[cyber] I: p10/branch packages: +1! +3 (18951)

Ср Ноя 13 03:19:42 MSK 2024

	1 ADDED package

aspell-ru - GNU Aspell Russian Word List Package
* Fri Oct 25 2024 Alexei Takaseev <taf на altlinux> 0.99f7-alt1
- 0.99f7
* Mon Oct 20 2003 Vital Khilko <vk на altlinux> 0.50-alt2

	3 UPDATED packages

docs-alt-server - ALT Server documentation                      	[24M]
* Fri Oct 18 2024 Elena Mishina <lepata на altlinux> 10.4-alt1
- update to ALT Server 10.4
- bug fixes (closes: #51549)
* Thu Aug 15 2024 Elena Mishina <lepata на altlinux> 10.2-alt10

firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)	[515M]
* Mon Oct 28 2024 Pavel Vasenkov <pav на altlinux> 115.16.1-alt1
- New ESR version.
- Security fixes
  + CVE-2024-5702 Use-after-free in networking
  + CVE-2024-5688 Use-after-free in JavaScript object transplant
  + CVE-2024-5690 External protocol handlers leaked by timing attack
  + CVE-2024-5691 Sandboxed iframes were able to bypass sandbox restrictions to open a new window
  + CVE-2024-5692 Bypass of file name restrictions during saving
  + CVE-2024-5693 Cross-Origin Image leak via Offscreen Canvas
  + CVE-2024-5696 Memory Corruption in Text Fragments
  + CVE-2024-5700 Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12
  + CVE-2024-7652 Type Confusion in Async Generators in Javascript Engine
  + CVE-2024-6600 Memory corruption in WebGL API
  + CVE-2024-6601 Race condition in permission assignment
  + CVE-2024-6602 Memory corruption in NSS
  + CVE-2024-6603 Memory corruption in thread creation
  + CVE-2024-6604 Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13
  + CVE-2024-7519 Out of bounds memory access in graphics shared memory handling
  + CVE-2024-7521 Incomplete WebAssembly exception handing
  + CVE-2024-7522 Out of bounds read in editor component
  + CVE-2024-7525 Missing permission check when creating a StreamFilter
  + CVE-2024-7526 Uninitialized memory used by WebGL
  + CVE-2024-7527 Use-after-free in JavaScript garbage collection
  + CVE-2024-7529 Document content could partially obscure security prompts
  + CVE-2024-8381 Type confusion when looking up a property name in a "with" block
  + CVE-2024-8382 Internal event interfaces were exposed to web content when browser EventHandler listener callbacks ran
  + CVE-2024-8384 Garbage collection could mis-color cross-compartment objects in OOM conditions
  + CVE-2024-9392 Compromised content process can bypass site isolation
  + CVE-2024-9393 Cross-origin access to PDF contents through multipart responses
  + CVE-2024-9394 Cross-origin access to JSON contents through multipart responses
  + CVE-2024-9401 Memory safety bugs fixed in Firefox 131, Firefox ESR 115.16, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3
  + CVE-2024-9680 Use-after-free in Animation timeline
* Sun May 19 2024 Pavel Vasenkov <pav на altlinux> 115.11.0-alt1

goldendict - Feature-rich dictionary lookup program             	[14M]
* Thu Nov 07 2024 Andrey Cherepanov <cas на altlinux> 1.5.0-alt3
- Replaced untrusted web-site for MediaWiki search (thanks alton@).
* Tue Nov 14 2023 Andrey Cherepanov <cas на altlinux> 1.5.0-alt2
- Release 1.5.0.
* Thu Nov 22 2018 Anton Farygin <rider на altlinux> 1.5.0-alt1.git36a1881

Total 18951 source packages.