-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2018/dsa-4137.wml 2018-03-15 14:57:05.000000000 +0500 +++ russian/security/2018/dsa-4137.wml 2018-03-15 16:34:01.082626753 +0500 @@ -1,41 +1,43 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.4" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities were discovered in Libvirt, a virtualisation - -abstraction library:</p> +<p>Ð Libvirt, библиоÑеки абÑÑÑакÑий Ð´Ð»Ñ Ð²Ð¸ÑÑÑализаÑии, бÑло обнаÑÑжено +неÑколÑко ÑÑзвимоÑÑей:</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-1064">CVE-2018-1064</a> - - <p>Daniel Berrange discovered that the QEMU guest agent performed - - insufficient validation of incoming data, which allows a privileged - - user in the guest to exhaust resources on the virtualisation host, - - resulting in denial of service.</p></li> + <p>ÐÑÐ½Ð¸ÐµÐ»Ñ ÐеÑанж обнаÑÑжил, ÑÑо гоÑÑевой Ð°Ð³ÐµÐ½Ñ QEMU вÑполнÑÐµÑ + недоÑÑаÑоÑнÑе пÑовеÑки Ð²Ñ Ð¾Ð´ÑÑÐ¸Ñ Ð´Ð°Ð½Ð½ÑÑ , ÑÑо позволÑÐµÑ Ð¿ÑивилегиÑÐ¾Ð²Ð°Ð½Ð½Ð¾Ð¼Ñ + полÑзоваÑÐµÐ»Ñ Ð³Ð¾ÑÑевой ÑиÑÑÐµÐ¼Ñ ÑÑезмеÑно поÑÑеблÑÑÑ ÑеÑÑÑÑÑ Ñзла виÑÑÑализаÑии, + ÑÑо пÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-5748">CVE-2018-5748</a> - - <p>Daniel Berrange and Peter Krempa discovered that the QEMU monitor - - was susceptible to denial of service by memory exhaustion. This was - - already fixed in Debian stretch and only affects Debian jessie.</p></li> + <p>ÐÑÐ½Ð¸ÐµÐ»Ñ ÐеÑанж и ÐеÑÐµÑ ÐÑемпа обнаÑÑжили, ÑÑо QEMU-мониÑÐ¾Ñ + пÑедположиÑелÑно ÑÑзвим к оÑÐºÐ°Ð·Ñ Ð² обÑлÑживании из-за иÑÑеÑÐ¿Ð°Ð½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи. ÐÑа пÑоблема + Ñже иÑпÑавлена в Debian stretch и каÑаеÑÑÑ ÑолÑко Debian jessie.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6764">CVE-2018-6764</a> - - <p>Pedro Sampaio discovered that LXC containers detected the hostname - - insecurely. This only affects Debian stretch.</p></li> + <p>ÐедÑо Сампайо обнаÑÑжил, ÑÑо LXC-конÑейнеÑÑ Ð¾Ð¿ÑеделÑÑÑ Ð¸Ð¼Ñ Ñзла + небезопаÑнÑм обÑазом. ÐÑа ÑÑзвимоÑÑÑ ÐºÐ°ÑаеÑÑÑ ÑолÑко Debian stretch.</p></li> </ul> - -<p>For the oldstable distribution (jessie), these problems have been fixed - -in version 1.2.9-9+deb8u5.</p> +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (jessie) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ +в веÑÑии 1.2.9-9+deb8u5.</p> - -<p>For the stable distribution (stretch), these problems have been fixed in - -version 3.0.0-4+deb9u3.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 3.0.0-4+deb9u3.</p> - -<p>We recommend that you upgrade your libvirt packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ libvirt.</p> - -<p>For the detailed security status of libvirt please refer to - -its security tracker page at: - -<a href="https://security-tracker.debian.org/tracker/libvirt">https://security-tracker.debian.org/tracker/libvirt</a></p> +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи libvirt можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ +<a href="https://security-tracker.debian.org/tracker/libvirt">\ +https://security-tracker.debian.org/tracker/libvirt</a></p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEE3mumcdV9mwCc9oZQXudu4gIW0qUFAlqqWi4ACgkQXudu4gIW 0qUD9A//aKZX0Yl3S6M+6jxYQcARx+/UFNroFD+b5QNYbMPSAtj5efruWXW3Lg+G fmc5SuL5RUJjpnmA+TIA3THt8oOzMI3w9Qx/dBcIg0xm/vPw8yUDEQiU8BHeJodL iZpqmXEoB1XZuSLt69sV8leWJ+YOC/b0zim7DmldkF+baVDRhsRcbjrKoTxUy8aC 1ms2Us+MNL/bJw30ITjbpKNDk6JQM5tbFpjJRW8NMT85sXR0Ry1964k9qTgqfVqX Pu4DubdcQfapuxqzIsrV0ymZr3UHFcbWIudxYAw3ioal5lrWd3ODSvG78JvdgdhD S2DmBdBOJVfqwlIQypbTD2kSo8cdPU6ZeD6qzTn5oTtZualDjy7oQEy8yqSsK6FM PYsA4Lf4yBo6HFae2xoawFmHZYw7AbGkYqbjyQgqq5/0LU2+zwxT7QMA3YZ0XNPl 6XfzBJSEWE11hL4tco8lHpXdtmlb6tGKJ6KQgwM5iCuKEeCQ9jKGJRzipG4GqmSn GIT+WhG7C0otcXKz3q02g4q2awLOcqVL6PsltfcuvEQBaz6vWdlU0JRDSXMNfMzQ HUSMXUHU6pQpvnvQ/zrk9W73XK9SVkB5A9DogFehUmopdZ2otazQj/5VTMKsalJf oKvmf9pKdF9j7LBsXxcOuKmNuZYhwX5eif0NbWiLlKCfdB52/bM= =BvHv -----END PGP SIGNATURE-----