--- ../../english/security/2018/dsa-4242.wml 2018-07-10 16:12:34.336331471 +0500 +++ 2018/dsa-4242.wml 2018-07-10 16:27:16.141026579 +0500 @@ -1,21 +1,21 @@ -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="520cd84fe7763070d62d97295b9095e6d763ddd1" mindelta="1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> -<p>Orange Tsai discovered a path traversal flaw in ruby-sprockets, a -Rack-based asset packaging system. A remote attacker can take advantage -of this flaw to read arbitrary files outside an application's root -directory via specially crafted requests, when the Sprockets server is -used in production.</p> +<p>Orange Tsai обнаÑÑжил Ð¾Ð±Ñ Ð¾Ð´ каÑалога в ruby-sprockets, ÑиÑÑеме пакеÑиÑÐ¾Ð²Ð°Ð½Ð¸Ñ +обÑекÑов на оÑнове Rack. УдалÑннÑй злоÑмÑÑленник Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑполÑзоваÑÑ ÑÑÑ ÑÑзвимоÑÑÑ +Ð´Ð»Ñ ÑÑÐµÐ½Ð¸Ñ Ð¿ÑоизволÑнÑÑ Ñайлов за пÑеделами коÑневого каÑалога пÑиложениÑ, +иÑполÑзÑÑ ÑпеÑиалÑно ÑÑоÑмиÑованнÑе запÑоÑÑ Ð² Ð¼Ð¾Ð¼ÐµÐ½Ñ Ð¸ÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ ÑеÑвеÑа Sprockets.</p> -<p>For the stable distribution (stretch), this problem has been fixed in -version 3.7.0-1+deb9u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 3.7.0-1+deb9u1.</p> -<p>We recommend that you upgrade your ruby-sprockets packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ ruby-sprockets.</p> -<p>For the detailed security status of ruby-sprockets please refer to its -security tracker page at: -<a href="https://security-tracker.debian.org/tracker/ruby-sprockets">https://security-tracker.debian.org/tracker/ruby-sprockets</a></p> +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи ruby-sprockets можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ +<a href="https://security-tracker.debian.org/tracker/ruby-sprockets">\ +https://security-tracker.debian.org/tracker/ruby-sprockets</a></p> </define-tag> # do not modify the following line #include "$(ENGLISHDIR)/security/2018/dsa-4242.data" -# $Id: $