-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2006/dsa-1111.wml 2006-07-31 14:18:14.000000000 +0600 +++ russian/security/2006/dsa-1111.wml 2016-10-02 23:43:50.745726333 +0500 @@ -1,33 +1,34 @@ - -<define-tag description>race condition</define-tag> +#use wml::debian::translation-check translation="1.6" maintainer="Lev Lamberov" +<define-tag description>ÑоÑÑоÑние гонки</define-tag> <define-tag moreinfo> - -<p>It was discovered that a race condition in the process filesystem can lead - -to privilege escalation.</p> +<p>ÐÑло обнаÑÑжено, ÑÑо ÑоÑÑоÑние гонки в Ñайловой ÑиÑÑеме procfs Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ +к повÑÑÐµÐ½Ð¸Ñ Ð¿Ñивилегий.</p> - -<p>The following matrix explains which kernel version for which architecture - -fixes the problem mentioned above:</p> +<p>СледÑÑÑÐ°Ñ ÑаблиÑа показÑваеÑ, в какой веÑÑии ÑдÑа и Ð´Ð»Ñ ÐºÐ°ÐºÐ¾Ð¹ аÑÑ Ð¸ÑекÑÑÑÑ +бÑла иÑпÑавлена ÑÐºÐ°Ð·Ð°Ð½Ð½Ð°Ñ Ð²ÑÑе пÑоблема:</p> <div class="centerdiv"><table cellspacing="0" cellpadding="2"> <tr><th> </th><th>Debian 3.1 (sarge)</th></tr> - -<tr><td>Source </td><td>2.6.8-16sarge4</td></tr> - -<tr><td>Alpha architecture </td><td>2.6.8-16sarge4</td></tr> - -<tr><td>AMD64 architecture </td><td>2.6.8-16sarge4</td></tr> - -<tr><td>Intel IA-32 architecture</td><td>2.6.8-16sarge4</td></tr> - -<tr><td>Intel IA-64 architecture</td><td>2.6.8-14sarge4</td></tr> - -<tr><td>PowerPC architecture </td><td>2.6.8-12sarge4</td></tr> - -<tr><td>Sun Sparc architecture </td><td>2.6.8-15sarge4</td></tr> +<tr><td>ÐÑÑ Ð¾Ð´Ð½Ñй код </td><td>2.6.8-16sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа Alpha </td><td>2.6.8-16sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа AMD64 </td><td>2.6.8-16sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа Intel IA-32</td><td>2.6.8-16sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа Intel IA-64</td><td>2.6.8-14sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа PowerPC </td><td>2.6.8-12sarge4</td></tr> +<tr><td>ÐÑÑ Ð¸ÑекÑÑÑа Sun Sparc </td><td>2.6.8-15sarge4</td></tr> <tr><td>IBM S/390 </td><td>2.6.8-5sarge4</td></tr> <tr><td>Motorola 680x0 </td><td>2.6.8-4sarge4</td></tr> <tr><td>HP Precision </td><td>2.6.8-6sarge3</td></tr> <tr><td>FAI </td><td>1.9.1sarge3</td></tr> </table></div> - -<p>The initial advisory lacked builds for the IBM S/390, Motorola 680x0 and HP - -Precision architectures, which are now provided. Also, the kernels for the - -FAI installer have been updated.</p> +<p>РизнаÑалÑной ÑекомендаÑии оÑÑÑÑÑÑвовали ÑбоÑки Ð´Ð»Ñ Ð°ÑÑ Ð¸ÑекÑÑÑ IBM S/390, Motorola 680x0 и HP +Precision, коÑоÑÑе ÑепеÑÑ Ð´Ð¾ÑÑÑпнÑ. ÐÑоме Ñого, бÑли Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ñ ÑдÑа Ð´Ð»Ñ +пÑогÑÐ°Ð¼Ð¼Ñ ÑÑÑановки FAI.</p> - -<p>We recommend that you upgrade your kernel package immediately and reboot - -the machine. If you have built a custom kernel from the kernel source - -package, you will need to rebuild to take advantage of these fixes.</p> +<p>РекомендÑеÑÑÑ ÐºÐ°Ðº можно ÑкоÑее обновиÑÑ Ð¿Ð°ÐºÐµÑ Ñ ÑдÑом и пеÑезагÑÑзиÑÑ +маÑинÑ. ÐÑли Ð²Ñ ÑобÑали ÑобÑÑвенное ÑдÑо из пакеÑа Ñ Ð¸ÑÑ Ð¾Ð´Ð½Ñм кодом +ÑдÑа, Ñо вам ÑледÑÐµÑ ÑобÑаÑÑ ÑдÑо заново, в ÑÑом ÑлÑÑае Ð²Ñ Ð±ÑдеÑе полÑÑиÑе иÑпÑавлениÑ.</p> </define-tag> # do not modify the following line - --- english/security/2006/dsa-1181.wml 2014-04-30 13:16:10.000000000 +0600 +++ russian/security/2006/dsa-1181.wml 2016-10-02 23:37:49.781404678 +0500 @@ -1,45 +1,46 @@ - -<define-tag description>several vulnerabilities</define-tag> +#use wml::debian::translation-check translation="1.5" maintainer="Lev Lamberov" +<define-tag description>неÑколÑко ÑÑзвимоÑÑей</define-tag> <define-tag moreinfo> - -<p>Tavis Ormandy from the Google Security Team discovered several - -vulnerabilities in gzip, the GNU compression utility. The Common - -Vulnerabilities and Exposures project identifies the following problems:</p> +<p>ТÑÐ²Ð¸Ñ ÐÑманди из ÐºÐ¾Ð¼Ð°Ð½Ð´Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи Google обнаÑÑжил неÑколÑко +ÑÑзвимоÑÑей в gzip, ÑÑилиÑе Ð´Ð»Ñ ÑжаÑÐ¸Ñ Ð¾Ñ GNU. ÐÑÐ¾ÐµÐºÑ Common +Vulnerabilities and Exposures опÑеделÑÐµÑ ÑледÑÑÑие пÑоблемÑ:</p> <ul> - - + <li><a href="https://security-tracker.debian.org/tracker/CVE-2006-4334">CVE-2006-4334</a> - - <p>A null pointer dereference may lead to denial of service if gzip is - - used in an automated manner.</p></li> + <p>РазÑменование null-ÑказаÑÐµÐ»Ñ Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании в ÑлÑÑае + авÑомаÑиÑеÑкого иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ gzip.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2006-4335">CVE-2006-4335</a> - - <p>Missing boundary checks may lead to stack modification, allowing - - execution of arbitrary code.</p></li> + <p>ÐÑÑÑÑÑÑвие пÑовеÑок гÑÐ°Ð½Ð¸Ñ Ð¼Ð°ÑÑива Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ ÑÑека, ÑÑо позволÑÐµÑ + вÑполнÑÑÑ Ð¿ÑоизволÑнÑй код.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2006-4336">CVE-2006-4336</a> - - <p>A buffer underflow in the pack support code may lead to execution of - - arbitrary code.</p></li> + <p>ÐÑÑиÑаÑелÑное пеÑеполнение бÑÑеÑа в коде поддеÑжки pack Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ + пÑоизволÑного кода.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2006-4337">CVE-2006-4337</a> - - <p>A buffer underflow in the LZH support code may lead to execution of - - arbitrary code.</p></li> + <p>ÐÑÑиÑаÑелÑное пеÑеполнение бÑÑеÑа в коде поддеÑжки LZH Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ + пÑоизволÑного кода.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2006-4338">CVE-2006-4338</a> - - <p>An infinite loop may lead to denial of service if gzip is used in - - an automated manner.</p></li> + <p>ÐеÑконеÑнÑй Ñикл Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании в ÑлÑÑае + авÑомаÑиÑеÑкого иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ gzip.</p></li> </ul> - -<p>For the stable distribution (sarge) these problems have been fixed in - -version 1.3.5-10sarge2.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (sarge) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.3.5-10sarge2.</p> - -<p>For the unstable distribution (sid) these problems have been fixed in - -version 1.3.5-15.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 1.3.5-15.</p> - -<p>We recommend that you upgrade your gzip package.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑ gzip.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJX8VVoAAoJEF7nbuICFtKl/N4QAIp9Rcgl52H9kOKo3ArArvM4 K0UyMi3LOzxxicNQ1127Zh6NdrdlvPmBq1LY681Zlvy8skqAbv+Ls9Igx3eYuIGE 3aMv0kckvcdFEg3TtXpTvO/MJ7rXkN5Q2W/g8401wZ80cC9rvMzB9Pa+JQyTbE1v /c8eXdyBeUDQBRTuAf7Qcc4yRZvucGmZgceXxNUcbteMop3mXpbCHkDiVaf8BFTt IquAJD5ziMbOG07YEUmc91YwnuL/fv8FzkNprhriki4NRHuLfLBKOr+SXzOiP48R V4QBEz3lfyajtb+rtrnGGMU1A2eam6jA464iG+acXDOFuCFc7U2ccedacUTjGQ7i ucO26+woZgzE4XY/O65kGcclB8HcmQ2Xky3F/zwXzgfCtQZqIF7xg4xCBLDou/Ke yC7DD+u5lm9aN9zaUNi+WcStZxEGjQQIxUhPPNhXFOHOa5FJVLjv9Rlksu7lzdNl 5/TRCdK285m9MCekqkrsMCdyAP39EOvSG+zY7DBJMoIzVzt8ZtNzQx1Akg2CLQ61 6AteXvI02sX75Hu+UeSa+10MTOH3mTneAlnfohsDhDVdrYYOnQZ3UP39sQeXTDy+ t4YyQGaXO32+lqbonxh419JCPk0fYyjO9vRP8VDtbQ6wzrdSyVRbAwve3Xhn4e06 6hAqjQOIysVldgJ7tcbg =Z5uk -----END PGP SIGNATURE-----

