From: QA Team Robot <qa@altlinux.org> To: sisyphus-cybertalk@lists.altlinux.org Subject: [cyber] I: Sisyphus-20221118 packages: +18 (17893) Date: Fri, 18 Nov 2022 00:13:49 +0000 Message-ID: <Y3bOPQQcbx10uSS8@beehive.mskdc.altlinux.org> (raw) 18 UPDATED packages Mesa - OpenGL compatible 3D graphics library [16M] * Thu Nov 17 2022 Valery Inozemtsev <shrek@altlinux> 4:22.2.4-alt1 - 22.2.4 * Wed Nov 09 2022 Valery Inozemtsev <shrek@altlinux> 4:22.2.3-alt2 chromium-gost - An open source web browser developed by Google [2021M] * Fri Nov 11 2022 Fr. Br. George <george@altlinux> 107.0.5304.87-alt1 - GOST version * Tue Nov 01 2022 Alexey Gladkov <legion@altlinux> 107.0.5304.87-alt1 - New version (107.0.5304.87). - Security fixes: - CVE-2022-3723: Type Confusion in V8. - CVE-2022-3652: Type Confusion in V8. - CVE-2022-3653: Heap buffer overflow in Vulkan. - CVE-2022-3654: Use after free in Layout. - CVE-2022-3655: Heap buffer overflow in Media Galleries. - CVE-2022-3656: Insufficient data validation in File System. - CVE-2022-3657: Use after free in Extensions. - CVE-2022-3658: Use after free in Feedback service on Chrome OS. - CVE-2022-3659: Use after free in Accessibility. - CVE-2022-3660: Inappropriate implementation in Full screen mode. - CVE-2022-3661: Insufficient data validation in Extensions. * Sat Oct 29 2022 Fr. Br. George <george@altlinux> 106.0.5249.119-alt1 firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version) [486M] * Wed Nov 16 2022 Pavel Vasenkov <pav@altlinux> 102.5.0-alt1 - New ESR version. - Security fixes: + CVE-2022-45403 Service Workers might have learned size of cross-origin media files + CVE-2022-45404 Fullscreen notification bypass + CVE-2022-45405 Use-after-free in InputStream implementation + CVE-2022-45406 Use-after-free of a JavaScript Realm + CVE-2022-45408 Fullscreen notification bypass via windowName + CVE-2022-45409 Use-after-free in Garbage Collection + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers + CVE-2022-45416 Keystroke Side-Channel Leakage + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI + CVE-2022-45420 Iframe contents could be rendered outside the iframe + CVE-2022-45421 Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5 * Mon Oct 24 2022 Pavel Vasenkov <pav@altlinux> 102.4.0-alt1 krb5 - The Kerberos network authentication system * Wed Nov 16 2022 Ivan A. Melnikov <iv@altlinux> 1.19.4-alt1 - 1.19.4 (Fixes: CVE-2022-42898) * Wed Sep 14 2022 Ivan A. Melnikov <iv@altlinux> 1.19.3-alt1.2 libXft - X FreeType Library * Thu Nov 17 2022 Valery Inozemtsev <shrek@altlinux> 2.3.7-alt1 - 2.3.7 * Wed Oct 19 2022 Valery Inozemtsev <shrek@altlinux> 2.3.6-alt1 libdnf - Package management library. * Thu Nov 17 2022 Michael Shigorin <mike@altlinux> 0.60.0-alt2 - Fixes for Elbrus build (ilyakurdyukov@). * Mon Oct 31 2022 Andrey Cherepanov <cas@altlinux> 0.60.0-alt1 netatalk - Open Source Apple Filing Protocol(AFP) File Server * Thu Nov 17 2022 Yuri N. Sedunov <aris@altlinux> 3.1.13-alt1 - 3.1.13 (fixed CVE-2021-31439, CVE-2022-23121, CVE-2022-23122, CVE-2022-23123, CVE-2022-23124, CVE-2022-23125 and CVE-2022-0194) * Wed May 12 2021 Grigory Ustinov <grenka@altlinux> 3.1.12-alt5 opendnssec - DNSSEC key and zone management software * Wed Nov 16 2022 Stanislav Levin <slev@altlinux> 2.1.12-alt1 - 2.1.10 -> 2.1.12. * Thu Feb 10 2022 Stanislav Levin <slev@altlinux> 2.1.10-alt3 python3-module-exceptiongroup - Backport of PEP 654 (exception groups) * Wed Nov 16 2022 Stanislav Levin <slev@altlinux> 1.0.4-alt1 - 1.0.1 -> 1.0.4. * Thu Nov 10 2022 Stanislav Levin <slev@altlinux> 1.0.1-alt1 python3-module-google-api-client - Google API Client Library for Python * Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 2.67.0-alt1 - New version. * Wed Oct 19 2022 Andrey Cherepanov <cas@altlinux> 2.65.0-alt1 python3-module-lupa - Integrates the runtimes of Lua or LuaJIT2 into CPython * Thu Nov 17 2022 Stanislav Levin <slev@altlinux> 1.14.1-alt1 - 1.9 -> 1.14.1. * Thu Oct 15 2020 Stanislav Levin <slev@altlinux> 1.9-alt1 python3-module-resolvelib - Resolve abstract dependencies into concrete ones * Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 0.9.0-alt1 - New version. * Fri Nov 26 2021 Andrey Cherepanov <cas@altlinux> 0.8.1-alt1 tellico - A collection manager for KDE * Wed Nov 16 2022 Andrey Cherepanov <cas@altlinux> 3.4.5-alt1 - New version. * Thu Feb 17 2022 Andrey Cherepanov <cas@altlinux> 3.4.4-alt1 theme-mate-windows - Mate theme for Windows-like layout * Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 2.2-alt1 - Removed buttons-have-icons=false. * Tue Aug 09 2022 Andrey Cherepanov <cas@altlinux> 2.1-alt1 thunderbird - Thunderbird is Mozilla's e-mail client [507M] * Wed Nov 16 2022 Pavel Vasenkov <pav@altlinux> 102.5.0-alt1 - New version. - Security fixes: + CVE-2022-45403 Service Workers might have learned size of cross-origin media files + CVE-2022-45404 Fullscreen notification bypass + CVE-2022-45405 Use-after-free in InputStream implementation + CVE-2022-45406 Use-after-free of a JavaScript Realm + CVE-2022-45408 Fullscreen notification bypass via windowName + CVE-2022-45409 Use-after-free in Garbage Collection + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers + CVE-2022-45416 Keystroke Side-Channel Leakage + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI + CVE-2022-45420 Iframe contents could be rendered outside the iframe + CVE-2022-45421 Memory safety bugs fixed in Thunderbird 102.5 * Fri Nov 11 2022 Pavel Vasenkov <pav@altlinux> 102.4.2-alt1 wvkbd - On-screen keyboard for wlroots * Thu Nov 17 2022 Sergey Bolshakov <sbolshakov@altlinux> 0.12-alt1 - 0.12 released * Mon Oct 10 2022 Sergey Bolshakov <sbolshakov@altlinux> 0.11-alt1 xonotic - A free multi-player first person shooter [29M] * Wed Nov 16 2022 Artyom Bystrov <arbars@altlinux> 0.8.5-alt1 - Updated to upstream version 0.8.5 * Wed Oct 06 2021 Aleksei Nikiforov <darktemplar@altlinux> 0.8.2-alt2 xonotic-data - Xonotic data files (graphics, music, maps etc) [1133M] * Wed Nov 16 2022 Artyom Bystrov <arbars@altlinux> 0.8.5-alt1 - Updated to upstream version 0.8.5 * Fri Jun 08 2018 Aleksei Nikiforov <darktemplar@altlinux> 0.8.2-alt1 Total 17893 source packages.
reply other threads:[~2022-11-18 0:13 UTC|newest] Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions: You may reply publicly to this message via plain-text email using any one of the following methods: * Save the following mbox file, import it into your mail client, and reply-to-all from there: mbox Avoid top-posting and favor interleaved quoting: https://en.wikipedia.org/wiki/Posting_style#Interleaved_style * Reply using the --to, --cc, and --in-reply-to switches of git-send-email(1): git send-email \ --in-reply-to=Y3bOPQQcbx10uSS8@beehive.mskdc.altlinux.org \ --to=qa@altlinux.org \ --cc=devel@lists.altlinux.org \ --cc=sisyphus-cybertalk@lists.altlinux.org \ /path/to/YOUR_REPLY https://kernel.org/pub/software/scm/git/docs/git-send-email.html * If your mail client supports setting the In-Reply-To header via mailto: links, try the mailto: link
ALT Linux Sisyphus cybertalk This inbox may be cloned and mirrored by anyone: git clone --mirror http://lore.altlinux.org/sisyphus-cybertalk/0 sisyphus-cybertalk/git/0.git # If you have public-inbox 1.1+ installed, you may # initialize and index your mirror using the following commands: public-inbox-init -V2 sisyphus-cybertalk sisyphus-cybertalk/ http://lore.altlinux.org/sisyphus-cybertalk \ sisyphus-cybertalk@lists.altlinux.org sisyphus-cybertalk@lists.altlinux.ru sisyphus-cybertalk@lists.altlinux.com public-inbox-index sisyphus-cybertalk Example config snippet for mirrors. Newsgroup available over NNTP: nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-cybertalk AGPL code for this site: git clone https://public-inbox.org/public-inbox.git