dsa-4133.wml}

Lev Lamberov Wed, 07 Mar 2018 21:36:57 -0800

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2018/dsa-4133.wml        2018-03-08 03:19:27.000000000 
+0500
+++ russian/security/2018/dsa-4133.wml  2018-03-08 10:35:44.318851365 +0500
@@ -1,46 +1,48 @@
- -<define-tag description>security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸</define-tag>
 <define-tag moreinfo>
- -<p>Several vulnerabilities have been discovered in the ISC DHCP client,
- -relay and server. The Common Vulnerabilities and Exposures project
- -identifies the following issues:</p>
+<p>Ð ISC, DHCP-ÐºÐ»Ð¸ÐµÐ½ÑÐµ, ÑÐ·Ð»Ðµ Ð¸ ÑÐµÑÐ²ÐµÑÐµ, Ð±ÑÐ»Ð¾ 
Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ð¾ Ð½ÐµÑÐºÐ¾Ð»ÑÐºÐ¾
+ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐµÐ¹. ÐÑÐ¾ÐµÐºÑ Common Vulnerabilities and Exposures
+Ð¾Ð¿ÑÐµÐ´ÐµÐ»ÑÐµÑ ÑÐ»ÐµÐ´ÑÑÑÐ¸Ðµ Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ:</p>
 
 <ul>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2017-3144";>CVE-2017-3144</a>
 
- -    <p>It was discovered that the DHCP server does not properly clean up
- -    closed OMAPI connections, which can lead to exhaustion of the pool
- -    of socket descriptors available to the DHCP server, resulting in
- -    denial of service.</p></li>
+    <p>ÐÑÐ»Ð¾ Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ð¾, ÑÑÐ¾ DHCP-ÑÐµÑÐ²ÐµÑ 
Ð½ÐµÐ¿ÑÐ°Ð²Ð¸Ð»ÑÐ½Ð¾ Ð²ÑÐ¿Ð¾Ð»Ð½ÑÐµÑ Ð¾ÑÐ¸ÑÑÐºÑ
+    Ð·Ð°ÐºÑÑÑÑÑ OMAPI-ÑÐ¾ÐµÐ´Ð¸Ð½ÐµÐ½Ð¸Ð¹, ÑÑÐ¾ Ð¼Ð¾Ð¶ÐµÑ 
Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº Ð¸ÑÑÐµÑÐ¿Ð°Ð½Ð¸Ñ Ð¿ÑÐ»Ð°
+    Ð´ÐµÑÐºÑÐ¸Ð¿ÑÐ¾ÑÐ¾Ð² ÑÐ¾ÐºÐµÑÐ¾Ð², Ð´Ð¾ÑÑÑÐ¿Ð½ÑÑ 
DHCP-ÑÐµÑÐ²ÐµÑÑ, ÑÑÐ¾ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº
+    Ð¾ÑÐºÐ°Ð·Ñ Ð² Ð¾Ð±ÑÐ»ÑÐ¶Ð¸Ð²Ð°Ð½Ð¸Ð¸.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2018-5732";>CVE-2018-5732</a>
 
- -    <p>Felix Wilhelm of the Google Security Team discovered that the DHCP
- -    client is prone to an out-of-bound memory access vulnerability when
- -    processing specially constructed DHCP options responses, resulting
- -    in potential execution of arbitrary code by a malicious DHCP 
server.</p></li>
+    <p>Ð¤ÐµÐ»Ð¸ÐºÑ ÐÐ¸Ð»ÑÐ³ÐµÐ»ÑÐ¼ Ð¸Ð· Google Security Team 
Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ DHCP-ÐºÐ»Ð¸ÐµÐ½Ñ
+    ÑÐ¾Ð´ÐµÑÐ¶Ð¸Ñ Ð¾ÑÐ¸Ð±ÐºÑ, Ð¿ÑÐ¸Ð²Ð¾Ð´ÑÑÑÑ Ðº Ð¾Ð±ÑÐ°ÑÐµÐ½Ð¸Ñ 
Ð·Ð° Ð¿ÑÐµÐ´ÐµÐ»Ñ Ð²ÑÐ´ÐµÐ»ÐµÐ½Ð½Ð¾Ð³Ð¾ Ð±ÑÑÐµÑÐ° Ð¿Ð°Ð¼ÑÑÐ¸ Ð¿ÑÐ¸
+    Ð¾Ð±ÑÐ°Ð±Ð¾ÑÐºÐµ ÑÐ¿ÐµÑÐ¸Ð°Ð»ÑÐ½Ð¾ ÑÑÐ¾ÑÐ¼Ð¸ÑÐ¾Ð²Ð°Ð½Ð½ÑÑ 
DHCP-Ð¾ÑÐ²ÐµÑÐ¾Ð², ÑÑÐ¾ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸Ñ Ðº ÑÐ¾Ð¼Ñ, ÑÑÐ¾ 
DHCP-ÑÐµÑÐ²ÐµÑ
+    Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ° Ð¼Ð¾Ð¶ÐµÑ Ð¿Ð¾ÑÐµÐ½ÑÐ¸Ð°Ð»ÑÐ½Ð¾ 
Ð²ÑÐ¿Ð¾Ð»Ð½Ð¸ÑÑ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½ÑÐ¹ ÐºÐ¾Ð´.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2018-5733";>CVE-2018-5733</a>
 
- -    <p>Felix Wilhelm of the Google Security Team discovered that the DHCP
- -    server does not properly handle reference counting when processing
- -    client requests. A malicious client can take advantage of this flaw
- -    to cause a denial of service (dhcpd crash) by sending large amounts
- -    of traffic.</p></li>
+    <p>Ð¤ÐµÐ»Ð¸ÐºÑ ÐÐ¸Ð»ÑÐ³ÐµÐ»ÑÐ¼ Ð¸Ð· Google Security Team 
Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ DHCP-ÑÐµÑÐ²ÐµÑ
+    Ð½ÐµÐ¿ÑÐ°Ð²Ð¸Ð»ÑÐ½Ð¾ Ð¾Ð±ÑÐ°Ð±Ð°ÑÑÐ²Ð°ÐµÑ Ð¿Ð¾Ð´ÑÑÑÑ 
ÑÑÑÐ»Ð¾Ðº Ð¿ÑÐ¸ Ð¾Ð±ÑÐ°Ð±Ð¾ÑÐºÐµ ÐºÐ»Ð¸ÐµÐ½ÑÑÐºÐ¸Ñ
+    Ð·Ð°Ð¿ÑÐ¾ÑÐ¾Ð². DHCP-ÐºÐ»Ð¸ÐµÐ½Ñ Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ° 
Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÑ ÑÑÑ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÑ
+    Ð´Ð»Ñ Ð²ÑÐ·Ð¾Ð²Ð° Ð¾ÑÐºÐ°Ð·Ð° Ð² Ð¾Ð±ÑÐ»ÑÐ¶Ð¸Ð²Ð°Ð½Ð¸Ð¸ 
(Ð°Ð²Ð°ÑÐ¸Ð¹Ð½Ð°Ñ Ð¾ÑÑÐ°Ð½Ð¾Ð²ÐºÐ° dhcpd) Ð¿ÑÑÑÐ¼ Ð¾ÑÐ¿ÑÐ°Ð²ÐºÐ¸
+    Ð±Ð¾Ð»ÑÑÐ¾Ð³Ð¾ ÐºÐ¾Ð»Ð¸ÑÐµÑÑÐ²Ð° ÑÑÐ°ÑÐ¸ÐºÐ°.</p></li>
 
 </ul>
 
- -<p>For the oldstable distribution (jessie), these problems have been fixed
- -in version 4.3.1-6+deb8u3.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (jessie) ÑÑÐ¸ 
Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±ÑÐ»Ð¸ Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ñ
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 4.3.1-6+deb8u3.</p>
 
- -<p>For the stable distribution (stretch), these problems have been fixed in
- -version 4.3.5-3+deb9u1.</p>
+<p>Ð ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (stretch) ÑÑÐ¸ Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ 
Ð±ÑÐ»Ð¸ Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ñ Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 4.3.5-3+deb9u1.</p>
 
- -<p>We recommend that you upgrade your isc-dhcp packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´ÑÐµÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ isc-dhcp.</p>
 
- -<p>For the detailed security status of isc-dhcp please refer to its
- -security tracker page at:
- -<a 
href="https://security-tracker.debian.org/tracker/isc-dhcp";>https://security-tracker.debian.org/tracker/isc-dhcp</a></p>
+<p>Ð¡ Ð¿Ð¾Ð´ÑÐ¾Ð±Ð½ÑÐ¼ ÑÑÐ°ÑÑÑÐ¾Ð¼ Ð¿Ð¾Ð´Ð´ÐµÑÐ¶ÐºÐ¸ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ isc-dhcp Ð¼Ð¾Ð¶Ð½Ð¾ Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼Ð¸ÑÑÑÑ Ð½Ð°
+ÑÐ¾Ð¾ÑÐ²ÐµÑÑÑÐ²ÑÑÑÐµÐ¹ ÑÑÑÐ°Ð½Ð¸ÑÐµ Ð¾ÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ Ð¿Ð¾ Ð°Ð´ÑÐµÑÑ
+<a href="https://security-tracker.debian.org/tracker/isc-dhcp";>\
+https://security-tracker.debian.org/tracker/isc-dhcp</a></p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----

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=EMGR
-----END PGP SIGNATURE-----

[DONE] wml://{security/2018/dsa-4133.wml}

Ответить