--- ../../english/security/2018/dsa-4255.wml 2018-07-25 10:35:12.993870300 +0500 +++ 2018/dsa-4255.wml 2018-07-25 10:41:53.129206888 +0500 @@ -1,21 +1,22 @@ -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="4d0db63a06dc64eeed382ca15efaf593ffa07d08" mindelta="1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> -<p>Danny Grander reported that the unzip and untar tasks in ant, a Java -based build tool like make, allow the extraction of files outside a -target directory. An attacker can take advantage of this flaw by -submitting a specially crafted Zip or Tar archive to an ant build to -overwrite any file writable by the user running ant.</p> +<p>ÐÑнни ÐÑÑÐ½Ð´ÐµÑ ÑообÑил, ÑÑо задаÑи unzip и untar в ant, инÑÑÑÑменÑе ÑбоÑки +Ñипа make на оÑнове Java, позволÑÑÑ Ð¸Ð·Ð²Ð»ÐµÐºÐ°ÑÑ ÑÐ°Ð¹Ð»Ñ Ð·Ð° пÑÐµÐ´ÐµÐ»Ñ Ñелевого каÑалога. +ÐлоÑмÑÑленник Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑполÑзоваÑÑ ÑÑÑ ÑÑзвимоÑÑÑ, пеÑÐµÐ´Ð°Ð²Ð°Ñ ÑпеÑиалÑно ÑÑоÑмиÑованнÑй +аÑÑ Ð¸Ð² Zip или Tar команде ant build Ð´Ð»Ñ Ð¿ÐµÑезапиÑи лÑбого Ñайла, на запиÑÑ Ð² коÑоÑÑй +имеÑÑÑÑ Ð¿Ñава Ñ Ð¿Ð¾Ð»ÑзоваÑелÑ, запÑÑÑивÑего ant.</p> -<p>For the stable distribution (stretch), this problem has been fixed in -version 1.9.9-1+deb9u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 1.9.9-1+deb9u1.</p> -<p>We recommend that you upgrade your ant packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ ant.</p> -<p>For the detailed security status of ant please refer to its security -tracker page at: -<a href="https://security-tracker.debian.org/tracker/ant">https://security-tracker.debian.org/tracker/ant</a></p> +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи ant можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ +<a href="https://security-tracker.debian.org/tracker/ant">\ +https://security-tracker.debian.org/tracker/ant</a></p> </define-tag> # do not modify the following line #include "$(ENGLISHDIR)/security/2018/dsa-4255.data" -# $Id: $