--- ../../english/security/2018/dsa-4256.wml 2018-07-27 11:31:16.329096574 +0500 +++ 2018/dsa-4256.wml 2018-07-27 12:05:36.188374113 +0500 @@ -1,163 +1,163 @@ -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="7a643f3f84873f2bbfa6b6f02ffdfd6c854ad652" mindelta="1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> -<p>Several vulnerabilities have been discovered in the chromium web browser.</p> +<p>Рвеб-бÑаÑзеÑе chromium бÑло обнаÑÑжено неÑколÑко ÑÑзвимоÑÑей.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-4117">CVE-2018-4117</a> - <p>AhsanEjaz discovered an information leak.</p></li> + <p>AhsanEjaz обнаÑÑжил ÑÑеÑÐºÑ Ð¸Ð½ÑоÑмаÑии.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6044">CVE-2018-6044</a> - <p>Rob Wu discovered a way to escalate privileges using extensions.</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð½ÑÑÑ Ð¿Ñивилегии Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ ÑаÑÑиÑений.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6150">CVE-2018-6150</a> - <p>Rob Wu discovered an information disclosure issue (this problem was - fixed in a previous release but was mistakenly omitted from upstream's - announcement at the time).</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑаÑкÑÑÑие инÑоÑмаÑии (ÑÑа пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñла иÑпÑавлена + в пÑедÑдÑÑем вÑпÑÑке, но по оÑибке в Ñо вÑÐµÐ¼Ñ ÑообÑение об иÑпÑавлении + бÑло пÑопÑÑено).</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6151">CVE-2018-6151</a> - <p>Rob Wu discovered an issue in the developer tools (this problem was - fixed in a previous release but was mistakenly omitted from upstream's - announcement at the time).</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² инÑÑÑÑменÑÐ°Ñ ÑазÑабоÑÑика (ÑÑа пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñла иÑпÑавлена + в пÑедÑдÑÑем вÑпÑÑке, но по оÑибке в Ñо вÑÐµÐ¼Ñ ÑообÑение об иÑпÑавлении + бÑло пÑопÑÑено).</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6152">CVE-2018-6152</a> - <p>Rob Wu discovered an issue in the developer tools (this problem was - fixed in a previous release but was mistakenly omitted from upstream's - announcement at the time).</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² инÑÑÑÑменÑÐ°Ñ ÑазÑабоÑÑика (ÑÑа пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñла иÑпÑавлена + в пÑедÑдÑÑем вÑпÑÑке, но по оÑибке в Ñо вÑÐµÐ¼Ñ ÑообÑение об иÑпÑавлении + бÑло пÑопÑÑено).</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6153">CVE-2018-6153</a> - <p>Zhen Zhou discovered a buffer overflow issue in the skia library.</p></li> + <p>ЧжÑÐ½Ñ Ð§Ð¶Ð¾Ñ Ð¾Ð±Ð½Ð°ÑÑжил пеÑеполнение бÑÑеÑа в библиоÑеке skia.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6154">CVE-2018-6154</a> - <p>Omair discovered a buffer overflow issue in the WebGL implementation.</p></li> + <p>Omair обнаÑÑжил пеÑеполнение бÑÑеÑа в ÑеализаÑии WebGL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6155">CVE-2018-6155</a> - <p>Natalie Silvanovich discovered a use-after-free issue in the WebRTC - implementation.</p></li> + <p>ÐаÑали СилÑÐ²Ð°Ð½Ð¾Ð²Ð¸Ñ Ð¾Ð±Ð½Ð°ÑÑжила иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи + в ÑеализаÑии WebRTC.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6156">CVE-2018-6156</a> - <p>Natalie Silvanovich discovered a buffer overflow issue in the WebRTC - implementation.</p></li> + <p>ÐаÑали СилÑÐ²Ð°Ð½Ð¾Ð²Ð¸Ñ Ð¾Ð±Ð½Ð°ÑÑжила пеÑеполнение бÑÑеÑа в ÑеализаÑии + WebRTC.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6157">CVE-2018-6157</a> - <p>Natalie Silvanovich discovered a type confusion issue in the WebRTC - implementation.</p></li> + <p>ÐаÑали СилÑÐ²Ð°Ð½Ð¾Ð²Ð¸Ñ Ð¾Ð±Ð½Ð°ÑÑжила пÑÑаниÑÑ Ð² ÑÐ¸Ð¿Ð°Ñ Ð² ÑеализаÑии + WebRTC.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6158">CVE-2018-6158</a> - <p>Zhe Jin discovered a use-after-free issue.</p></li> + <p>Ð§Ð¶Ñ Ð¦Ð·Ð¸Ð½Ñ Ð¾Ð±Ð½Ð°ÑÑжил иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6159">CVE-2018-6159</a> - <p>Jun Kokatsu discovered a way to bypass the same origin policy.</p></li> + <p>ЦзÑÐ½Ñ ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил возможноÑÑÑ Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6161">CVE-2018-6161</a> - <p>Jun Kokatsu discovered a way to bypass the same origin policy.</p></li> + <p>ЦзÑÐ½Ñ ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил возможноÑÑÑ Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6162">CVE-2018-6162</a> - <p>Omair discovered a buffer overflow issue in the WebGL implementation.</p></li> + <p>Omair обнаÑÑжил пеÑеполнение бÑÑеÑа в ÑеализаÑии WebGL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6163">CVE-2018-6163</a> - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6164">CVE-2018-6164</a> - <p>Jun Kokatsu discovered a way to bypass the same origin policy.</p></li> + <p>ЦзÑÐ½Ñ ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил возможноÑÑÑ Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6165">CVE-2018-6165</a> - <p>evil1m0 discovered a URL spoofing issue.</p></li> + <p>evil1m0 обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6166">CVE-2018-6166</a> - <p>Lynas Zhang discovered a URL spoofing issue.</p></li> + <p>ÐÐ¸Ð½Ð°Ñ Ð§Ð¶Ð°Ð½ обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6167">CVE-2018-6167</a> - <p>Lynas Zhang discovered a URL spoofing issue.</p></li> + <p>ÐÐ¸Ð½Ð°Ñ Ð§Ð¶Ð°Ð½ обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6168">CVE-2018-6168</a> - <p>Gunes Acar and Danny Y. Huang discovered a way to bypass the Cross - Origin Resource Sharing policy.</p></li> + <p>ÐÑÐ½ÐµÑ ÐÐºÐ°Ñ Ð¸ ÐÑнни Ð¥Ñан обнаÑÑжили ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила ÑÐ°Ð·Ð´ÐµÐ»ÐµÐ½Ð¸Ñ ÑеÑÑÑÑов + Ð¼ÐµÐ¶Ð´Ñ Ð¸ÑÑоÑниками.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6169">CVE-2018-6169</a> - <p>Sam P discovered a way to bypass permissions when installing - extensions.</p></li> + <p>Sam P обнаÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° огÑаниÑений пÑав доÑÑÑпа пÑи ÑÑÑановке + ÑаÑÑиÑений.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6170">CVE-2018-6170</a> - <p>A type confusion issue was discovered in the pdfium library.</p></li> + <p>РбиблиоÑеке pdfium бÑла обнаÑÑжена пÑÑаниÑа Ñипов.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6171">CVE-2018-6171</a> - <p>A use-after-free issue was discovered in the WebBluetooth - implementation.</p></li> + <p>Ð ÑеализаÑии WebBluetooth бÑло обнаÑÑжено иÑполÑзование ÑказаÑелей + поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6172">CVE-2018-6172</a> - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6173">CVE-2018-6173</a> - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6174">CVE-2018-6174</a> - <p>Mark Brand discovered an integer overflow issue in the swiftshader - library.</p></li> + <p>ÐаÑк ÐÑанд обнаÑÑжил пеÑеполнение ÑелÑÑ ÑиÑел в библиоÑеке + swiftshader.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6175">CVE-2018-6175</a> - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6176">CVE-2018-6176</a> - <p>Jann Horn discovered a way to escalate privileges using extensions.</p></li> + <p>Янн ХоÑн обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð½ÑÑÐ¸Ñ Ð¿Ñивилегий пÑи иÑполÑзовании ÑаÑÑиÑений.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6177">CVE-2018-6177</a> - <p>Ron Masas discovered an information leak.</p></li> + <p>Рон ÐаÑÐ°Ñ Ð¾Ð±Ð½Ð°ÑÑжил ÑÑеÑÐºÑ Ð¸Ð½ÑоÑмаÑии.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6178">CVE-2018-6178</a> - <p>Khalil Zhani discovered a user interface spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил возможноÑÑÑ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ полÑзоваÑелÑÑкого инÑеÑÑейÑа.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6179">CVE-2018-6179</a> - <p>It was discovered that information about files local to the system - could be leaked to extensions.</p> + <p>ÐÑло обнаÑÑжено, ÑÑо инÑоÑмаÑÐ¸Ñ Ð¾ локалÑнÑÑ ÑÐ°Ð¹Ð»Ð°Ñ Ð¼Ð¾Ð¶ÐµÑ Ð±ÑÑÑ Ð´Ð¾ÑÑÑпна + дополнениÑми.</p> -<p>This version also fixes a regression introduced in the previous security -update that could prevent decoding of particular audio/video codecs.</p></li> +<p>Также Ð´Ð°Ð½Ð½Ð°Ñ Ð²ÐµÑÑÐ¸Ñ Ð¸ÑпÑавлÑÐµÑ ÑегÑеÑÑиÑ, поÑвивÑÑÑÑÑ Ð² пÑедÑдÑÑем обновлении +безопаÑноÑÑи, коÑоÑÐ°Ñ Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð¼ÐµÑаÑÑ Ð´ÐµÐºÐ¾Ð´Ð¸ÑÐ¾Ð²Ð°Ð½Ð¸Ñ Ð¾Ð¿ÑеделÑннÑÑ Ð°Ñдио/видео кодеков.</p></li> </ul> -<p>For the stable distribution (stretch), these problems have been fixed in -version 68.0.3440.75-1~deb9u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 68.0.3440.75-1~deb9u1.</p> -<p>We recommend that you upgrade your chromium-browser packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ chromium-browser.</p> -<p>For the detailed security status of chromium-browser please refer to -its security tracker page at: +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи chromium-browser можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ <a href="https://security-tracker.debian.org/tracker/chromium-browser">\ https://security-tracker.debian.org/tracker/chromium-browser</a></p> </define-tag> # do not modify the following line #include "$(ENGLISHDIR)/security/2018/dsa-4256.data" -# $Id: $