-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2016/dsa-3487.wml 2016-02-23 21:04:59.000000000 +0500 +++ russian/security/2016/dsa-3487.wml 2016-02-24 12:47:25.187067503 +0500 @@ -1,19 +1,20 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Andreas Schneider reported that libssh2, a SSH2 client-side library, - -passes the number of bytes to a function that expects number of bits - -during the SSHv2 handshake when libssh2 is to get a suitable value for - -<q>group order</q> in the Diffie-Hellman negotiation. This weakens - -significantly the handshake security, potentially allowing an - -eavesdropper with enough resources to decrypt or intercept SSH sessions.</p> +<p>ÐндÑÐµÐ°Ñ Ð¨Ð½Ð°Ð¹Ð´ÐµÑ ÑообÑил, ÑÑо libssh2, клиенÑÑÐºÐ°Ñ Ð±Ð¸Ð±Ð»Ð¸Ð¾Ñека SSH2, +пеÑедаÑÑ ÑÑд Ð±Ð°Ð¹Ñ ÑÑнкÑии, ожидаÑÑей ÑÑд биÑ, +во вÑÐµÐ¼Ñ ÑÑкопожаÑÐ¸Ñ SSHv2 в ÑлÑÑае, когда libssh2 должна полÑÑиÑÑ Ð¿Ð¾Ð´Ñ Ð¾Ð´ÑÑее знаÑение +Ð´Ð»Ñ <q>поÑÑдка гÑÑппÑ</q> пÑи взаимодейÑÑвии по алгоÑиÑÐ¼Ñ ÐиÑÑи-Хеллмана. ÐÑо ÑÑÑеÑÑвенно +оÑлаблÑÐµÑ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑÑ ÑÑкопожаÑиÑ, поÑенÑиалÑно позволÑÑ +подÑлÑÑиваÑÑÐµÐ¼Ñ Ð·Ð»Ð¾ÑмÑÑленникÑ, имеÑÑÐµÐ¼Ñ Ð´Ð¾ÑÑаÑоÑнÑе ÑеÑÑÑÑÑ, ÑаÑÑиÑÑоваÑÑ Ð¸Ð»Ð¸ пеÑÐµÑ Ð²Ð°ÑÐ¸Ñ ÑеÑÑии SSH.</p> - -<p>For the oldstable distribution (wheezy), this problem has been fixed - -in version 1.4.2-1.1+deb7u2.</p> +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (wheezy) ÑÑа пÑоблема бÑла иÑпÑавлена +в веÑÑии 1.4.2-1.1+deb7u2.</p> - -<p>For the stable distribution (jessie), this problem has been fixed in - -version 1.4.3-4.1+deb8u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (jessie) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 1.4.3-4.1+deb8u1.</p> - -<p>We recommend that you upgrade your libssh2 packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ libssh2.</p> </define-tag> # do not modify the following line - --- english/security/2016/dsa-3488.wml 2016-02-23 21:39:36.000000000 +0500 +++ russian/security/2016/dsa-3488.wml 2016-02-24 12:52:27.681266209 +0500 @@ -1,22 +1,23 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Aris Adamantiadis discovered that libssh, a tiny C SSH library, - -incorrectly generated a short ephemeral secret for the - -diffie-hellman-group1 and diffie-hellman-group14 key exchange methods. - -The resulting secret is 128 bits long, instead of the recommended sizes - -of 1024 and 2048 bits respectively. This flaw could allow an - -eavesdropper with enough resources to decrypt or intercept SSH sessions.</p> +<p>ÐÑÐ¸Ñ ÐдаманÑÐ¸Ð°Ð´Ð¸Ñ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо libssh, неболÑÑÐ°Ñ Ð±Ð¸Ð±Ð»Ð¸Ð¾Ñека SSH Ð´Ð»Ñ C, +некоÑÑекÑно ÑоздаÑÑ ÐºÐ¾ÑоÑкий кÑаÑковÑеменнÑй ÑекÑÐµÑ Ð´Ð»Ñ +меÑодов обмена клÑÑами по алгоÑиÑмам diffie-hellman-group1 и diffie-hellman-group14. +ÐолÑÑаÑÑийÑÑ ÑекÑÐµÑ Ð¸Ð¼ÐµÐµÑ Ð´Ð»Ð¸Ð½Ñ 128 Ð±Ð¸Ñ Ð²Ð¼ÐµÑÑо ÑекомендÑемого ÑазмеÑа +в 1024 и 2048 Ð±Ð¸Ñ ÑооÑвеÑÑÑвенно. ÐÐ°Ð½Ð½Ð°Ñ ÑÑзвимоÑÑÑ Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð·Ð²Ð¾Ð»Ð¸ÑÑ +подÑлÑÑиваÑÑÐµÐ¼Ñ Ð·Ð»Ð¾ÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ ÑаÑÑиÑÑоваÑÑ Ð¸Ð»Ð¸ пеÑÐµÑ Ð²Ð°ÑиÑÑ ÑеÑÑии SSH.</p> - -<p>For the oldstable distribution (wheezy), this problem has been fixed in - -version 0.5.4-1+deb7u3. This update also includes fixes for +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (wheezy) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 0.5.4-1+deb7u3. ÐÑоме Ñого, данное обновление вклÑÑÐ°ÐµÑ Ð² ÑÐµÐ±Ñ Ð¸ÑпÑÐ°Ð²Ð»ÐµÐ½Ð¸Ñ <a href="https://security-tracker.debian.org/tracker/CVE-2014-8132";>CVE-2014-8132</a> - -and <a href="https://security-tracker.debian.org/tracker/CVE-2015-3146";>CVE-2015-3146</a>, - -which were previously scheduled for the next wheezy point release.</p> +и <a href="https://security-tracker.debian.org/tracker/CVE-2015-3146";>CVE-2015-3146</a>, +коÑоÑÑе планиÑовалоÑÑ Ð²ÐºÐ»ÑÑиÑÑ Ð² ÑледÑÑÑÑÑ ÑедакÑÐ¸Ñ wheezy.</p> - -<p>For the stable distribution (jessie), this problem has been fixed in - -version 0.6.3-4+deb8u2.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (jessie) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 0.6.3-4+deb8u2.</p> - -<p>We recommend that you upgrade your libssh packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ libssh.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJWzWFuAAoJEF7nbuICFtKlc/IP/3gJa99EJPW1MfVeUVmFxjz0 SIcZuGbQ3xJakivMbnj13NwRKxLy7cI7Tmggln1e1Y7opDNoq6mtr9o6d9D9YME8 6ZmyDDTmBjl9XpmSsr9X1wAZ6LEJfaFqmYsSuVMCVbmH4iY8ejQwUH7gm0uzDf/8 F6/tM2TIwmMb7N5ZPp4bn0vZwQZNU4EqUKsYJUzGzwoFpSIj/nSM3227Twn2532w T5/d67qfskyQHuhAiIcTUlBv0uTKZPyzn13iCxYbTK+aSzHrfYOQpXrMez9Z5yv6 /cdoUghsnx1pyxWWg0GMxe9Gsgur3VumUe+azFKYxV62fA8yThWK51GdwFwPXYS/ pyJciDXmcKVTyhNLJ99uAdTYREHUWs56AqmGbb5v6J2bIF6YMG1Vf2rrtHOpzbLQ 65qIosYKb0rn0EOnsbzPIw0OES+cZv8jydeLSnOzBNK1EyQw/LO5fgNqnLBIPXj9 8GR9yjvq0/3QSwVBjM3Idjkn6/d8K/QC+A/gQXXseigpjAhtJh00+TWh237pBmO1 cgco/Zn4d4KvlNB9JyvLq+scPyBJKoEOe6+5tHGmb2qH4gzU71QgeOt4iKKnTgCg PcNk42zhDbL8URaugDSEJgTb/ioTh1xQQiK5ziWc0W/XUVpSYSxEYklZaDPNHBe7 yvpHfwJYDXkNLyzBsTZo =yseU -----END PGP SIGNATURE-----
