From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Mon, 19 Apr 2021 00:14:20 +0000 From: QA Team Robot To: sisyphus-cybertalk@lists.altlinux.org Message-ID: <20210419001420.GA19385@gyle.altlinux.org> Mail-Followup-To: sisyphus-cybertalk@lists.altlinux.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Subject: [cyber] I: Sisyphus-20210419 packages: -1 +10 (17847) X-BeenThere: sisyphus-cybertalk@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: devel@lists.altlinux.org List-Id: ALT Linux Sisyphus cybertalk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 Apr 2021 00:14:20 -0000 Archived-At: List-Archive: 1 REMOVED package kernel-image-clr-native 5.9.16-alt1.clr1009 10 UPDATED packages chromium - An open source web browser developed by Google [1078M] * Thu Apr 15 2021 Alexey Gladkov 90.0.4430.72-alt1 - New version (90.0.4430.72). - Security fixes: - CVE-2021-21201: Use after free in permissions. - CVE-2021-21202: Use after free in extensions. - CVE-2021-21203: Use after free in Blink. - CVE-2021-21204: Use after free in Blink. - CVE-2021-21205: Insufficient policy enforcement in navigation. - CVE-2021-21207: Use after free in IndexedDB. - CVE-2021-21208: Insufficient data validation in QR scanner. - CVE-2021-21209: Inappropriate implementation in storage. - CVE-2021-21210: Inappropriate implementation in Network. - CVE-2021-21211: Inappropriate implementation in Navigation. - CVE-2021-21212: Incorrect security UI in Network Config UI. - CVE-2021-21213: Use after free in WebMIDI. - CVE-2021-21214: Use after free in Network API. - CVE-2021-21215: Inappropriate implementation in Autofill. - CVE-2021-21216: Inappropriate implementation in Autofill. - CVE-2021-21217: Uninitialized Use in PDFium. - CVE-2021-21218: Uninitialized Use in PDFium. - CVE-2021-21219: Uninitialized Use in PDFium. - CVE-2021-21221: Insufficient validation of untrusted input in Mojo. * Thu Apr 08 2021 Alexey Gladkov 89.0.4389.114-alt1 chromium-gost - An open source web browser developed by Google [1056M] * Sun Apr 18 2021 Fr. Br. George 89.0.4389.114-alt1 - Build GOST version * Thu Apr 08 2021 Alexey Gladkov 89.0.4389.114-alt0 - New version (89.0.4389.114). - Security fixes: - CVE-2021-21194: Use after free in screen capture. - CVE-2021-21195: Use after free in V8. - CVE-2021-21196: Heap buffer overflow in TabStrip. - CVE-2021-21197: Heap buffer overflow in TabStrip. - CVE-2021-21198: Out of bounds read in IPC. - CVE-2021-21199: Use Use after free in Aura. * Mon Mar 15 2021 Alexey Gladkov 89.0.4389.90-alt1 - New version (89.0.4389.90). - Security fixes: - CVE-2021-21191: Use after free in WebRTC. - CVE-2021-21192: Heap buffer overflow in tab groups. - CVE-2021-21193: Use after free in Blink. * Tue Mar 09 2021 Alexey Gladkov 89.0.4389.82-alt1 - New version (89.0.4389.82). - Security fixes: - CVE-2020-27844: Heap buffer overflow in OpenJPEG. - CVE-2021-21159: Heap buffer overflow in TabStrip. - CVE-2021-21160: Heap buffer overflow in WebAudio. - CVE-2021-21161: Heap buffer overflow in TabStrip. - CVE-2021-21162: Use after free in WebRTC. - CVE-2021-21163: Insufficient data validation in Reader Mode. - CVE-2021-21164: Insufficient data validation in Chrome for iOS. - CVE-2021-21165: Object lifecycle issue in audio. - CVE-2021-21166: Object lifecycle issue in audio. - CVE-2021-21167: Use after free in bookmarks. - CVE-2021-21168: Insufficient policy enforcement in appcache. - CVE-2021-21169: Out of bounds memory access in V8. - CVE-2021-21170: Incorrect security UI in Loader. - CVE-2021-21171: Incorrect security UI in TabStrip and Navigation. - CVE-2021-21172: Insufficient policy enforcement in File System API. - CVE-2021-21173: Side-channel information leakage in Network Internals. - CVE-2021-21174: Inappropriate implementation in Referrer. - CVE-2021-21175: Inappropriate implementation in Site isolation. - CVE-2021-21176: Inappropriate implementation in full screen mode. - CVE-2021-21177: Insufficient policy enforcement in Autofill. - CVE-2021-21178: Inappropriate implementation in Compositing. - CVE-2021-21179: Use after free in Network Internals. - CVE-2021-21180: Use after free in tab search. - CVE-2021-21181: Side-channel information leakage in autofill. - CVE-2021-21182: Insufficient policy enforcement in navigations. - CVE-2021-21183: Inappropriate implementation in performance APIs. - CVE-2021-21184: Inappropriate implementation in performance APIs. - CVE-2021-21185: Insufficient policy enforcement in extensions. - CVE-2021-21186: Insufficient policy enforcement in QR scanning. - CVE-2021-21187: Insufficient data validation in URL formatting. - CVE-2021-21188: Use after free in Blink. - CVE-2021-21189: Insufficient policy enforcement in payments. - CVE-2021-21190: Uninitialized Use in PDFium. * Mon Feb 08 2021 Fr. Br. George 88.0.4324.150-alt1 dbeaver - Universal Database Manager [175M] * Sun Apr 18 2021 Nazarov Denis 21.0.3-alt1 - Version 21.0.3 * Mon Apr 05 2021 Nazarov Denis 21.0.2-alt1 kaptain - An universal graphical front-end for command line programs * Sun Apr 18 2021 Fr. Br. George 0.73-alt2 - Fix build with bison3.7 - Fix parallel build race * Thu Sep 05 2013 Fr. Br. George 0.73-alt1 kernel-image-drm-tip - The drm-tip Linux kernel (bleeding edge of kernel graphics) * Sun Apr 18 2021 Kernel Pony 5.12.0+rc7.20210418-alt1 - drm-tip 2021y-04m-17d-23h-38m-38s (3fc393180390). Note: changelog entry for 5.12.0+rc7.20210414-alt1 not found. mapsoft2 - mapsoft2 - programs for working with maps and geodata * Sun Apr 18 2021 Vladislav Zavjalov 1.6-alt1 - Drawing maps, tracks, waypoints, srtm-data: Fix projection setting if map boundaries can not be converted. Fix adjusting waypolit lable positions, avoid infinite loops. Fix multi-thread locking in waypoint rendering. Fix default track color (blue). Fix drawing summit labels on tiles (srtm layer). Use srtm_bgcolor if picture is out-of-scale When drawing tiled maps do not fail at empty images, return color 0 - Geodata, geo-conversions: - Read-only support for Polygon/MultiPolygon features in GeoJSON. - New alias: SUN for soviet grid without zone prefix. - Creating map references (mkref): - Allow floating-point arguments in --mag and --dpi options when creating a map. - Add --north option for --mkref=nom. - Set default border in "tiles" and "proj" modes. - Vector maps: - Add `clip` drawing feature: set clipping for all following steps - Value of --clip-border setting is not changing then configuring `brd` step, it also affects out-of-scale filling. - Add `fit_patt_size` drawing option. - Always load patterns at original size. - Fix a few problems with pattern rendering. - Support lable scaling (import/export/rendering). - Rendering tiles: - Always crop tile range to [0,0,2^z,2^z] - Create sub-directories when creating tiles, allow tile templates with subdirs (thanks to @ioctl). - A few optimizations for creating tile maps (thanks to @ioctl): do not create empty tiles, do not re-assemble old tiles in --tmap_scale mode, a bit faster color quantization. - geo_nom, geo_tiles: - ms2nom: -W option: use WGS coordinates in calculations. - Fix problems with crossing lon=+180/-180 - Add --cover option with figure or geo-file argument (thanks to @ioctl). * Thu Dec 03 2020 Vladislav Zavjalov 1.5-alt1 matterbridge - A simple chat bridge * Sun Apr 18 2021 Vladimir D. Seleznev 1.22.1-alt1 - Updated to 1.22.1. * Wed Feb 03 2021 Vladimir D. Seleznev 1.22.0-alt1 p7zip - 7zip unofficial port - a file-archiver with highest compression ratio * Sun Apr 18 2021 Fr. Br. George 17.04-alt1 - Autobuild version bump to 17.04 - Reduce i686 memory on tests - Closes (#31806, #39640) * Wed Feb 03 2021 Fr. Br. George 17.03-alt1 - Autobuild version bump to 17.03 * Mon Jul 20 2020 Fr. Br. George 17.02-alt2 tcc - A small but hyper fast C compiler * Sat Apr 17 2021 Fr. Br. George 0.9.27-alt3.740.g347c036 - Switch to git origin/mob build - Update to 2021/04/17 - Debian patches applied * Fri Dec 18 2020 Fr. Br. George 0.9.27-alt2 - Fix build - Rename devel to devel-static - Introduced cross-compilers * Mon Feb 05 2018 Fr. Br. George 0.9.27-alt1 xdg-desktop-portal - Portal frontend service to Flatpak * Sun Apr 18 2021 Yuri N. Sedunov 1.8.1-alt2 - updated to 1.8.1-3-g89d2197 * Thu Feb 18 2021 Yuri N. Sedunov 1.8.1-alt1 Total 17847 source packages.