dla-{356,210}.wml

Lev Lamberov Tue, 03 May 2016 00:58:37 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2015/dla-210.wml 2016-04-07 03:47:55.000000000 +0500
+++ russian/security/2015/dla-210.wml   2016-05-03 12:57:21.483300271 +0500
@@ -1,20 +1,21 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ 
LTS</define-tag>
 <define-tag moreinfo>
- -<p>This update fixes multiple security issues in the Qt library.</p>
+<p>ÐÐ°Ð½Ð½Ð¾Ðµ Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÑÐµÑ 
Ð¼Ð½Ð¾Ð³Ð¾ÑÐ¸ÑÐ»ÐµÐ½Ð½ÑÐµ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐ¸ Ð² Ð±Ð¸Ð±Ð»Ð¸Ð¾ÑÐµÐºÐµ 
Qt.</p>
 
 <ul>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2013-0254";>CVE-2013-0254</a>
 
- -    <p>The QSharedMemory class uses weak permissions (world-readable and
- -    world-writable) for shared memory segments, which allows local users
- -    to read sensitive information or modify critical program data, as
- -    demonstrated by reading a pixmap being sent to an X server.</p></li>
+    <p>ÐÐ»Ð°ÑÑ QSharedMemory Ð¸ÑÐ¿Ð¾Ð»ÑÐ·ÑÐµÑÑÑ ÑÐ»Ð°Ð±ÑÐµ 
Ð¿ÑÐ°Ð²Ð° Ð´Ð¾ÑÑÑÐ¿Ð° (Ð´Ð¾ÑÑÑÐ¿ Ð´Ð»Ñ ÑÑÐµÐ½Ð¸Ñ Ð¸ Ð·Ð°Ð¿Ð¸ÑÐ¸
+    Ð´Ð»Ñ Ð²ÑÐµÑ Ð¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÐµÐ»ÐµÐ¹) Ð´Ð»Ñ ÑÐµÐ³Ð¼ÐµÐ½ÑÐ¾Ð² 
ÑÐ°Ð·Ð´ÐµÐ»ÑÐµÐ¼Ð¾Ð¹ Ð¿Ð°Ð¼ÑÑÐ¸, ÑÑÐ¾ Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ 
Ð»Ð¾ÐºÐ°Ð»ÑÐ½ÑÐ¼ Ð¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÐµÐ»ÑÐ¼
+    ÑÑÐ¸ÑÑÐ²Ð°ÑÑ ÑÑÐ²ÑÑÐ²Ð¸ÑÐµÐ»ÑÐ½ÑÑ Ð¸Ð½ÑÐ¾ÑÐ¼Ð°ÑÐ¸Ñ 
Ð¸Ð»Ð¸ Ð¸Ð·Ð¼ÐµÐ½ÑÑÑ ÐºÑÐ¸ÑÐ¸ÑÐµÑÐºÐ¸Ðµ Ð´Ð°Ð½Ð½ÑÐµ Ð¿ÑÐ¾Ð³ÑÐ°Ð¼Ð¼Ñ, 
ÑÑÐ¾
+    Ð´ÐµÐ¼Ð¾Ð½ÑÑÑÐ¸ÑÑÐµÑÑÑ ÑÑÐµÐ½Ð¸ÐµÐ¼ Ð¿Ð¸ÐºÑÐµÐ»ÑÐ½ÑÑ 
Ð¸Ð·Ð¾Ð±ÑÐ°Ð¶ÐµÐ½Ð¸Ð¹, Ð¾ÑÐ¿ÑÐ°Ð²Ð»ÑÐµÐ¼ÑÑ X-ÑÐµÑÐ²ÐµÑÑ.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2015-0295";>CVE-2015-0295</a>
 / <a 
href="https://security-tracker.debian.org/tracker/CVE-2015-1858";>CVE-2015-1858</a>
 / <a 
href="https://security-tracker.debian.org/tracker/CVE-2015-1859";>CVE-2015-1859</a>
 / <a 
href="https://security-tracker.debian.org/tracker/CVE-2015-1860";>CVE-2015-1860</a>
 
- -    <p>Denial of service (via segmentation faults) through crafted
- -    images (BMP, GIF, ICO).</p></li>
+    <p>ÐÑÐºÐ°Ð· Ð² Ð¾Ð±ÑÐ»ÑÐ¶Ð¸Ð²Ð°Ð½Ð¸Ð¸ (ÑÐµÑÐµÐ· Ð¾ÑÐ¸Ð±ÐºÐ¸ 
ÑÐµÐ³Ð¼ÐµÐ½ÑÐ¸ÑÐ¾Ð²Ð°Ð½Ð¸Ñ) Ð¿ÑÐ¸ Ð¿Ð¾Ð¼Ð¾ÑÐ¸ ÑÐ¿ÐµÑÐ¸Ð°Ð»ÑÐ½Ð¾
+    ÑÑÐ¾ÑÐ¼Ð¸ÑÐ¾Ð²Ð°Ð½Ð½ÑÑ Ð¸Ð·Ð¾Ð±ÑÐ°Ð¶ÐµÐ½Ð¸Ð¹ (BMP, GIF, 
ICO).</p></li>
 
 </ul>
 </define-tag>
- --- english/security/2015/dla-356.wml 2016-04-08 00:21:20.000000000 +0500
+++ russian/security/2015/dla-356.wml   2016-05-03 12:54:25.796707383 +0500
@@ -1,25 +1,26 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ 
LTS</define-tag>
 <define-tag moreinfo>
 
 <ul>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2014-9496";>CVE-2014-9496</a>
 
- -    <p>The sd2_parse_rsrc_fork function in sd2.c in libsndfile allows
- -    attackers to have unspecified impact via vectors related to a (1) map
- -    offset or (2) rsrc marker, which triggers an out-of-bounds read.</p></li>
+    <p>Ð¤ÑÐ½ÐºÑÐ¸Ñ sd2_parse_rsrc_fork Ð² sd2.c Ð² libsndfile 
Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ
+    Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ°Ð¼ Ð¾ÐºÐ°Ð·ÑÐ²Ð°ÑÑ 
Ð½ÐµÐ¾Ð¿ÑÐµÐ´ÐµÐ»ÑÐ½Ð½Ð¾Ðµ Ð²Ð»Ð¸ÑÐ½Ð¸Ðµ Ð½Ð° Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÑ 
ÑÐµÑÐµÐ· Ð²ÐµÐºÑÐ¾ÑÑ, ÑÐ²ÑÐ·Ð°Ð½Ð½ÑÐµ Ñ (1) Ð¾ÑÐ¾Ð±ÑÐ°Ð¶ÐµÐ½Ð¸ÐµÐ¼
+    ÑÐ¼ÐµÑÐµÐ½Ð¸Ñ Ð¸Ð»Ð¸ (2) rsrc-Ð¼Ð°ÑÐºÐµÑÐ¾Ð¼, ÐºÐ¾ÑÐ¾ÑÑÐµ 
Ð²ÑÐ·ÑÐ²Ð°ÑÑ ÑÑÐµÐ½Ð¸Ðµ Ð·Ð° Ð¿ÑÐµÐ´ÐµÐ»Ð°Ð¼Ð¸ Ð²ÑÐ´ÐµÐ»ÐµÐ½Ð½Ð¾Ð³Ð¾ 
Ð±ÑÑÐµÑÐ° Ð¿Ð°Ð¼ÑÑÐ¸.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2014-9756";>CVE-2014-9756</a>
 
- -    <p>The psf_fwrite function in file_io.c in libsndfile allows attackers to
- -    cause a denial of service (divide-by-zero error and application crash)
- -    via unspecified vectors related to the headindex variable.</p></li>
+    <p>Ð¤ÑÐ½ÐºÑÐ¸Ñ psf_fwrite function Ð² file_io.c Ð² libsndfile 
Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ°Ð¼
+    Ð²ÑÐ·ÑÐ²Ð°ÑÑ Ð¾ÑÐºÐ°Ð· Ð² Ð¾Ð±ÑÐ»ÑÐ¶Ð¸Ð²Ð°Ð½Ð¸Ð¸ (Ð¾ÑÐ¸Ð±ÐºÐ° 
Ð¿ÑÐ¸ Ð´ÐµÐ»ÐµÐ½Ð¸Ð¸ Ð½Ð° Ð½Ð¾Ð»Ñ Ð¸ Ð°Ð²Ð°ÑÐ¸Ð¹Ð½Ð°Ñ Ð¾ÑÑÐ°Ð½Ð¾Ð²ÐºÐ° 
Ð¿ÑÐ¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ)
+    ÑÐµÑÐµÐ· Ð½ÐµÐ¾Ð¿ÑÐµÐ´ÐµÐ»ÑÐ½Ð½ÑÐµ Ð²ÐµÐºÑÐ¾ÑÑ, ÑÐ²ÑÐ·Ð°Ð½Ð½ÑÐµ 
Ñ Ð¿ÐµÑÐµÐ¼ÐµÐ½Ð½Ð¾Ð¹ headindex.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2015-7805";>CVE-2015-7805</a>
 
- -    <p>Heap-based buffer overflow in libsndfile 1.0.25 allows remote
- -    attackers to have unspecified impact via the headindex value in the
- -    header in an AIFF file.</p></li>
+    <p>ÐÐµÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ðµ Ð´Ð¸Ð½Ð°Ð¼Ð¸ÑÐµÑÐºÐ¾Ð¹ Ð¿Ð°Ð¼ÑÑÐ¸ Ð² 
libsndfile Ð²ÐµÑÑÐ¸Ð¸ 1.0.25 Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ ÑÐ´Ð°Ð»ÑÐ½Ð½ÑÐ¼
+    Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ°Ð¼ Ð¾ÐºÐ°Ð·ÑÐ²Ð°ÑÑ 
Ð½ÐµÐ¾Ð¿ÑÐµÐ´ÐµÐ»ÑÐ½Ð½Ð¾Ðµ Ð²Ð»Ð¸ÑÐ½Ð¸Ðµ Ð½Ð° Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÑ 
ÑÐµÑÐµÐ· Ð¿ÐµÑÐµÐ¼ÐµÐ½Ð½ÑÑ headindex Ð²
+    Ð·Ð°Ð³Ð¾Ð»Ð¾Ð²ÐºÐµ ÑÐ°Ð¹Ð»Ð° Ð² ÑÐ¾ÑÐ¼Ð°ÑÐµ AIFF.</p></li>
 
 </ul>
 </define-tag>
-----BEGIN PGP SIGNATURE-----


iQIcBAEBCgAGBQJXKFnkAAoJEF7nbuICFtKl97oQAK60XRS2pH795eQdwTJQUX3V
O2gvxenaKxlEcwcc3L/Qp9VJS3oBhz+nfwEN+HH6mfadQP9KrtSsbc2WutdKrnyZ
PYGkg7M+4HDh0ZFu27Krg5hK8/Y+ek8SNwbBcyRz8gip7fdahlbtgjjZk8pXUpDe
Yb6PGBo8X0zve2gSIcI6oXtoc21o483AKkT8LuKEbPSxDYZt1dMd5AQ1dfdIZHhi
Fv4XxAT1FN5X/VQ+eiYAhthOx4KqJXVKpv4yjaFcUGKfNItBgczQYZvZ25c+BjqJ
3ng0GDSSNqsMx4SiaCjp5yYg80hky8NWRgn9fwNr7/wRNyUBiR/7cF7JgZpwurEm
qiW/AHtrpJcwNWOxEVWCRvEvX2EBmZYcVTA8GHru6ix2T1Ojd9VzYfKE54AWP5nn
ofOeHYwOh8b4U4zDnRt/3mj73RJKsqW6+6MnQafEBt8+y6GRxllBYy8WOXOv/Uh1
TYvjlin1K1mXpEe0GvpKE85yYy3ccbJ0OdSbZkSrXLISW3Cxrc3+rEXV/Jk2zOu7
QGdSRkWYHkp+zYRzTLp7NUJQnlBmWMk4NcvrRXieqXNpFYHVjgYb6R5peVW8CVE5
WUiMcuI6hCjBdFBYZQwrpJdn1oGfkZG9G78a7mDv3WI7PYqEkNM55V797eo93f/K
T/Wfq7lQ5gKPdP94lH2a
=Q70A
-----END PGP SIGNATURE-----

[DONE] wml://security/2015/dla-{356,210}.wml

Ответить