--- ../../english/security/2018/dsa-4206.wml 2018-05-22 00:12:51.000000000 +0500 +++ 2018/dsa-4206.wml 2018-05-22 00:18:43.895676001 +0500 @@ -1,36 +1,36 @@ -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" mindelta="1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> -<p>Several vulnerabilities have been discovered in Gitlab, a software -platform to collaborate on code:</p> +<p>Ð Gitlab, плаÑÑоÑме Ð´Ð»Ñ ÑовмеÑÑной ÑабоÑÑ Ð½Ð°Ð´ кодом, бÑло обнаÑÑжено +неÑколÑко ÑÑзвимоÑÑей:</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2017-0920">CVE-2017-0920</a> - <p>It was discovered that missing validation of merge requests allowed - users to see names to private projects, resulting in information - disclosure.</p></li> + <p>ÐÑло обнаÑÑжено, ÑÑо оÑÑÑÑÑÑвие пÑовеÑки запÑоÑов ÑлиÑÐ½Ð¸Ñ Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ + полÑзоваÑелÑм видеÑÑ Ð¸Ð¼ÐµÐ½Ð° закÑÑÑÑÑ Ð¿ÑоекÑов, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº ÑаÑкÑÑÑÐ¸Ñ + инÑоÑмаÑии.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-8971">CVE-2018-8971</a> - <p>It was discovered that the Auth0 integration was implemented - incorrectly.</p></li> + <p>ÐÑло обнаÑÑжено, ÑÑо инÑегÑаÑÐ¸Ñ Auth0 Ñеализована + непÑавилÑно.</p></li> </ul> -<p>For the stable distribution (stretch), these problems have been fixed in -version 8.13.11+dfsg1-8+deb9u2. The fix for <a href="https://security-tracker.debian.org/tracker/CVE-2018-8971">\ -CVE-2018-8971</a> also requires ruby-omniauth-auth0 to be upgraded -to version 2.0.0-0+deb9u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 8.13.11+dfsg1-8+deb9u2. ÐÐ»Ñ Ð¸ÑпÑÐ°Ð²Ð»ÐµÐ½Ð¸Ñ <a href="https://security-tracker.debian.org/tracker/CVE-2018-8971">\ +CVE-2018-8971</a> ÑÑебÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑ ruby-omniauth-auth0 +до веÑÑии 2.0.0-0+deb9u1.</p> -<p>We recommend that you upgrade your gitlab packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ gitlab.</p> -<p>For the detailed security status of gitlab please refer to -its security tracker page at: +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи gitlab можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ <a href="https://security-tracker.debian.org/tracker/gitlab">\ https://security-tracker.debian.org/tracker/gitlab</a></p> </define-tag> # do not modify the following line #include "$(ENGLISHDIR)/security/2018/dsa-4206.data" -# $Id: dsa-4206.wml,v 1.1 2018/05/21 19:12:51 dogsleg Exp $