-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2016/dsa-3480.wml 2016-02-16 19:48:50.000000000 +0500 +++ russian/security/2016/dsa-3480.wml 2016-02-16 22:20:09.951723871 +0500 @@ -1,99 +1,100 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities have been fixed in the GNU C Library, eglibc.</p> +<p>РбиблиоÑеке GNU C Library, eglibc, бÑло обнаÑÑжено и иÑпÑавлено неÑколÑко ÑÑзвимоÑÑей.</p> - -<p>The <a href="https://security-tracker.debian.org/tracker/CVE-2015-7547";>CVE-2015-7547</a> vulnerability listed below is considered to have - -critical impact.</p> +<p>УÑзвимоÑÑÑ <a href="https://security-tracker.debian.org/tracker/CVE-2015-7547";>CVE-2015-7547</a>, ÑÐºÐ°Ð·Ð°Ð½Ð½Ð°Ñ Ð½Ð¸Ð¶Ðµ, ÑÑиÑаеÑÑÑ +кÑиÑиÑеÑкой.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2014-8121";>CVE-2014-8121</a> - - <p>Robin Hack discovered that the nss_files database did not - - correctly implement enumeration interleaved with name-based or - - ID-based lookups. This could cause the enumeration enter an - - endless loop, leading to a denial of service.</p></li> + <p>Робин Ð¥Ñк обнаÑÑжил, ÑÑо база даннÑÑ nss_files непÑавилÑно + ÑеализÑÐµÑ Ð¿ÐµÑеÑиÑление, пеÑемежаÑÑееÑÑ Ñ Ð¿Ð¾Ð¸Ñком на оÑнове имени или + иденÑиÑикаÑоÑа. ÐÑо Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº ÑомÑ, ÑÑо пеÑеÑиÑление войдÑÑ Ð² + беÑконеÑнÑй Ñикл, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-1781";>CVE-2015-1781</a> - - <p>Arjun Shankar discovered that the _r variants of host name - - resolution functions (like gethostbyname_r), when performing DNS - - name resolution, suffered from a buffer overflow if a misaligned - - buffer was supplied by the applications, leading to a crash or, - - potentially, arbitrary code execution. Most applications are not - - affected by this vulnerability because they use aligned buffers.</p></li> + <p>ÐÑджÑн Ð¨Ð°Ð½ÐºÐ°Ñ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо ваÑианÑÑ ÑÑнкÑий ÑазÑеÑÐµÐ½Ð¸Ñ Ð¸Ð¼Ñн Ñзлов + Ñ _r (напÑимеÑ, gethostbyname_r) пÑи вÑполнении ÑазÑеÑÐµÐ½Ð¸Ñ Ð¸Ð¼Ñн ÑеÑез + DNS подвеÑÐ¶ÐµÐ½Ñ Ð¿ÐµÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð±ÑÑеÑа в Ñом ÑлÑÑае, еÑли пÑиложением бÑл + пеÑедан невÑÑовненнÑй бÑÑеÑ, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº аваÑийной оÑÑановке или + к поÑенÑиалÑÐ½Ð¾Ð¼Ñ Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑоизволÑного кода. ÐолÑÑинÑÑво пÑиложений + не подвеÑÐ¶ÐµÐ½Ñ Ð´Ð°Ð½Ð½Ð¾Ð¹ ÑÑзвимоÑÑи, Ñак как они иÑполÑзÑÑÑ Ð²ÑÑовненнÑе бÑÑеÑÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-7547";>CVE-2015-7547</a> - - <p>The Google Security Team and Red Hat discovered that the eglibc - - host name resolver function, getaddrinfo, when processing - - AF_UNSPEC queries (for dual A/AAAA lookups), could mismanage its - - internal buffers, leading to a stack-based buffer overflow and - - arbitrary code execution. This vulnerability affects most - - applications which perform host name resolution using getaddrinfo, - - including system services.</p></li> + <p>Ð§Ð»ÐµÐ½Ñ ÐÐ¾Ð¼Ð°Ð½Ð´Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи Google и ÑоÑÑÑдники Red Hat обнаÑÑжили, ÑÑо ÑÑнкÑÐ¸Ñ + ÑазÑеÑÐµÐ½Ð¸Ñ Ð¸Ð¼Ñн Ñзлов eglibc, getaddrinfo, пÑи обÑабоÑке + запÑоÑов AF_UNSPEC (Ð´Ð»Ñ Ð´Ð²Ð¾Ð¹Ð½Ð¾Ð³Ð¾ поиÑка A/AAAA) Ð¼Ð¾Ð¶ÐµÑ Ð½ÐµÐ¿ÑавилÑно иÑполÑзоваÑÑ + Ñвои внÑÑÑенние бÑÑеÑÑ, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº пеÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð±ÑÑеÑа и + вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑоизволÑного кода. ÐÐ°Ð½Ð½Ð°Ñ ÑÑзвимоÑÑÑ ÐºÐ°ÑаеÑÑÑ Ð±Ð¾Ð»ÑÑинÑÑва + пÑиложений, вÑполнÑÑÑÐ¸Ñ ÑазÑеÑение имÑн Ñзлов Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ getaddrinfo, + вклÑÑÐ°Ñ ÑиÑÑемнÑе ÑлÑжбÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8776";>CVE-2015-8776</a> - - <p>Adam Nielsen discovered that if an invalid separated time value - - is passed to strftime, the strftime function could crash or leak - - information. Applications normally pass only valid time - - information to strftime; no affected applications are known.</p></li> + <p>Ðдам ÐилÑÑен обнаÑÑжил, ÑÑо еÑли непÑавилÑно ÑазделÑнное знаÑение, обознаÑаÑÑее вÑемÑ, + пеÑедаÑÑÑÑ strftime, Ñо ÑÑнкÑÐ¸Ñ strftime Ð¼Ð¾Ð¶ÐµÑ Ð°Ð²Ð°Ñийно завеÑÑиÑÑ ÑабоÑÑ, либо Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑоизойÑи + ÑÑеÑка инÑоÑмаÑии. ÐÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ Ð¾Ð±ÑÑно пеÑедаÑÑ ÑолÑко коÑÑекÑнÑÑ Ð¸Ð½ÑоÑмаÑÐ¸Ñ + о вÑемени ÑÑнкÑии strftime; подвеÑженнÑе данной пÑоблеме пÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ Ð½Ðµ извеÑÑнÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8777";>CVE-2015-8777</a> - - <p>Hector Marco-Gisbert reported that LD_POINTER_GUARD was not - - ignored for SUID programs, enabling an unintended bypass of a - - security feature. This update causes eglibc to always ignore the - - LD_POINTER_GUARD environment variable.</p></li> + <p>ÐекÑÐ¾Ñ ÐаÑко-ÐиÑбеÑÑ ÑообÑил, ÑÑо LD_POINTER_GUARD не игноÑиÑÑеÑÑÑ + Ð´Ð»Ñ Ð¿ÑогÑамм Ñ Ñлагом пÑав доÑÑÑпа, позволÑÑÑим запÑÑÑиÑÑ ÑÑи пÑогÑÐ°Ð¼Ð¼Ñ Ð¾Ñ Ð»Ð¸Ñа владелÑÑа, ÑÑо позволÑÐµÑ + ненамеÑенно Ð¾Ð±Ñ Ð¾Ð´Ð¸ÑÑ ÑÑедÑÑва безопаÑноÑÑи. Ðанное обновление ÑÑебÑеÑ, ÑÑÐ¾Ð±Ñ eglibc вÑегда игноÑиÑовало + пеÑеменнÑÑ Ð¾ÐºÑÑÐ¶ÐµÐ½Ð¸Ñ LD_POINTER_GUARD.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8778";>CVE-2015-8778</a> - - <p>Szabolcs Nagy reported that the rarely-used hcreate and hcreate_r - - functions did not check the size argument properly, leading to a - - crash (denial of service) for certain arguments. No impacted - - applications are known at this time.</p></li> + <p>СаболÑÑ Ðаги ÑообÑил, ÑÑо Ñедко иÑполÑзÑемÑе ÑÑнкÑии hcreate и hcreate_r + непÑавилÑно вÑполнÑÑÑ Ð¿ÑовеÑÐºÑ ÑазмеÑа аÑгÑменÑа, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº + аваÑийной оÑÑановке (оÑказ в обÑлÑживании) в ÑлÑÑае иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð¾Ð¿ÑеделÑннÑÑ Ð°ÑгÑменÑов. Ðока + ниÑего не извеÑÑно о пÑиложениÑÑ , подвеÑженнÑÑ Ð´Ð°Ð½Ð½Ð¾Ð¹ пÑоблеме.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8779";>CVE-2015-8779</a> - - <p>The catopen function contains several unbound stack allocations - - (stack overflows), causing it the crash the process (denial of - - service). No applications where this issue has a security impact - - are currently known.</p> - - - -<p>The following fixed vulnerabilities currently lack CVE assignment:</p> - - - - <p>Joseph Myers reported discovered that an integer overflow in the - - strxfrm can lead to heap-based buffer overflow, possibly allowing - - arbitrary code execution. In addition, a fallback path in strxfrm - - uses an unbounded stack allocation (stack overflow), leading to a - - crash or erroneous application behavior.</p> - - - - <p>Kostya Serebryany reported that the fnmatch function could skip - - over the terminating NUL character of a malformed pattern, causing - - an application calling fnmatch to crash (denial of service).</p> - - - - <p>Joseph Myers reported that the IO_wstr_overflow function, - - internally used by wide-oriented character streams, suffered from - - an integer overflow, leading to a heap-based buffer overflow. On - - GNU/Linux systems, wide-oriented character streams are rarely - - used, and no affected applications are known.</p> - - - - <p>Andreas Schwab reported a memory leak (memory allocation without a - - matching deallocation) while processing certain DNS answers in - - getaddrinfo, related to the _nss_dns_gethostbyname4_r function. - - This vulnerability could lead to a denial of service.</p> - - - -<p>While it is only necessary to ensure that all processes are not using - -the old eglibc anymore, it is recommended to reboot the machines after - -applying the security upgrade.</p></li> + <p>ФÑнкÑÐ¸Ñ catopen ÑодеÑÐ¶Ð¸Ñ Ð½ÐµÑколÑко неогÑаниÑеннÑÑ Ð²Ñделений ÑÑÑка + (пеÑеполнение ÑÑÑка), ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº аваÑийной оÑÑановке пÑоÑеÑÑа (оÑказ в + обÑлÑживании). Ðока ниÑего не извеÑÑно о пÑиложениÑÑ , подвеÑженнÑÑ + данной пÑоблеме.</p> + +<p>У ÑледÑÑÑÐ¸Ñ ÑÑзвимоÑÑей пока оÑÑÑÑÑÑвÑÑÑ Ð¸Ð´ÐµÐ½ÑиÑикаÑоÑÑ CVE:</p> + + <p>ÐÐ¶Ð¾Ð·ÐµÑ ÐÐ°Ð¹ÐµÑ ÑообÑил, ÑÑо пеÑеполнение ÑелÑÑ ÑиÑел в + strxfrm Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº пеÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð´Ð¸Ð½Ð°Ð¼Ð¸ÑеÑкой памÑÑи, ÑÑо веÑоÑÑно + позволÑÐµÑ Ð²ÑполнÑÑÑ Ð¿ÑоизволÑнÑй код. ÐÑоме Ñого, пеÑÐµÑ Ð¾Ð´ на аваÑийнÑй Ñежим + в strxfrm иÑполÑзÑÐµÑ Ð½ÐµÐ¾Ð³ÑаниÑенное вÑделение ÑÑÑка (пеÑеполнение ÑÑÑка), ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ + к аваÑийной оÑÑановке или некоÑÑекÑÐ½Ð¾Ð¼Ñ Ð¿Ð¾Ð²ÐµÐ´ÐµÐ½Ð¸Ñ Ð¿ÑиложениÑ.</p> + + <p>ÐоÑÑÑ Ð¡ÐµÑебÑнÑй ÑообÑил, ÑÑо ÑÑнкÑÐ¸Ñ fnmatch Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑопÑÑÑиÑÑ + завеÑÑаÑÑий NUL-Ñимвол в некоÑÑекÑном Ñаблоне, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ + к ÑомÑ, ÑÑо пÑиложение, вÑзÑваÑÑее fnmatch, аваÑийно оÑÑанавливаеÑÑÑ (оÑказ в обÑлÑживании).</p> + + <p>ÐÐ¶Ð¾Ð·ÐµÑ ÐÐ°Ð¹ÐµÑ ÑообÑил, ÑÑо ÑÑнкÑÐ¸Ñ IO_wstr_overflow, + внÑÑÑенне иÑполÑзÑÐµÐ¼Ð°Ñ ÑимволÑнÑми поÑоками, ÑодеÑÐ¶Ð¸Ñ + пеÑеполнение ÑелÑÑ ÑиÑел, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº пеÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð´Ð¸Ð½Ð°Ð¼Ð¸ÑеÑкой памÑÑи. Ð + ÑиÑÑÐµÐ¼Ð°Ñ GNU/Linux, Ñакие ÑимволÑнÑе поÑоки Ñедко + иÑполÑзÑÑÑÑÑ, а подвеÑженнÑе ÑÑой ÑÑзвимоÑÑи пÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ Ð½Ðµ извеÑÑнÑ.</p> + + <p>ÐндÑÐµÐ°Ñ Ð¨Ð²Ð°Ð± ÑообÑил об ÑÑеÑке памÑÑи (вÑделение памÑÑи без + ÑооÑвеÑÑÑвÑÑÑего оÑвобождениÑ) пÑи обÑабоÑке опÑеделÑннÑÑ Ð¾ÑвеÑов DNS в + getaddrinfo, ÑвÑзанной Ñ _nss_dns_gethostbyname4_r ÑÑнкÑией. + ÐÐ°Ð½Ð½Ð°Ñ ÑÑзвимоÑÑÑ Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании.</p> + +<p>ХоÑÑ ÑÑебÑеÑÑÑ Ð»Ð¸ÑÑ ÑбедиÑÑÑÑ, ÑÑо ни один пÑоÑеÑÑ Ð±Ð¾Ð»ÐµÐµ не иÑполÑзÑÐµÑ +ÑÑаÑÑÑ Ð±Ð¸Ð±Ð»Ð¸Ð¾ÑÐµÐºÑ eglibc, ÑекомендÑеÑÑÑ Ð¿ÐµÑезагÑÑзиÑÑ Ð¼Ð°ÑÐ¸Ð½Ñ Ð¿Ð¾Ñле +пÑÐ¸Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ Ð´Ð°Ð½Ð½Ð¾Ð³Ð¾ обновление безопаÑноÑÑи.</p></li> </ul> - -<p>For the oldstable distribution (wheezy), these problems have been fixed - -in version 2.13-38+deb7u10.</p> +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (wheezy) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ +в веÑÑии 2.13-38+deb7u10.</p> - -<p>We recommend that you upgrade your eglibc packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ eglibc.</p> </define-tag> # do not modify the following line - --- english/security/2016/dsa-3481.wml 2016-02-16 19:49:12.000000000 +0500 +++ russian/security/2016/dsa-3481.wml 2016-02-16 22:25:49.658313068 +0500 @@ -1,56 +1,57 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities have been fixed in the GNU C Library, glibc. </p> +<p>РбиблиоÑеке GNU C, glibc, бÑло обнаÑÑжено неÑколÑко ÑÑзвимоÑÑей.</p> - -<p>The first vulnerability listed below is considered to have critical - -impact.</p> +<p>ÐеÑÐ²Ð°Ñ ÑÑзвимоÑÑÑ, ÑÐºÐ°Ð·Ð°Ð½Ð½Ð°Ñ Ð½Ð¸Ð¶Ðµ, ÑÑиÑаеÑÑÑ +кÑиÑиÑеÑкой.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-7547";>CVE-2015-7547</a> - - <p>The Google Security Team and Red Hat discovered that the glibc - - host name resolver function, getaddrinfo, when processing - - AF_UNSPEC queries (for dual A/AAAA lookups), could mismanage its - - internal buffers, leading to a stack-based buffer overflow and - - arbitrary code execution. This vulnerability affects most - - applications which perform host name resolution using getaddrinfo, - - including system services.</p></li> + <p>Ð§Ð»ÐµÐ½Ñ ÐÐ¾Ð¼Ð°Ð½Ð´Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи Google и ÑоÑÑÑдники Red Hat обнаÑÑжили, ÑÑо ÑÑнкÑÐ¸Ñ + ÑазÑеÑÐµÐ½Ð¸Ñ Ð¸Ð¼Ñн Ñзлов eglibc, getaddrinfo, пÑи обÑабоÑке + запÑоÑов AF_UNSPEC (Ð´Ð»Ñ Ð´Ð²Ð¾Ð¹Ð½Ð¾Ð³Ð¾ поиÑка A/AAAA) Ð¼Ð¾Ð¶ÐµÑ Ð½ÐµÐ¿ÑавилÑно иÑполÑзоваÑÑ + Ñвои внÑÑÑенние бÑÑеÑÑ, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº пеÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð±ÑÑеÑа и + вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑоизволÑного кода. ÐÐ°Ð½Ð½Ð°Ñ ÑÑзвимоÑÑÑ ÐºÐ°ÑаеÑÑÑ Ð±Ð¾Ð»ÑÑинÑÑва + пÑиложений, вÑполнÑÑÑÐ¸Ñ ÑазÑеÑение имÑн Ñзлов Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ getaddrinfo, + вклÑÑÐ°Ñ ÑиÑÑемнÑе ÑлÑжбÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8776";>CVE-2015-8776</a> - - <p>Adam Nielsen discovered that if an invalid separated time value - - is passed to strftime, the strftime function could crash or leak - - information. Applications normally pass only valid time - - information to strftime; no affected applications are known.</p></li> + <p>Ðдам ÐилÑÑен обнаÑÑжил, ÑÑо еÑли непÑавилÑно ÑазделÑнное знаÑение, обознаÑаÑÑее вÑемÑ, + пеÑедаÑÑÑÑ strftime, Ñо ÑÑнкÑÐ¸Ñ strftime Ð¼Ð¾Ð¶ÐµÑ Ð°Ð²Ð°Ñийно завеÑÑиÑÑ ÑабоÑÑ, либо Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑоизойÑи + ÑÑеÑка инÑоÑмаÑии. ÐÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ Ð¾Ð±ÑÑно пеÑедаÑÑ ÑолÑко коÑÑекÑнÑÑ Ð¸Ð½ÑоÑмаÑÐ¸Ñ + о вÑемени ÑÑнкÑии strftime; подвеÑженнÑе данной пÑоблеме пÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ Ð½Ðµ извеÑÑнÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8778";>CVE-2015-8778</a> - - <p>Szabolcs Nagy reported that the rarely-used hcreate and hcreate_r - - functions did not check the size argument properly, leading to a - - crash (denial of service) for certain arguments. No impacted - - applications are known at this time.</p></li> + <p>СаболÑÑ Ðаги ÑообÑил, ÑÑо Ñедко иÑполÑзÑемÑе ÑÑнкÑии hcreate и hcreate_r + непÑавилÑно вÑполнÑÑÑ Ð¿ÑовеÑÐºÑ ÑазмеÑа аÑгÑменÑа, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº + аваÑийной оÑÑановке (оÑказ в обÑлÑживании) в ÑлÑÑае иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð¾Ð¿ÑеделÑннÑÑ Ð°ÑгÑменÑов. Ðока + ниÑего не извеÑÑно о пÑиложениÑÑ , подвеÑженнÑÑ Ð´Ð°Ð½Ð½Ð¾Ð¹ пÑоблеме.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2015-8779";>CVE-2015-8779</a> - - <p>The catopen function contains several unbound stack allocations - - (stack overflows), causing it the crash the process (denial of - - service). No applications where this issue has a security impact - - are currently known.</p> - - - -<p>While it is only necessary to ensure that all processes are not using - -the old glibc anymore, it is recommended to reboot the machines after - -applying the security upgrade.</p></li> + <p>ФÑнкÑÐ¸Ñ catopen ÑодеÑÐ¶Ð¸Ñ Ð½ÐµÑколÑко неогÑаниÑеннÑÑ Ð²Ñделений ÑÑÑка + (пеÑеполнение ÑÑÑка), ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº аваÑийной оÑÑановке пÑоÑеÑÑа (оÑказ в + обÑлÑживании). Ðока ниÑего не извеÑÑно о пÑиложениÑÑ , подвеÑженнÑÑ + данной пÑоблеме.</p> + +<p>ХоÑÑ ÑÑебÑеÑÑÑ Ð»Ð¸ÑÑ ÑбедиÑÑÑÑ, ÑÑо ни один пÑоÑеÑÑ Ð±Ð¾Ð»ÐµÐµ не иÑполÑзÑÐµÑ +ÑÑаÑÑÑ Ð±Ð¸Ð±Ð»Ð¸Ð¾ÑÐµÐºÑ glibc, ÑекомендÑеÑÑÑ Ð¿ÐµÑезагÑÑзиÑÑ Ð¼Ð°ÑÐ¸Ð½Ñ Ð¿Ð¾Ñле +пÑÐ¸Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ Ð´Ð°Ð½Ð½Ð¾Ð³Ð¾ обновление безопаÑноÑÑи.</p></li> </ul> - -<p>For the stable distribution (jessie), these problems have been fixed in - -version 2.19-18+deb8u3.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (jessie) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 2.19-18+deb8u3.</p> - -<p>For the unstable distribution (sid), these problems will be fixed in - -version 2.21-8.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±ÑдÑÑ Ð¸ÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 2.21-8.</p> - -<p>We recommend that you upgrade your glibc packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ glibc.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJWw1vsAAoJEF7nbuICFtKlaf8P/1cProOOpctRW2mw0z7ucdPQ cjQL1IvqNArmo3JHGGKxcf65eHl44GNByBxbn5xYPPHh1BxEK+Darj4fTUNHoNx1 jz7Cs7BaEi0YNP13P5km5Fht/oOi05v+Y3L5veDVObVpVtSDU4w/O5ou2928zkC1 h8NluQ0SuN35t/BybpLdqPYhftLsJT9lX69g7RyO3ZhzEJdygOKcvxHJ/I17A77Y GQ9HV8ng2pmGcVbA4HTs6oFP4tv67Mg/UVyJfTwukyqgNGT/VJ4UmFBSXr2MDyFi 9Bw3O0cWnkEKGtBKnGHZPPeZjcP3NF/7U++VYVbGSFbWbyTURaueAVF6abCnIgk7 YcSHSKg7Cev/rnQmnuYuJ6C5tHQOXFCA5/1dOlygXcsdNdRuHROkta9jetf8teIg Kk5XBGZgo7R5lwi2ofriYe2/DDOXdWp3snA7LZ3r0Qnmrv90obbXVFZ/8kFbxWH5 hSGYJFdp70EPt32CxVhy0TNADA8PTk3fVxcmUSevJL0YYee5QEawGvNKIjMTZZPp 2HVQY1Ykl1uXKKXxnTdzDUBGnjjT/dcdl36dzKA0i1e2U5shSXMEPEKmuToFpibE b5RrkG/IuvoOLwEHESbyZ5HqI3NX32nlH4+Cu5YWLu04t9c5FVdL2QWDFwPqvEUx j+ABJDdGNADuIBCeL3vF =xMm9 -----END PGP SIGNATURE-----
