From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on sa.local.altlinux.org X-Spam-Level: X-Spam-Status: No, score=-3.3 required=5.0 tests=BAYES_00,RP_MATCHES_RCVD autolearn=ham autolearn_force=no version=3.4.1 Date: Wed, 13 Nov 2024 00:19:42 +0000 From: QA Team Robot To: sisyphus-cybertalk@lists.altlinux.org Message-ID: Mail-Followup-To: sisyphus-cybertalk@lists.altlinux.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Subject: [cyber] I: p10/branch packages: +1! +3 (18951) X-BeenThere: sisyphus-cybertalk@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: devel@lists.altlinux.org List-Id: ALT Linux Sisyphus cybertalk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Nov 2024 00:19:44 -0000 Archived-At: List-Archive: 1 ADDED package aspell-ru - GNU Aspell Russian Word List Package * Fri Oct 25 2024 Alexei Takaseev 0.99f7-alt1 - 0.99f7 * Mon Oct 20 2003 Vital Khilko 0.50-alt2 3 UPDATED packages docs-alt-server - ALT Server documentation [24M] * Fri Oct 18 2024 Elena Mishina 10.4-alt1 - update to ALT Server 10.4 - bug fixes (closes: #51549) * Thu Aug 15 2024 Elena Mishina 10.2-alt10 firefox-esr - The Mozilla Firefox project is a redesign of Mozilla's browser (ESR version) [515M] * Mon Oct 28 2024 Pavel Vasenkov 115.16.1-alt1 - New ESR version. - Security fixes + CVE-2024-5702 Use-after-free in networking + CVE-2024-5688 Use-after-free in JavaScript object transplant + CVE-2024-5690 External protocol handlers leaked by timing attack + CVE-2024-5691 Sandboxed iframes were able to bypass sandbox restrictions to open a new window + CVE-2024-5692 Bypass of file name restrictions during saving + CVE-2024-5693 Cross-Origin Image leak via Offscreen Canvas + CVE-2024-5696 Memory Corruption in Text Fragments + CVE-2024-5700 Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12, and Thunderbird 115.12 + CVE-2024-7652 Type Confusion in Async Generators in Javascript Engine + CVE-2024-6600 Memory corruption in WebGL API + CVE-2024-6601 Race condition in permission assignment + CVE-2024-6602 Memory corruption in NSS + CVE-2024-6603 Memory corruption in thread creation + CVE-2024-6604 Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 + CVE-2024-7519 Out of bounds memory access in graphics shared memory handling + CVE-2024-7521 Incomplete WebAssembly exception handing + CVE-2024-7522 Out of bounds read in editor component + CVE-2024-7525 Missing permission check when creating a StreamFilter + CVE-2024-7526 Uninitialized memory used by WebGL + CVE-2024-7527 Use-after-free in JavaScript garbage collection + CVE-2024-7529 Document content could partially obscure security prompts + CVE-2024-8381 Type confusion when looking up a property name in a "with" block + CVE-2024-8382 Internal event interfaces were exposed to web content when browser EventHandler listener callbacks ran + CVE-2024-8384 Garbage collection could mis-color cross-compartment objects in OOM conditions + CVE-2024-9392 Compromised content process can bypass site isolation + CVE-2024-9393 Cross-origin access to PDF contents through multipart responses + CVE-2024-9394 Cross-origin access to JSON contents through multipart responses + CVE-2024-9401 Memory safety bugs fixed in Firefox 131, Firefox ESR 115.16, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3 + CVE-2024-9680 Use-after-free in Animation timeline * Sun May 19 2024 Pavel Vasenkov 115.11.0-alt1 goldendict - Feature-rich dictionary lookup program [14M] * Thu Nov 07 2024 Andrey Cherepanov 1.5.0-alt3 - Replaced untrusted web-site for MediaWiki search (thanks alton@). * Tue Nov 14 2023 Andrey Cherepanov 1.5.0-alt2 - Release 1.5.0. * Thu Nov 22 2018 Anton Farygin 1.5.0-alt1.git36a1881 Total 18951 source packages.