From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <qa@altlinux.org>
Date: Tue, 17 Mar 2020 04:44:33 +0000
From: QA Team Robot <qa@altlinux.org>
To: sisyphus-cybertalk@lists.altlinux.org
Message-ID: <20200317044433.GA7322@gyle.altlinux.org>
Mail-Followup-To: sisyphus-cybertalk@lists.altlinux.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Subject: [cyber] I: p9/branch packages: +1! +6 (17871)
X-BeenThere: sisyphus-cybertalk@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: devel@lists.altlinux.org
List-Id: ALT Linux Sisyphus cybertalk <sisyphus-cybertalk.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/sisyphus-cybertalk>, 
 <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/sisyphus-cybertalk>
List-Post: <mailto:sisyphus-cybertalk@lists.altlinux.org>
List-Help: <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/sisyphus-cybertalk>, 
 <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Mar 2020 04:44:33 -0000
Archived-At: <http://lore.altlinux.org/sisyphus-cybertalk/20200317044433.GA7322@gyle.altlinux.org/>
List-Archive: <http://lore.altlinux.org/sisyphus-cybertalk/>

	1 ADDED package

python3-module-setuptools_scm_git_archive - This is a setuptools_scm plugin that adds support for git archives
* Thu Sep 12 2019 Grigory Ustinov <grenka@altlinux> 1.1-alt1
- Initial build for Sisyphus.

	6 UPDATED packages

ansible - SSH-based configuration management, deployment, and task execution system
* Thu Mar 12 2020 Alexey Shabalin <shaba@altlinux> 2.8.10-alt1
- 2.8.10
- Fixes:
  + CVE-2019-14846
  + CVE-2019-14856
  + CVE-2019-14864
  + CVE-2019-14904
  + CVE-2019-14905
* Thu Sep 12 2019 Grigory Ustinov <grenka@altlinux> 2.8.4-alt2
- Transfer ansible on python3.
* Tue Sep 03 2019 Terechkov Evgenii <evg@altlinux> 2.8.4-alt1
- 2.8.4 (ALT#36899)
* Fri Jun 14 2019 Terechkov Evgenii <evg@altlinux> 2.7.11-alt1
- 2.7.11
* Tue Apr 30 2019 Terechkov Evgenii <evg@altlinux> 2.7.10-alt1

ansible-lint - Best practices checker for Ansible
* Thu Sep 12 2019 Grigory Ustinov <grenka@altlinux> 4.1.0-alt1
- Build new version with python3.
* Mon May 25 2015 Terechkov Evgenii <evg@altlinux> 2.1.0-alt1

firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser	[326M]
* Tue Mar 10 2020 Andrey Cherepanov <cas@altlinux> 68.6.0-alt1
- New ESR version (68.6.0).
- Fix license tag according to SPDX.
- Fixed:
  + CVE-2020-6805 Use-after-free when removing data about origins
  + CVE-2020-6806 BodyStream::OnInputStreamReady was missing protections against state confusion
  + CVE-2020-6807 Use-after-free in cubeb during stream destruction
  + CVE-2020-6811 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2019-20503 Out of bounds reads in sctp_load_addresses_from_init
  + CVE-2020-6812 The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission
  + CVE-2020-6814 Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6
* Wed Feb 12 2020 Andrey Cherepanov <cas@altlinux> 68.5.0-alt1

kde5-plasma-angelfish - Webbrowser designed for mobile devices
* Fri Mar 06 2020 Sergey V Turchin <zerg@altlinux> 1.5.1-alt1
- new version
* Thu Feb 27 2020 Sergey V Turchin <zerg@altlinux> 1.4.0-alt4
- fix package description
* Tue Feb 25 2020 Sergey V Turchin <zerg@altlinux> 1.4.0-alt3

kdenlive - KDE Non Linear Video Editor                          	[12M]
* Thu Mar 12 2020 Sergey V Turchin <zerg@altlinux> 19.12.3-alt1
- new version
* Fri Jan 24 2020 Sergey V Turchin <zerg@altlinux> 19.12.1-alt1

squid - The Squid proxy caching server
* Sat Mar 14 2020 Alexey Shabalin <shaba@altlinux> 4.10-alt1
- Updated to 4.10.
- Fixed:
  + CVE-2019-12526 Heap Overflow issue in URN processing.
  + CVE-2019-12523 Multiple issues in URI processing.
  + CVE-2019-18676 Multiple issues in URI processing.
  + CVE-2019-18677 Cross-Site Request Forgery issue in HTTP Request processing.
  + CVE-2019-18678 HTTP Request Splitting issue in HTTP message processing.
  + CVE-2019-18679 Information Disclosure issue in HTTP Digest Authentication.
  + CVE-2020-8449 Improper Input Validation issues in HTTP Request processing.
  + CVE-2020-8450 Improper Input Validation issues in HTTP Request processing.
  + CVE-2019-12528 Information Disclosure issue in FTP Gateway.
  + CVE-2020-8517 Buffer Overflow issue in ext_lm_group_acl helper.
* Mon Jul 15 2019 Alexey Shabalin <shaba@altlinux> 4.8-alt1

Total 17871 source packages.