-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2017/dsa-3900.wml 2017-06-28 09:43:07.000000000 +0500 +++ russian/security/2017/dsa-3900.wml 2017-06-28 11:04:30.857183692 +0500 @@ -1,52 +1,53 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Several issues were discovered in openvpn, a virtual private network - -application.</p> +<p>Ð openvpn, пÑиложении Ð´Ð»Ñ ÑабоÑÑ Ñ Ð²Ð¸ÑÑÑалÑной ÑаÑÑной ÑеÑÑÑ, +бÑло обнаÑÑжено неÑколÑко пÑоблем.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2017-7479">CVE-2017-7479</a> - - <p>It was discovered that openvpn did not properly handle the - - rollover of packet identifiers. This would allow an authenticated - - remote attacker to cause a denial-of-service via application - - crash.</p></li> + <p>ÐÑло обнаÑÑжено, ÑÑо openvpn непÑавилÑно обÑабаÑÑÐ²Ð°ÐµÑ + вÑгÑÑÐ·ÐºÑ Ð¸Ð´ÐµÐ½ÑиÑикаÑоÑов пакеÑов. ÐÑо Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð·Ð²Ð¾Ð»Ð¸ÑÑ Ð°ÑÑенÑиÑиÑиÑÐ¾Ð²Ð°Ð½Ð½Ð¾Ð¼Ñ + ÑдалÑÐ½Ð½Ð¾Ð¼Ñ Ð·Ð»Ð¾ÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ Ð²ÑзваÑÑ Ð¾Ñказ в обÑлÑживании из-за аваÑийной + оÑÑановки пÑиложениÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2017-7508">CVE-2017-7508</a> - - <p>Guido Vranken discovered that openvpn did not properly handle - - specific malformed IPv6 packets. This would allow a remote - - attacker to cause a denial-of-service via application crash.</p></li> + <p>Ðвидо ÐÑанкен обнаÑÑжил, ÑÑо openvpn непÑавилÑно обÑабаÑÑÐ²Ð°ÐµÑ + опÑеделÑннÑе ÑпеÑиалÑно ÑÑоÑмиÑованнÑе IPv6-пакеÑÑ. ÐÑо Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð·Ð²Ð¾Ð»Ð¸ÑÑ ÑдалÑÐ½Ð½Ð¾Ð¼Ñ + злоÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ Ð²ÑзваÑÑ Ð¾Ñказ в обÑлÑживании из-за аваÑийной оÑÑановки пÑиложениÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2017-7520">CVE-2017-7520</a> - - <p>Guido Vranken discovered that openvpn did not properly handle - - clients connecting to an HTTP proxy with NTLMv2 - - authentication. This would allow a remote attacker to cause a - - denial-of-service via application crash, or potentially leak - - sensitive information like the user's proxy password.</p></li> + <p>Ðвидо ÐÑанкен обнаÑÑжил, ÑÑо openvpn непÑавилÑно обÑабаÑÑÐ²Ð°ÐµÑ + клиенÑÑкие подклÑÑÐµÐ½Ð¸Ñ Ðº HTTP-пÑокÑи Ñ Ð°ÑÑенÑиÑикаÑией NTLMv2. + ÐÑо Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð·Ð²Ð¾Ð»Ð¸ÑÑ ÑдалÑÐ½Ð½Ð¾Ð¼Ñ Ð·Ð»Ð¾ÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ Ð²ÑзваÑÑ + оÑказ в обÑлÑживании из-за аваÑийной оÑÑановки пÑиложениÑ, либо Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑиводиÑÑ Ðº + ÑÑеÑке ÑÑвÑÑвиÑелÑной инÑоÑмаÑии (напÑимеÑ, полÑзоваÑелÑÑкого паÑÐ¾Ð»Ñ Ð¾Ñ Ð¿ÑокÑи).</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2017-7521">CVE-2017-7521</a> - - <p>Guido Vranken discovered that openvpn did not properly handle - - some x509 extensions. This would allow a remote attacker to cause - - a denial-of-service via application crash.</p></li> + <p>Ðвидо ÐÑанкен обнаÑÑжил, ÑÑо openvpn непÑавилÑно обÑабаÑÑÐ²Ð°ÐµÑ + некоÑоÑÑе ÑаÑÑиÑÐµÐ½Ð¸Ñ x509. ÐÑо Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾Ð·Ð²Ð¾Ð»Ð¸ÑÑ ÑдалÑÐ½Ð½Ð¾Ð¼Ñ Ð·Ð»Ð¾ÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ Ð²ÑзваÑÑ + оÑказ в обÑлÑживании из-за аваÑийной оÑÑановки пÑиложениÑ.</p></li> </ul> - -<p>For the oldstable distribution (jessie), these problems have been fixed - -in version 2.3.4-5+deb8u2.</p> +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (jessie) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ +в веÑÑии 2.3.4-5+deb8u2.</p> - -<p>For the stable distribution (stretch), these problems have been fixed in - -version 2.4.0-6+deb9u1.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 2.4.0-6+deb9u1.</p> - -<p>For the testing distribution (buster), these problems have been fixed - -in version 2.4.3-1.</p> +<p>Ð ÑеÑÑиÑÑемом вÑпÑÑке (buster) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ +в веÑÑии 2.4.3-1.</p> - -<p>For the unstable distribution (sid), these problems have been fixed in - -version 2.4.3-1.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 2.4.3-1.</p> - -<p>We recommend that you upgrade your openvpn packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ openvpn.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEE3mumcdV9mwCc9oZQXudu4gIW0qUFAllTRvIACgkQXudu4gIW 0qXTdQ/8DfEQaEcRgq85qwz8RWVGpPtNW8zJlRfrgmDYyuHhTnvjXwlUZ6Vtwkix NPPFGPBLf5zJBeNR6D1zvg9Yd4fwq4dwlScK4gSrzBqERGxlBQQSb289teeNaB7v tkrBu86i7HjXHfqkF+5VfnUGVRyDAfumXLxl0fWFaDvYiSroX6mRzJf7WJMCyXKC bbYwbVD5Fvdkfbid2vWU4Xmoe/49xpYVWbkl39ysdHnoyp/HSOJ8+nMH6zcfPNXz jbBXtWxoAc2jJBHpDxPi9erNrT6zGv2a3ut4gp0D4mct63jLtdKCt7r4/B/LfeVb WK6jeQgZ3tdndAu3WTcZX6ASD830GkF17De81O6an279I6KHxQ3rzGba8zEFNMWX aOiYFBslKyObyrBYTwWzU0cpEaFG+SQOBAoAIuhM+pV/0Cjg/2CHwIT3v9rAhY/b 6OP9P8GGKeoPLEpxpLVZApiZVgzLQ95iBAmHP3v/N5Vmq7VBSd59xCBfYGlhMket DsnYpuKKhmM1azzZrfYH170OcH2m60MdeprnMArn1Qx3wquSGtc0fr/WJ9mZZFUi DUItMC3OzKsR0LjCE8Ze6ioAVGhpsZ+BrttwhIHdcrw2F3R9mgkX1bdJwqMsFZ+S 82l1t/PUd9Sa4K2RRfdZ91VbztIT5zZlA+XHD0i9iEKMhYmavb4= =fuPg -----END PGP SIGNATURE-----