-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2012/dsa-2406.wml 2014-04-30 13:16:28.000000000 +0600 +++ russian/security/2012/dsa-2406.wml 2016-09-21 17:39:12.402304341 +0500 @@ -1,42 +1,43 @@ - -<define-tag description>several vulnerabilities</define-tag> +#use wml::debian::translation-check translation="1.3" maintainer="Lev Lamberov" +<define-tag description>неÑколÑко ÑÑзвимоÑÑей</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities have been discovered in Icedove, Debian's - -variant of the Mozilla Thunderbird code base.</p> +<p>Ð Icedove, ваÑианÑе кодовой Ð±Ð°Ð·Ñ Mozilla Thunderbird Ð´Ð»Ñ Debian, бÑло +обнаÑÑжено неÑколÑко ÑÑзвимоÑÑей.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2011-3670">CVE-2011-3670</a> - - <p>Icedove does not not properly enforce the IPv6 literal address - - syntax, which allows remote attackers to obtain sensitive - - information by making XMLHttpRequest calls through a proxy and - - reading the error messages.</p></li> + <p>Icedove непÑавилÑно пÑовеÑÑÐµÑ ÑинÑакÑÐ¸Ñ Ð»Ð¸ÑеÑалÑного адÑеÑа IPv6, + ÑÑо позволÑÐµÑ ÑдалÑннÑм злоÑмÑÑленникам полÑÑаÑÑ ÑÑвÑÑвиÑелÑнÑÑ + инÑоÑмаÑиÑ, вÑполнÑÑ Ð²ÑÐ·Ð¾Ð²Ñ XMLHttpRequest ÑеÑез пÑокÑи и + ÑÑиÑÑÐ²Ð°Ñ ÑообÑÐµÐ½Ð¸Ñ Ð¾Ð± оÑÐ¸Ð±ÐºÐ°Ñ .</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-0442">CVE-2012-0442</a> - - <p>Memory corruption bugs could cause Icedove to crash or - - possibly execute arbitrary code.</p></li> + <p>ÐÑибки Ñ Ð¿Ð¾Ð²Ñеждением ÑодеÑжимого памÑÑи пÑиводÑÑ Ðº аваÑийнÑм оÑÑановкам Icedove + или Ð²Ð¾Ð·Ð¼Ð¾Ð¶Ð½Ð¾Ð¼Ñ Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑоизволÑного кода.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-0444">CVE-2012-0444</a> - - <p>Icedove does not properly initialize nsChildView data - - structures, which allows remote attackers to cause a denial of - - service (memory corruption and application crash) or possibly - - execute arbitrary code via a crafted Ogg Vorbis file.</p></li> + <p>Icedove непÑавилÑно иниÑиализиÑÑÐµÑ ÑÑÑÑкÑÑÑÑ Ð´Ð°Ð½Ð½ÑÑ nsChildView, + ÑÑо позволÑÐµÑ ÑдалÑннÑм злоÑмÑÑленникам вÑзÑваÑÑ Ð¾Ñказ в + обÑлÑживании (повÑеждение ÑодеÑжимого памÑÑи и аваÑÐ¸Ð¹Ð½Ð°Ñ Ð¾ÑÑановка пÑиложениÑ) или поÑенÑиалÑно + вÑполнÑÑÑ Ð¿ÑоизволÑнÑй код Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ ÑпеÑиалÑно ÑÑоÑмиÑованного Ñайла в ÑоÑмаÑе Ogg Vorbis.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-0449">CVE-2012-0449</a> - - <p>Icedove allows remote attackers to cause a denial of service - - (memory corruption and application crash) or possibly execute - - arbitrary code via a malformed XSLT stylesheet that is - - embedded in a document.</p></li> + <p>Icedove позволÑÐµÑ ÑдалÑннÑм злоÑмÑÑленникам вÑзÑваÑÑ Ð¾Ñказ в обÑлÑживании + (повÑеждение ÑодеÑжимого памÑÑи и аваÑÐ¸Ð¹Ð½Ð°Ñ Ð¾ÑÑановка пÑиложениÑ) или поÑенÑиалÑно вÑполнÑÑÑ + пÑоизволÑнÑй код Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ Ð½ÐµÐºÐ¾ÑÑекÑного ÑÑилевого Ñайла XSLT, вÑÑÑоенного в + докÑменÑ.</p></li> </ul> - -<p>For the stable distribution (squeeze), this problem has been fixed in - -version 3.0.11-1+squeeze7.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (squeeze) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 3.0.11-1+squeeze7.</p> - -<p>We recommend that you upgrade your icedove packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ icedove.</p> </define-tag> # do not modify the following line - --- english/security/2012/dsa-2563.wml 2014-04-30 13:16:29.000000000 +0600 +++ russian/security/2012/dsa-2563.wml 2016-09-21 17:45:04.489295433 +0500 @@ -1,45 +1,46 @@ - -<define-tag description>several vulnerabilities</define-tag> +#use wml::debian::translation-check translation="1.4" maintainer="Lev Lamberov" +<define-tag description>неÑколÑко ÑÑзвимоÑÑей</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities were found in ViewVC, a web interface for CVS - -and Subversion repositories.</p> +<p>Ð ViewVC, веб-инÑеÑÑейÑе Ð´Ð»Ñ ÑепозиÑоÑиев CVS и Subversion, бÑло обнаÑÑжено +неÑколÑко ÑÑзвимоÑÑей.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2009-5024">CVE-2009-5024</a> <p> - -Remote attackers can bypass the cvsdb row_limit - -configuration setting, and consequently conduct resource-consumption - -attacks via the limit parameter.</p></li> +УдалÑннÑе злоÑмÑÑленники могÑÑ Ð¾Ð±Ñ Ð¾Ð´Ð¸ÑÑ Ð¿Ð°ÑамеÑÑ Ð½Ð°ÑÑÑойки cvsdb row_limit +и, ÑледоваÑелÑно, вÑполнÑÑÑ Ð°Ñаки по ÑÑезмеÑÐ½Ð¾Ð¼Ñ Ð¿Ð¾ÑÑÐµÐ±Ð»ÐµÐ½Ð¸Ñ ÑеÑÑÑÑов +Ñ Ð¿Ð¾Ð¼Ð¾ÑÑÑ Ð¿Ð°ÑамеÑÑа limit.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-3356">CVE-2012-3356</a> <p> - -The remote Subversion views functionality does not properly - -perform authorization, which allows remote attackers to bypass intended - -access restrictions.</p></li> +ФÑнкÑионалÑноÑÑÑ ÑдалÑнного пÑоÑмоÑÑа Subversion непÑавилÑно вÑполнÑÐµÑ +авÑоÑизаÑиÑ, ÑÑо позволÑÐµÑ ÑдалÑннÑм злоÑмÑÑленникам Ð¾Ð±Ñ Ð¾Ð´Ð¸ÑÑ +огÑаниÑÐµÐ½Ð¸Ñ Ð´Ð¾ÑÑÑпа.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-3357">CVE-2012-3357</a> <p> - -The Subversion revision view does not properly handle log - -messages when a readable path is copied from an unreadable path, which - -allows remote attackers to obtain sensitive information.</p></li> +ÐÑоÑмоÑÑ ÑедакÑий Subversion непÑавилÑно обÑабаÑÑÐ²Ð°ÐµÑ ÑообÑÐµÐ½Ð¸Ñ +жÑÑнала в ÑлÑÑае, еÑли пÑÑÑ, оÑкÑÑÑÑй Ð´Ð»Ñ ÑÑениÑ, копиÑÑеÑÑÑ Ð¸Ð· пÑÑи, закÑÑÑого Ð´Ð»Ñ ÑÑениÑ, ÑÑо +позволÑÐµÑ ÑдалÑннÑм злоÑмÑÑленникам полÑÑаÑÑ ÑÑвÑÑвиÑелÑнÑÑ Ð¸Ð½ÑоÑмаÑиÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2012-4533">CVE-2012-4533</a> <p> - -<q>function name</q> lines returned by diff are not properly - -escaped, allowing attackers with commit access to perform cross site - -scripting.</p></li> +СÑÑоки <q>function name</q>, возвÑаÑаемÑе diff, ÑкÑаниÑÑÑÑÑÑ +непÑавилÑно, ÑÑо позволÑÐµÑ Ð·Ð»Ð¾ÑмÑÑленникам Ñ Ð¿Ñавом коммиÑа вÑполнÑÑÑ Ð°Ñаки +по пÑинÑÐ¸Ð¿Ñ Ð¼ÐµÐ¶ÑайÑового ÑкÑипÑинга.</p></li> </ul> - -<p>For the stable distribution (squeeze), these problems have been fixed in - -version 1.1.5-1.1+squeeze2.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (squeeze) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.1.5-1.1+squeeze2.</p> - -<p>For the testing distribution (wheezy), these problems will be fixed soon.</p> +<p>Ð ÑеÑÑиÑÑемом вÑпÑÑке (wheezy) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±ÑдÑÑ Ð¸ÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð¿Ð¾Ð·Ð¶Ðµ.</p> - -<p>For the unstable distribution (sid), these problems have been fixed in - -version 1.1.5-1.4.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.1.5-1.4.</p> - -<p>We recommend that you upgrade your viewvc packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ viewvc.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJX4oDUAAoJEF7nbuICFtKlgP0P/3eT9i4FiH3uUFvd4AmYfjjd 6e2yP9eOGWehKn6j9GU3L+WQTVDqFcLWHogm5qSnPZeeXK6rINsIz3kOoDRGrnUj rBlsWQVkAKD8xyN2lMHEY/pGw2D1Ox8vqMPD9dkotOeepGYuHoPpb4QsxkIl1cKz fJv3UlqhLlHQsUqnVZeOCoflK9YPnh5TUNwsqKgUtXGzNZ5zigZy1iRHbnRQKhr2 YONgGKJ9+meUk1FE7WHnk5/hyMgDUD9fdg+v7I24AaP/x5zerkDbBLDaTE348o9U TLtfc9RMrKPjy8SD6otkrkS591Hb6fN+bhvN615IFcBxIxhKCxhmMtrjutUQaX22 9IcJ3HWjcx+/yJrQJ0igi7rPmlGK2hVE/o03iuJoQBPbIePrgiFDIf2uNw2mSSyn JGb5dcpfQ06GCqP3OKbwTpBYQqBgrhmJYQr6ZonCsfQo7p8mR+pVYgEFm092TBBS a+zwznXHjfxeDf5mkwo+Q3lWfe4HGifXb3o5jT+C1pHpLrioIDBpcGf4AJi17OUO PtvGMLbfadc862/R/rk/xjxZRKKoosTb3ecrgoxF7c91EVdAExr0CWwKgWPNHrX9 bAV3INu3Shi5b70lPAWnLhqVDPMNhLyGF6pjNapDWeh6LdbtIrFq8K4UKVaR7QLh HIkxIq6ll7s2/Gw6+Iff =4ZNU -----END PGP SIGNATURE-----

