-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2010/dsa-2012.wml 2014-04-30 13:16:22.000000000 +0600 +++ russian/security/2010/dsa-2012.wml 2016-09-23 23:44:37.256223737 +0500 @@ -1,37 +1,38 @@ - -<define-tag description>privilege escalation/denial of service</define-tag> +#use wml::debian::translation-check translation="1.4" maintainer="Lev Lamberov" +<define-tag description>повÑÑение пÑивилегий/оÑказ в обÑлÑживании</define-tag> <define-tag moreinfo> - -<p>Two vulnerabilities have been discovered in the Linux kernel that - -may lead to a denial of service or privilege escalation. The Common - -Vulnerabilities and Exposures project identifies the following problems:</p> +<p>Ð ÑдÑе Linux бÑли обнаÑÑÐ¶ÐµÐ½Ñ Ð´Ð²Ðµ ÑÑзвимоÑÑи, коÑоÑÑе +могÑÑ Ð¿ÑиводиÑÑ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании или повÑÑÐµÐ½Ð¸Ñ Ð¿Ñивилегий. ÐÑÐ¾ÐµÐºÑ Common +Vulnerabilities and Exposures опÑеделÑÐµÑ ÑледÑÑÑие пÑоблемÑ:</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2009-3725">CVE-2009-3725</a> - - <p>Philipp Reisner reported an issue in the connector subsystem - - which allows unprivileged users to send netlink packets. This - - allows local users to manipulate settings for uvesafb devices - - which are normally reserved for privileged users.</p></li> + <p>Филипп Ð Ð°Ð¹Ð·Ð½ÐµÑ ÑообÑил о пÑоблеме в подÑиÑÑеме connector, + коÑоÑÐ°Ñ Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ Ð½ÐµÐ¿ÑивилегиÑÐ¾Ð²Ð°Ð½Ð½Ð¾Ð¼Ñ Ð¿Ð¾Ð»ÑзоваÑÐµÐ»Ñ Ð¾ÑпÑавлÑÑÑ netlink-пакеÑÑ. ÐÑо + позволÑÐµÑ Ð»Ð¾ÐºÐ°Ð»ÑнÑм полÑзоваÑелÑм изменÑÑÑ Ð½Ð°ÑÑÑойки ÑÑÑÑойÑÑв uvesafb, + ÑÑо обÑÑно возможно ÑолÑко Ð´Ð»Ñ Ð¿ÑивилегиÑованнÑÑ Ð¿Ð¾Ð»ÑзоваÑелей.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2010-0622">CVE-2010-0622</a> - - <p>Jerome Marchand reported an issue in the futex subsystem that - - allows a local user to force an invalid futex state which results - - in a denial of service (oops).</p></li> + <p>ÐеÑом ÐаÑÑан ÑообÑил о пÑоблеме в подÑиÑÑеме futex, коÑоÑÐ°Ñ + позволÑÐµÑ Ð»Ð¾ÐºÐ°Ð»ÑÐ½Ð¾Ð¼Ñ Ð¿Ð¾Ð»ÑзоваÑÐµÐ»Ñ Ð²ÑзÑваÑÑ Ð½ÐµÐºÐ¾ÑÑекÑное ÑоÑÑоÑние futex, ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ + к оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании (oops).</p></li> </ul> - -<p>This update also includes fixes for regressions introduced by previous - -updates. See the referenced Debian bug pages for details.</p> +<p>ÐÑоме Ñого, данное обновление иÑпÑавлÑÐµÑ ÑегÑеÑÑии, поÑвивÑиеÑÑ Ð² пÑедÑдÑÑÐ¸Ñ +обновлениÑÑ . ÐодÑобноÑÑи ÑмоÑÑиÑе на ÑказаннÑÑ ÑÑаниÑÐ°Ñ Ð¸Ð· ÑиÑÑÐµÐ¼Ñ Ð¾ÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð¾Ñибок Debian.</p> - -<p>For the stable distribution (lenny), this problem has been fixed in - -version 2.6.26-21lenny4.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (lenny) ÑÑа пÑоблема бÑла иÑпÑавлена в +веÑÑии 2.6.26-21lenny4.</p> - -<p>We recommend that you upgrade your linux-2.6 and user-mode-linux - -packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ linux-2.6 и +user-mode-linux.</p> - -<p>The following matrix lists additional source packages that were - -rebuilt for compatibility with or to take advantage of this update:</p> +<p>Ð ÑледÑÑÑей ÑаблиÑе пÑÐ¸Ð²ÐµÐ´ÐµÐ½Ñ Ð´Ð¾Ð¿Ð¾Ð»Ð½Ð¸ÑелÑнÑе пакеÑÑ Ñ Ð¸ÑÑ Ð¾Ð´Ð½Ñм кодом, коÑоÑÑе +бÑли заново ÑобÑÐ°Ð½Ñ Ñ ÑелÑÑ Ð¾Ð±ÐµÑпеÑÐµÐ½Ð¸Ñ ÑовмеÑÑимоÑÑи Ñ Ð´Ð°Ð½Ð½Ñм обновлением:</p> <div class="centerdiv"><table cellspacing="0" cellpadding="2"> <tr><th> </th> <th>Debian 5.0 (lenny)</th></tr> - --- english/security/2010/dsa-2067.wml 2014-04-30 13:16:22.000000000 +0600 +++ russian/security/2010/dsa-2067.wml 2016-09-23 23:38:21.952266724 +0500 @@ -1,45 +1,46 @@ - -<define-tag description>several vulnerabilities</define-tag> +#use wml::debian::translation-check translation="1.3" maintainer="Lev Lamberov" +<define-tag description>неÑколÑко ÑÑзвимоÑÑей</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities were discovered in mahara, an electronic portfolio, - -weblog, and resume builder. The following Common Vulnerabilities and - -Exposures project ids identify them:</p> +<p>Ð mahara, ÑлекÑÑонном поÑÑÑолио, веб-блоге и пÑогÑамме Ð´Ð»Ñ Ð¿Ð¾ÑÑÑÐ¾ÐµÐ½Ð¸Ñ ÑезÑме, +бÑло обнаÑÑжено неÑколÑко ÑÑзвимоÑÑей. ÐÑи ÑÑзвимоÑÑи опÑÐµÐ´ÐµÐ»ÐµÐ½Ñ ÑледÑÑÑими +иденÑиÑикаÑоÑами пÑоекÑа Common Vulnerabilities and Exposures:</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2010-1667">CVE-2010-1667</a> - - <p>Multiple pages performed insufficient input sanitising, making them - - vulnerable to cross-site scripting attacks.</p></li> + <p>Ðа Ð¼Ð½Ð¾Ð³Ð¸Ñ ÑÑÑаниÑÐ°Ñ Ð²ÑполнÑеÑÑÑ Ð½ÐµÐ´Ð¾ÑÑаÑоÑÐ½Ð°Ñ Ð¾ÑиÑÑка Ð²Ñ Ð¾Ð´Ð½ÑÑ Ð´Ð°Ð½Ð½ÑÑ , ÑÑо Ð´ÐµÐ»Ð°ÐµÑ Ð¸Ñ + ÑÑзвимÑми к межÑайÑÐ¾Ð²Ð¾Ð¼Ñ ÑкÑипÑингÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2010-1668">CVE-2010-1668</a> - - <p>Multiple forms lacked protection against cross-site request forgery - - attacks, therefore making them vulnerable.</p></li> + <p>У Ð¼Ð½Ð¾Ð³Ð¸Ñ ÑоÑм оÑÑÑÑÑÑвÑÐµÑ Ð·Ð°ÑиÑе Ð¾Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ межÑайÑовÑÑ Ð·Ð°Ð¿ÑоÑов, + ÑÑо Ð´ÐµÐ»Ð°ÐµÑ Ð¸Ñ ÑÑзвимÑми.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2010-1670">CVE-2010-1670</a> - - <p>Gregor Anzelj discovered that it was possible to accidentally - - configure an installation of mahara that allows access to another - - user's account without a password.</p></li> + <p>ÐÑÐµÐ³Ð¾Ñ ÐÐ½Ð·ÐµÐ»Ñ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо можно ÑлÑÑайно наÑÑÑоиÑÑ mahara Ñак, ÑÑо + можно бÑÐ´ÐµÑ Ð¿Ð¾Ð»ÑÑиÑÑ Ð´Ð¾ÑÑÑп к ÑÑÑÑной запиÑи дÑÑгого полÑзоваÑÐµÐ»Ñ + без ввода паÑолÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2010-2479">CVE-2010-2479</a> - - <p>Certain Internet Explorer-specific cross-site scripting - - vulnerabilities were discovered in HTML Purifier, of which a copy - - is included in the mahara package.</p></li> + <p>Ð HTML Purifier, ÐºÐ¾Ð¿Ð¸Ñ ÐºÐ¾ÑоÑого ÑодеÑжиÑÑÑ Ð² пакеÑе mahara, бÑли + обнаÑÑÐ¶ÐµÐ½Ñ Ð¾Ð¿ÑеделÑннÑе ÑÑзвимоÑÑи, пÑиводÑÑие к межÑайÑÐ¾Ð²Ð¾Ð¼Ñ + ÑкÑипÑÐ¸Ð½Ð³Ñ Ð² Internet Explorer.</p></li> </ul> - -<p>For the stable distribution (lenny), the problems have been fixed in - -version 1.0.4-4+lenny6.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (lenny) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.0.4-4+lenny6.</p> - -<p>For the testing distribution (squeeze), the problems will be fixed soon.</p> +<p>Ð ÑеÑÑиÑÑемом вÑпÑÑке (squeeze) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±ÑдÑÑ Ð¸ÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð¿Ð¾Ð·Ð¶Ðµ.</p> - -<p>For the unstable distribution (sid), the problems have been fixed in - -version 1.2.5.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.2.5.</p> - -<p>We recommend that you upgrade your mahara packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ mahara.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJX5XgYAAoJEF7nbuICFtKlPSgP/RzhEmt8gQQLyiXQVekO7vEB Ln7u750JGLBuTZjJVzDSJ4Bn2ymUNV2WGjU16Flzov5Eeabe1neY92E5pNiMdX83 H0I3lgKODw8kw3aXsiqV4R41s5E614COv4xm1rQLdyNELCcpESt6fcr904qBNzjR y8ILcSIPQVCCuQQzlw+INFiFZqcy23K4BifrWPQaQhobdQBoG1ik7i5BmiB/skEA tPiLNzd3XpUxm+KMyY1/JmxvJirOs3CbU6nOoB8sF2A34TaTAl9FXfOJl5HqZv8h trDUWOafwWT11FoYuVPVRABqoT93p6+ukOdSlg1jIeASUABCK8o6rRJg6k/pvLx+ MFBt1RjSFmM4DFXhswPWuC9+4CslWmNLFj4Q3t0dPVqI7ZY3AmE5BX/77xjr5Ygl j2Kz5Fhx9/gkuQjgSJT3rcCQUBI0tkVB0UbPjB5tM68PT6o+EYjSJAJWMdNlDE9j YtIABMupBvubGVhuG0+wF1hh0GQoAzYtBA97Y1Ubb1QLE8NLDPPEteu9owP5myo2 8ZVOuIGEP8gFM94MqkxJGSy1pKIWIWkLMHxIfKUHpkOV8fOeiErF8PhVzwkC4x8G kvlJq0zeBAbhL/ovCMgwTB1ijxCJGSgpAvfsOSMRMmRZJucLW0ZKzQncnTM/jTbQ S5/k28SEEo9TU1HDFBNr =7+t2 -----END PGP SIGNATURE-----

