[cyber] I: Sisyphus-20230925 packages: +8 (18621)

QA Team Robot qa на altlinux.org
Пн Сен 25 03:13:58 MSK 2023


	8 UPDATED packages

algol68g - Algol 68 interpreter
* Sun Sep 24 2023 Andrey Bergman <vkni на altlinux> 3.3.24-alt1
- Version update
* Mon Sep 11 2023 Andrey Bergman <vkni на altlinux> 3.3.16-alt1

chromium-gost - An open source web browser developed by Google  	[1973M]
* Thu Sep 21 2023 Fr. Br. George <george на altlinux> 117.0.5938.62-alt1
- GOST vesrion
* Wed Sep 13 2023 Alexey Gladkov <legion на altlinux> 117.0.5938.62-alt1
- New version (117.0.5938.62).
- Security fixes:
  - CVE-2023-4863: Heap buffer overflow in WebP.
  - CVE-2023-4900: Inappropriate implementation in Custom Tabs.
  - CVE-2023-4901: Inappropriate implementation in Prompts.
  - CVE-2023-4902: Inappropriate implementation in Input.
  - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs.
  - CVE-2023-4904: Insufficient policy enforcement in Downloads.
  - CVE-2023-4905: Inappropriate implementation in Prompts.
  - CVE-2023-4906: Insufficient policy enforcement in Autofill.
  - CVE-2023-4907: Inappropriate implementation in Intents.
  - CVE-2023-4908: Inappropriate implementation in Picture in Picture.
  - CVE-2023-4909: Inappropriate implementation in Interstitials.
* Thu Aug 17 2023 Alexey Gladkov <legion на altlinux> 116.0.5845.96-alt1
- New version (116.0.5845.96).
- Security fixes:
  - CVE-2023-2312: Use after free in Offline.
  - CVE-2023-4349: Use after free in Device Trust Connectors.
  - CVE-2023-4350: Inappropriate implementation in Fullscreen.
  - CVE-2023-4351: Use after free in Network.
  - CVE-2023-4352: Type Confusion in V8.
  - CVE-2023-4353: Heap buffer overflow in ANGLE.
  - CVE-2023-4354: Heap buffer overflow in Skia.
  - CVE-2023-4355: Out of bounds memory access in V8.
  - CVE-2023-4356: Use after free in Audio.
  - CVE-2023-4357: Insufficient validation of untrusted input in XML.
  - CVE-2023-4358: Use after free in DNS.
  - CVE-2023-4359: Inappropriate implementation in App Launcher.
  - CVE-2023-4360: Inappropriate implementation in Color.
  - CVE-2023-4361: Inappropriate implementation in Autofill.
  - CVE-2023-4362: Heap buffer overflow in Mojom IDL.
  - CVE-2023-4363: Inappropriate implementation in WebShare.
  - CVE-2023-4364: Inappropriate implementation in Permission Prompts.
  - CVE-2023-4365: Inappropriate implementation in Fullscreen.
  - CVE-2023-4366: Use after free in Extensions.
  - CVE-2023-4367: Insufficient policy enforcement in Extensions API.
  - CVE-2023-4368: Insufficient policy enforcement in Extensions API.
* Wed Jul 26 2023 Alexey Gladkov <legion на altlinux> 115.0.5790.110-alt1
- New version (115.0.5790.110).
* Fri Jul 21 2023 Alexey Gladkov <legion на altlinux> 115.0.5790.102-alt1
- New version (115.0.5790.102).
* Tue Jul 18 2023 Alexey Gladkov <legion на altlinux> 114.0.5735.198-alt1
- New version (114.0.5735.198).
- Use LLVM16.
- Security fixes:
  - CVE-2023-3214: Use after free in Autofill payments.
  - CVE-2023-3215: Use after free in WebRTC.
  - CVE-2023-3216: Type Confusion in V8.
  - CVE-2023-3217: Use after free in WebXR.
  - CVE-2023-3420: Type Confusion in V8.
  - CVE-2023-3421: Use after free in Media.
  - CVE-2023-3422: Use after free in Guest View.
* Sat Jun 03 2023 Alexey Gladkov <legion на altlinux> 114.0.5735.90-alt1
- New version (114.0.5735.90).
- Security fixes:
  - CVE-2023-2929: Out of bounds write in Swiftshader.
  - CVE-2023-2930: Use after free in Extensions.
  - CVE-2023-2931: Use after free in PDF.
  - CVE-2023-2932: Use after free in PDF.
  - CVE-2023-2933: Use after free in PDF.
  - CVE-2023-2934: Out of bounds memory access in Mojo.
  - CVE-2023-2935: Type Confusion in V8.
  - CVE-2023-2936: Type Confusion in V8.
  - CVE-2023-2937: Inappropriate implementation in Picture In Picture.
  - CVE-2023-2938: Inappropriate implementation in Picture In Picture.
  - CVE-2023-2939: Insufficient data validation in Installer.
  - CVE-2023-2940: Inappropriate implementation in Downloads.
  - CVE-2023-2941: Inappropriate implementation in Extensions API.
* Wed May 03 2023 Alexey Gladkov <legion на altlinux> 113.0.5672.63-alt1
- New version (113.0.5672.63).
- Security fixes:
  - CVE-2023-2459: Inappropriate implementation in Prompts.
  - CVE-2023-2460: Insufficient validation of untrusted input in Extensions.
  - CVE-2023-2461: Use after free in OS Inputs.
  - CVE-2023-2462: Inappropriate implementation in Prompts.
  - CVE-2023-2463: Inappropriate implementation in Full Screen Mode.
  - CVE-2023-2464: Inappropriate implementation in PictureInPicture.
  - CVE-2023-2465: Inappropriate implementation in CORS.
  - CVE-2023-2466: Inappropriate implementation in Prompts.
  - CVE-2023-2467: Inappropriate implementation in Prompts.
  - CVE-2023-2468: Inappropriate implementation in PictureInPicture.
* Thu Apr 20 2023 Alexey Gladkov <legion на altlinux> 112.0.5615.165-alt1
- New version (112.0.5615.165).
- Security fixes:
  - CVE-2023-1810: Heap buffer overflow in Visuals.
  - CVE-2023-1811: Use after free in Frames.
  - CVE-2023-1812: Out of bounds memory access in DOM Bindings.
  - CVE-2023-1813: Inappropriate implementation in Extensions.
  - CVE-2023-1814: Insufficient validation of untrusted input in Safe Browsing.
  - CVE-2023-1815: Use after free in Networking APIs.
  - CVE-2023-1816: Incorrect security UI in Picture In Picture.
  - CVE-2023-1817: Insufficient policy enforcement in Intents.
  - CVE-2023-1818: Use after free in Vulkan.
  - CVE-2023-1819: Out of bounds read in Accessibility.
  - CVE-2023-1820: Heap buffer overflow in Browser History.
  - CVE-2023-1821: Inappropriate implementation in WebShare.
  - CVE-2023-1822: Incorrect security UI in Navigation.
  - CVE-2023-1823: Inappropriate implementation in FedCM.
  - CVE-2023-2033: Type Confusion in V8.
  - CVE-2023-2133: Out of bounds memory access in Service Worker API.
  - CVE-2023-2134: Out of bounds memory access in Service Worker API.
  - CVE-2023-2135: Use after free in DevTools.
  - CVE-2023-2136: Integer overflow in Skia.
  - CVE-2023-2137: Heap buffer overflow in sqlite.
* Wed Mar 15 2023 Fr. Br. George <george на altlinux> 111.0.5563.64-alt1

freecad - OpenSource 3D CAD modeller                            	[38M]
* Sun Sep 24 2023 Ilya Kurdyukov <ilyakurdyukov на altlinux> 1:0.20.2-alt3.2
- Fixed build for Elbrus.
* Sun Jul 16 2023 Ivan A. Melnikov <iv на altlinux> 1:0.20.2-alt3.1

libcairo - Multi-platform 2D graphics library                   	[33M]
* Sun Sep 24 2023 Valery Inozemtsev <shrek на altlinux> 1:1.18.0-alt1
- 1.18.0
* Sun Jul 02 2023 Valery Inozemtsev <shrek на altlinux> 1:1.17.8-alt1

lv2-x42-plugins - Collection of LV2 plugins
* Fri Sep 22 2023 Ivan A. Melnikov <iv на altlinux> 20230915-alt1
- 20230915
* Mon Jul 10 2023 Ivan A. Melnikov <iv на altlinux> 20230706-alt1

python3-module-phonenumbers - Python port of Google's libphonenumber
* Sun Sep 24 2023 Grigory Ustinov <grenka на altlinux> 8.13.21-alt1
- Automatically updated to 8.13.21.
* Mon Sep 11 2023 Grigory Ustinov <grenka на altlinux> 8.13.20-alt1

rabbitmq-server - The RabbitMQ server
* Sat Sep 23 2023 Egor Ignatov <egori на altlinux> 3.12.6-alt1
- 3.12.6
* Fri Aug 18 2023 Egor Ignatov <egori на altlinux> 3.12.3-alt1

solaar - Device manager for Logitech Unifying Receiver
* Sun Sep 24 2023 Andrey Cherepanov <cas на altlinux> 1.1.10-alt1
- New version.
* Thu Apr 06 2023 Andrey Cherepanov <cas на altlinux> 1.1.9-alt1

Total 18621 source packages.


Подробная информация о списке рассылки Sisyphus-cybertalk