dla-{187,278}.wml

Lev Lamberov Tue, 03 May 2016 01:21:14 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2015/dla-187.wml 2016-04-08 01:24:53.000000000 +0500
+++ russian/security/2015/dla-187.wml   2016-05-03 13:04:47.755866347 +0500
@@ -1,22 +1,23 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ 
LTS</define-tag>
 <define-tag moreinfo>
- -<p>Several hidden service related denial-of-service issues have been
- -discovered in Tor, a connection-based low-latency anonymous
- -communication system.</p>
+<p>Ð ÑÐ»ÑÐ¶Ð±Ðµ ÑÐºÑÑÑÑÑ ÑÐµÑÐ²Ð¸ÑÐ¾Ð² Tor, ÑÐ¸ÑÑÐµÐ¼Ðµ 
Ð°Ð½Ð¾Ð½Ð¸Ð¼Ð½Ð¾Ð³Ð¾ Ð²Ð·Ð°Ð¸Ð¼Ð¾Ð´ÐµÐ¹ÑÑÐ²Ð¸Ñ
+Ñ Ð½Ð¸Ð·ÐºÐ¾Ð¹ Ð·Ð°Ð´ÐµÑÐ¶ÐºÐ¾Ð¹ Ð½Ð° Ð¾ÑÐ½Ð¾Ð²Ðµ ÑÐ¾ÐµÐ´Ð¸Ð½ÐµÐ½Ð¸Ð¹, 
Ð±ÑÐ»Ð¾ Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ð¾ Ð½ÐµÑÐºÐ¾Ð»ÑÐºÐ¾
+Ð¾ÑÐºÐ°Ð·Ð¾Ð² Ð² Ð¾Ð±ÑÐ»ÑÐ¶Ð¸Ð²Ð°Ð½Ð¸Ð¸.</p>
 
- -<p><q>disgleirio</q> discovered that a malicious client could trigger an
- -  assertion failure in a Tor instance providing a hidden service, thus
- -  rendering the service inaccessible.
+<p><q>disgleirio</q> Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸Ðº 
Ð¼Ð¾Ð¶ÐµÑ Ð²ÑÐ·Ð²Ð°ÑÑ
+  Ð¾ÑÐ¸Ð±ÐºÑ ÑÑÐ²ÐµÑÐ¶Ð´ÐµÐ½Ð¸Ñ Ð½Ð° ÑÐ·Ð»Ðµ Tor, 
Ð¿ÑÐµÐ´Ð¾ÑÑÐ°Ð²Ð»ÑÑÑÐµÐ¼ ÑÐºÑÑÑÑÐ¹ ÑÐµÑÐ²Ð¸Ñ, Ð´ÐµÐ»Ð°Ñ
+  ÑÑÐ¾Ñ ÑÐµÑÑÐ¸Ñ Ð½ÐµÐ´Ð¾ÑÑÑÐ¿Ð½ÑÐ¼.
   [<a 
href="https://security-tracker.debian.org/tracker/CVE-2015-2928";>CVE-2015-2928</a>]</p>
 
- -<p><q>DonnchaC</q> discovered that Tor clients would crash with an assertion
- -  failure upon parsing specially crafted hidden service descriptors.
+<p><q>DonnchaC</q> Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ ÐºÐ»Ð¸ÐµÐ½ÑÑ Tor Ð¼Ð¾Ð³ÑÑ 
Ð°Ð²Ð°ÑÐ¸Ð¹Ð½Ð¾ Ð·Ð°Ð²ÐµÑÑÐ¸ÑÑ ÑÐ°Ð±Ð¾ÑÑ Ñ Ð¾ÑÐ¸Ð±ÐºÐ¾Ð¹
+  ÑÑÐ²ÐµÑÐ¶Ð´ÐµÐ½Ð¸Ñ Ð¿ÑÐ¸ Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ð¸ 
Ð³ÑÐ°Ð¼Ð¼Ð°ÑÐ¸ÑÐµÑÐºÐ¾Ð³Ð¾ ÑÐ°Ð·Ð±Ð¾ÑÐ° ÑÐ¿ÐµÑÐ¸Ð°Ð»ÑÐ½Ð¾ 
ÑÑÐ¾ÑÐ¼Ð¸ÑÐ¾Ð²Ð°Ð½Ð½ÑÑ Ð´ÐµÑÐºÑÐ¸Ð¿ÑÐ¾ÑÐ¾Ð² ÑÐºÑÑÑÐ¾Ð³Ð¾ 
ÑÐµÑÐ²Ð¸ÑÐ°.
   [<a 
href="https://security-tracker.debian.org/tracker/CVE-2015-2929";>CVE-2015-2929</a>]</p>
 
- -<p>Introduction points would accept multiple INTRODUCE1 cells on one
- -  circuit, making it inexpensive for an attacker to overload a hidden
- -  service with introductions.  Introduction points no longer allow
- -  multiple such cells on the same circuit.</p>
+<p>Ð¢Ð¾ÑÐºÐ¸ Ð²ÑÐ¾Ð´Ð° Ð¿ÑÐ¸Ð½Ð¸Ð¼Ð°ÑÑ Ð¼Ð½Ð¾Ð³Ð¾ÑÐ¸ÑÐ»ÐµÐ½Ð½ÑÐµ 
ÐºÐ»ÐµÑÐºÐ¸ INTRODUCE1 Ð½Ð° Ð¾Ð´Ð½Ð¾Ð¼
+  ÐºÑÑÐ³Ðµ, ÑÑÐ¾ Ð¾Ð±Ð»ÐµÐ³ÑÐ°ÐµÑ Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ 
Ð¿ÐµÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ðµ ÑÐºÑÑÑÐ¾Ð³Ð¾
+  ÑÐµÑÐ²Ð¸ÑÐ° Ð²ÑÐ¾Ð´Ð°Ð¼Ð¸.  Ð¢Ð¾ÑÐºÐ¸ Ð²ÑÐ¾Ð´Ð° Ð±Ð¾Ð»ÐµÐµ Ð½Ðµ 
Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÑÑ
+  Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÑ Ð¼Ð½Ð¾Ð³Ð¾ÑÐ¸ÑÐ»ÐµÐ½Ð½ÑÐµ ÐºÐ»ÐµÑÐºÐ¸ Ð½Ð° 
Ð¾Ð´Ð½Ð¾Ð¼ Ð¸ ÑÐ¾Ð¼ Ð¶Ðµ ÐºÑÑÐ³Ðµ.</p>
 </define-tag>
 
 # do not modify the following line
- --- english/security/2015/dla-278.wml 2016-04-07 03:10:35.000000000 +0500
+++ russian/security/2015/dla-278.wml   2016-05-03 13:20:13.868100872 +0500
@@ -1,28 +1,29 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸ 
LTS</define-tag>
 <define-tag moreinfo>
- -<p>Several SQL injection vulnerabilities were discovered in cacti, a
- -frontend to rrdtool for monitoring systems and service:</p>
+<p>Ð cacti, Ð¸Ð½ÑÐµÑÑÐµÐ¹ÑÐµ Ð´Ð»Ñ rrdtool Ð´Ð»Ñ 
Ð¾ÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ ÑÐ¸ÑÑÐµÐ¼ Ð¸ ÑÐ»ÑÐ¶Ð±, Ð±ÑÐ»Ð¾ 
Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ð¾
+Ð½ÐµÑÐºÐ¾Ð»ÑÐºÐ¾ Ð²Ð¾Ð·Ð¼Ð¾Ð¶Ð½Ð¾ÑÑÐµÐ¹ Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ 
SQL-Ð¸Ð½ÑÐµÐºÑÐ¸Ð¹:</p>
 
 <ul>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2015-4634";>CVE-2015-4634</a>
 
- -   <p>SQL injection vulnerability in Cacti before 0.8.8e allows remote
- -   attackers to execute arbitrary SQL commands in graphs.php</p>
+   <p>SQL-Ð¸Ð½ÑÐµÐºÑÐ¸Ñ Ð² Cacti Ð´Ð¾ Ð²ÐµÑÑÐ¸Ð¸ 0.8.8e 
Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ ÑÐ´Ð°Ð»ÑÐ½Ð½ÑÐ¼
+   Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ°Ð¼ Ð²ÑÐ¿Ð¾Ð»Ð½ÑÑÑ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½ÑÐµ 
ÐºÐ¾Ð¼Ð°Ð½Ð´Ñ SQL Ð² graphs.php</p>
 
- -<p>Currently unknown or unassigned CVE's
- -   SQL injection vulnerability in Cacti before 0.8.8e allows remote
- -   attackers to execute arbitrary SQL commands in cdef.php, color.php,
+<p>Ð Ð½Ð°ÑÑÐ¾ÑÑÐµÐµ Ð²ÑÐµÐ¼Ñ Ð¸Ð´ÐµÐ½ÑÐ¸ÑÐ¸ÐºÐ°ÑÐ¾ÑÑ CVE Ð½Ðµ 
Ð½Ð°Ð·Ð½Ð°ÑÐµÐ½Ñ Ð¸Ð»Ð¸ Ð½Ðµ Ð¸Ð·Ð²ÐµÑÑÐ½Ñ
+   SQL-Ð¸Ð½ÑÐµÐºÑÐ¸Ñ Ð² Cacti Ð´Ð¾ Ð²ÐµÑÑÐ¸Ð¸ 0.8.8e Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÑÑ 
ÑÐ´Ð°Ð»ÑÐ½Ð½ÑÐ¼
+   Ð·Ð»Ð¾ÑÐ¼ÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÐ°Ð¼ Ð²ÑÐ¿Ð¾Ð»Ð½ÑÑÑ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½ÑÐµ 
ÐºÐ¾Ð¼Ð°Ð½Ð´Ñ SQL Ð² cdef.php, color.php,
    data_input.php, data_queries.php, data_sources.php,
    data_templates.php, gprint_presets.php, graph_templates.php,
    graph_templates_items.php, graphs_items.php, host.php,
- -   host_templates.php, lib/functions.php, rra.php, tree.php and
+   host_templates.php, lib/functions.php, rra.php, tree.php Ð¸
    user_admin.php</p></li>
 
 </ul>
 
- -<p>For the oldoldstable distribution (squeeze), these problems have been
- -fixed in version 0.8.7g-1+squeeze7.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°ÑÐ¾Ð¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ 
(squeeze) ÑÑÐ¸ Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±ÑÐ»Ð¸
+Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² Ð²ÐµÑÑÐ¸Ð¸ 0.8.7g-1+squeeze7.</p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----

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=Rp5X
-----END PGP SIGNATURE-----

[DONE] wml://security/2015/dla-{187,278}.wml

Ответить