberos network authentication system
* Wed Nov 16 2022 Ivan A. Melnikov <iv на altlinux> 1.19.4-alt1
- 1.19.4 (Fixes: CVE-2022-42898)
* Wed Sep 14 2022 Ivan A. Melnikov <iv на altlinux> 1.19.3-alt1.2

libXft - X FreeType Library
* Thu Nov 17 2022 Valery Inozemtsev <shrek на altlinux> 2.3.7-alt1
- 2.3.7
* Wed Oct 19 2022 Valery Inozemtsev <shrek на altlinux> 2.3.6-alt1

libdnf - Package management library.
* Thu Nov 17 2022 Michael Shigorin <mike на altlinux> 0.60.0-alt2
- Fixes for Elbrus build (ilyakurdyukov@).
* Mon Oct 31 2022 Andrey Cherepanov <cas на altlinux> 0.60.0-alt1

netatalk - Open Source Apple Filing Protocol(AFP) File Server
* Thu Nov 17 2022 Yuri N. Sedunov <aris на altlinux> 3.1.13-alt1
- 3.1.13 (fixed CVE-2021-31439, CVE-2022-23121, CVE-2022-23122,
  CVE-2022-23123, CVE-2022-23124, CVE-2022-23125 and CVE-2022-0194)
* Wed May 12 2021 Grigory Ustinov <grenka на altlinux> 3.1.12-alt5

opendnssec - DNSSEC key and zone management software
* Wed Nov 16 2022 Stanislav Levin <slev на altlinux> 2.1.12-alt1
- 2.1.10 -> 2.1.12.
* Thu Feb 10 2022 Stanislav Levin <slev на altlinux> 2.1.10-alt3

python3-module-exceptiongroup - Backport of PEP 654 (exception groups)
* Wed Nov 16 2022 Stanislav Levin <slev на altlinux> 1.0.4-alt1
- 1.0.1 -> 1.0.4.
* Thu Nov 10 2022 Stanislav Levin <slev на altlinux> 1.0.1-alt1

python3-module-google-api-client - Google API Client Library for Python
* Thu Nov 17 2022 Andrey Cherepanov <cas на altlinux> 2.67.0-alt1
- New version.
* Wed Oct 19 2022 Andrey Cherepanov <cas на altlinux> 2.65.0-alt1

python3-module-lupa - Integrates the runtimes of Lua or LuaJIT2 into CPython
* Thu Nov 17 2022 Stanislav Levin <slev на altlinux> 1.14.1-alt1
- 1.9 -> 1.14.1.
* Thu Oct 15 2020 Stanislav Levin <slev на altlinux> 1.9-alt1

python3-module-resolvelib - Resolve abstract dependencies into concrete ones
* Thu Nov 17 2022 Andrey Cherepanov <cas на altlinux> 0.9.0-alt1
- New version.
* Fri Nov 26 2021 Andrey Cherepanov <cas на altlinux> 0.8.1-alt1

tellico - A collection manager for KDE
* Wed Nov 16 2022 Andrey Cherepanov <cas на altlinux> 3.4.5-alt1
- New version.
* Thu Feb 17 2022 Andrey Cherepanov <cas на altlinux> 3.4.4-alt1

theme-mate-windows - Mate theme for Windows-like layout
* Thu Nov 17 2022 Andrey Cherepanov <cas на altlinux> 2.2-alt1
- Removed buttons-have-icons=false.
* Tue Aug 09 2022 Andrey Cherepanov <cas на altlinux> 2.1-alt1

thunderbird - Thunderbird is Mozilla's e-mail client            	[507M]
* Wed Nov 16 2022 Pavel Vasenkov <pav на altlinux> 102.5.0-alt1
- New version.
- Security fixes:
  + CVE-2022-45403 Service Workers might have learned size of cross-origin media files
  + CVE-2022-45404 Fullscreen notification bypass
  + CVE-2022-45405 Use-after-free in InputStream implementation
  + CVE-2022-45406 Use-after-free of a JavaScript Realm
  + CVE-2022-45408 Fullscreen notification bypass via windowName
  + CVE-2022-45409 Use-after-free in Garbage Collection
  + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy
  + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers
  + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers
  + CVE-2022-45416 Keystroke Side-Channel Leakage
  + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI
  + CVE-2022-45420 Iframe contents could be rendered outside the iframe
  + CVE-2022-45421 Memory safety bugs fixed in Thunderbird 102.5
* Fri Nov 11 2022 Pavel Vasenkov <pav на altlinux> 102.4.2-alt1

wvkbd - On-screen keyboard for wlroots
* Thu Nov 17 2022 Sergey Bolshakov <sbolshakov на altlinux> 0.12-alt1
- 0.12 released
* Mon Oct 10 2022 Sergey Bolshakov <sbolshakov на altlinux> 0.11-alt1

xonotic - A free multi-player first person shooter              	[29M]
* Wed Nov 16 2022 Artyom Bystrov <arbars на altlinux> 0.8.5-alt1
- Updated to upstream version 0.8.5
* Wed Oct 06 2021 Aleksei Nikiforov <darktemplar на altlinux> 0.8.2-alt2

xonotic-data - Xonotic data files (graphics, music, maps etc)   	[1133M]
* Wed Nov 16 2022 Artyom Bystrov <arbars на altlinux> 0.8.5-alt1
- Updated to upstream version 0.8.5
* Fri Jun 08 2018 Aleksei Nikiforov <darktemplar на altlinux> 0.8.2-alt1

Total 17893 source packages.


Подробная информация о списке рассылки Sisyphus-cybertalk