From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <qa@altlinux.org>
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
 sa.local.altlinux.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.3 required=5.0 tests=BAYES_00,RP_MATCHES_RCVD
 autolearn=ham autolearn_force=no version=3.4.1
Date: Fri, 18 Nov 2022 00:13:49 +0000
From: QA Team Robot <qa@altlinux.org>
To: sisyphus-cybertalk@lists.altlinux.org
Message-ID: <Y3bOPQQcbx10uSS8@beehive.mskdc.altlinux.org>
Mail-Followup-To: sisyphus-cybertalk@lists.altlinux.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Subject: [cyber] I: Sisyphus-20221118 packages: +18 (17893)
X-BeenThere: sisyphus-cybertalk@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: devel@lists.altlinux.org
List-Id: ALT Linux Sisyphus cybertalk <sisyphus-cybertalk.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/sisyphus-cybertalk>, 
 <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/sisyphus-cybertalk>
List-Post: <mailto:sisyphus-cybertalk@lists.altlinux.org>
List-Help: <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/sisyphus-cybertalk>, 
 <mailto:sisyphus-cybertalk-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Nov 2022 00:13:53 -0000
Archived-At: <http://lore.altlinux.org/sisyphus-cybertalk/Y3bOPQQcbx10uSS8@beehive.mskdc.altlinux.org/>
List-Archive: <http://lore.altlinux.org/sisyphus-cybertalk/>

	18 UPDATED packages

Mesa - OpenGL compatible 3D graphics library                    	[16M]
* Thu Nov 17 2022 Valery Inozemtsev <shrek@altlinux> 4:22.2.4-alt1
- 22.2.4
* Wed Nov 09 2022 Valery Inozemtsev <shrek@altlinux> 4:22.2.3-alt2

chromium-gost - An open source web browser developed by Google  	[2021M]
* Fri Nov 11 2022 Fr. Br. George <george@altlinux> 107.0.5304.87-alt1
- GOST version
* Tue Nov 01 2022 Alexey Gladkov <legion@altlinux> 107.0.5304.87-alt1
- New version (107.0.5304.87).
- Security fixes:
  - CVE-2022-3723: Type Confusion in V8.
  - CVE-2022-3652: Type Confusion in V8.
  - CVE-2022-3653: Heap buffer overflow in Vulkan.
  - CVE-2022-3654: Use after free in Layout.
  - CVE-2022-3655: Heap buffer overflow in Media Galleries.
  - CVE-2022-3656: Insufficient data validation in File System.
  - CVE-2022-3657: Use after free in Extensions.
  - CVE-2022-3658: Use after free in Feedback service on Chrome OS.
  - CVE-2022-3659: Use after free in Accessibility.
  - CVE-2022-3660: Inappropriate implementation in Full screen mode.
  - CVE-2022-3661: Insufficient data validation in Extensions.
* Sat Oct 29 2022 Fr. Br. George <george@altlinux> 106.0.5249.119-alt1

firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version)	[486M]
* Wed Nov 16 2022 Pavel Vasenkov <pav@altlinux> 102.5.0-alt1
- New ESR version.
- Security fixes:
  + CVE-2022-45403 Service Workers might have learned size of cross-origin media files
  + CVE-2022-45404 Fullscreen notification bypass
  + CVE-2022-45405 Use-after-free in InputStream implementation
  + CVE-2022-45406 Use-after-free of a JavaScript Realm
  + CVE-2022-45408 Fullscreen notification bypass via windowName
  + CVE-2022-45409 Use-after-free in Garbage Collection
  + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy
  + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers
  + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers
  + CVE-2022-45416 Keystroke Side-Channel Leakage
  + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI
  + CVE-2022-45420 Iframe contents could be rendered outside the iframe
  + CVE-2022-45421 Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
* Mon Oct 24 2022 Pavel Vasenkov <pav@altlinux> 102.4.0-alt1

krb5 - The Kerberos network authentication system
* Wed Nov 16 2022 Ivan A. Melnikov <iv@altlinux> 1.19.4-alt1
- 1.19.4 (Fixes: CVE-2022-42898)
* Wed Sep 14 2022 Ivan A. Melnikov <iv@altlinux> 1.19.3-alt1.2

libXft - X FreeType Library
* Thu Nov 17 2022 Valery Inozemtsev <shrek@altlinux> 2.3.7-alt1
- 2.3.7
* Wed Oct 19 2022 Valery Inozemtsev <shrek@altlinux> 2.3.6-alt1

libdnf - Package management library.
* Thu Nov 17 2022 Michael Shigorin <mike@altlinux> 0.60.0-alt2
- Fixes for Elbrus build (ilyakurdyukov@).
* Mon Oct 31 2022 Andrey Cherepanov <cas@altlinux> 0.60.0-alt1

netatalk - Open Source Apple Filing Protocol(AFP) File Server
* Thu Nov 17 2022 Yuri N. Sedunov <aris@altlinux> 3.1.13-alt1
- 3.1.13 (fixed CVE-2021-31439, CVE-2022-23121, CVE-2022-23122,
  CVE-2022-23123, CVE-2022-23124, CVE-2022-23125 and CVE-2022-0194)
* Wed May 12 2021 Grigory Ustinov <grenka@altlinux> 3.1.12-alt5

opendnssec - DNSSEC key and zone management software
* Wed Nov 16 2022 Stanislav Levin <slev@altlinux> 2.1.12-alt1
- 2.1.10 -> 2.1.12.
* Thu Feb 10 2022 Stanislav Levin <slev@altlinux> 2.1.10-alt3

python3-module-exceptiongroup - Backport of PEP 654 (exception groups)
* Wed Nov 16 2022 Stanislav Levin <slev@altlinux> 1.0.4-alt1
- 1.0.1 -> 1.0.4.
* Thu Nov 10 2022 Stanislav Levin <slev@altlinux> 1.0.1-alt1

python3-module-google-api-client - Google API Client Library for Python
* Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 2.67.0-alt1
- New version.
* Wed Oct 19 2022 Andrey Cherepanov <cas@altlinux> 2.65.0-alt1

python3-module-lupa - Integrates the runtimes of Lua or LuaJIT2 into CPython
* Thu Nov 17 2022 Stanislav Levin <slev@altlinux> 1.14.1-alt1
- 1.9 -> 1.14.1.
* Thu Oct 15 2020 Stanislav Levin <slev@altlinux> 1.9-alt1

python3-module-resolvelib - Resolve abstract dependencies into concrete ones
* Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 0.9.0-alt1
- New version.
* Fri Nov 26 2021 Andrey Cherepanov <cas@altlinux> 0.8.1-alt1

tellico - A collection manager for KDE
* Wed Nov 16 2022 Andrey Cherepanov <cas@altlinux> 3.4.5-alt1
- New version.
* Thu Feb 17 2022 Andrey Cherepanov <cas@altlinux> 3.4.4-alt1

theme-mate-windows - Mate theme for Windows-like layout
* Thu Nov 17 2022 Andrey Cherepanov <cas@altlinux> 2.2-alt1
- Removed buttons-have-icons=false.
* Tue Aug 09 2022 Andrey Cherepanov <cas@altlinux> 2.1-alt1

thunderbird - Thunderbird is Mozilla's e-mail client            	[507M]
* Wed Nov 16 2022 Pavel Vasenkov <pav@altlinux> 102.5.0-alt1
- New version.
- Security fixes:
  + CVE-2022-45403 Service Workers might have learned size of cross-origin media files
  + CVE-2022-45404 Fullscreen notification bypass
  + CVE-2022-45405 Use-after-free in InputStream implementation
  + CVE-2022-45406 Use-after-free of a JavaScript Realm
  + CVE-2022-45408 Fullscreen notification bypass via windowName
  + CVE-2022-45409 Use-after-free in Garbage Collection
  + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy
  + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers
  + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers
  + CVE-2022-45416 Keystroke Side-Channel Leakage
  + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI
  + CVE-2022-45420 Iframe contents could be rendered outside the iframe
  + CVE-2022-45421 Memory safety bugs fixed in Thunderbird 102.5
* Fri Nov 11 2022 Pavel Vasenkov <pav@altlinux> 102.4.2-alt1

wvkbd - On-screen keyboard for wlroots
* Thu Nov 17 2022 Sergey Bolshakov <sbolshakov@altlinux> 0.12-alt1
- 0.12 released
* Mon Oct 10 2022 Sergey Bolshakov <sbolshakov@altlinux> 0.11-alt1

xonotic - A free multi-player first person shooter              	[29M]
* Wed Nov 16 2022 Artyom Bystrov <arbars@altlinux> 0.8.5-alt1
- Updated to upstream version 0.8.5
* Wed Oct 06 2021 Aleksei Nikiforov <darktemplar@altlinux> 0.8.2-alt2

xonotic-data - Xonotic data files (graphics, music, maps etc)   	[1133M]
* Wed Nov 16 2022 Artyom Bystrov <arbars@altlinux> 0.8.5-alt1
- Updated to upstream version 0.8.5
* Fri Jun 08 2018 Aleksei Nikiforov <darktemplar@altlinux> 0.8.2-alt1

Total 17893 source packages.