-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2014/dla-17.wml 2016-04-09 01:32:21.000000000 +0500 +++ russian/security/2014/dla-17.wml 2016-06-22 15:59:19.672574423 +0500 @@ -1,21 +1,22 @@ - -<define-tag description>LTS security update</define-tag> +#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи LTS</define-tag> <define-tag moreinfo> - -<p>The Tor version previously in Debian squeeze, 0.2.2.39, is no longer - -supported by upstream.</p> +<p>ÐеÑÑÐ¸Ñ Tor, коÑоÑÐ°Ñ Ñанее бÑла в ÑоÑÑаве Debian squeeze, 0.2.2.39, более +не поддеÑживаеÑÑÑ Ð¾Ñновной веÑкой ÑазÑабоÑки.</p> - -<p>This update brings the currently stable version of Tor, 0.2.4.23, to - -Debian squeeze.</p> +<p>Ðанное обновление добавлÑÐµÑ Ð² Debian squeeze ÑекÑÑÑÑ ÑÑабилÑнÑÑ +веÑÑÐ¸Ñ Tor, 0.2.4.23.</p> - -<p>Changes include use of stronger cryptographic primitives, always - -clearing bignums before freeing them to avoid leaving key material in - -memory, mitigating several linkability vectors such as by disabling - -client-side DNS caches, blacklisting authority signing keys potentially - -compromised due to heartbleed, updating the list of directory - -authorities, and much more.</p> +<p>СÑеди Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ Ð¼Ð¾Ð¶Ð½Ð¾ ÑказаÑÑ Ð¸ÑполÑзование более ÑÑÐ¾Ð¹ÐºÐ¸Ñ Ð¿ÑимиÑивов ÑиÑÑованиÑ, +вÑполнение оÑиÑÑки ÑвеÑÑ Ð±Ð¾Ð»ÑÑÐ¸Ñ ÑиÑел до Ð¸Ñ Ð¾ÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ñ ÑелÑÑ Ð¸Ð·Ð±ÐµÐ¶Ð°ÑÑ ÑиÑÑаÑий, когда ÑаÑÑÑ Ð¼Ð°ÑеÑиала клÑÑа +оÑÑавалаÑÑ Ð² памÑÑи, Ñнижение ÑиÑка ÑÑда векÑоÑов, ÑвÑзаннÑÑ Ñ Ð²Ð¾Ð·Ð¼Ð¾Ð¶Ð½Ð¾ÑÑÑÑ ÐºÐ¾Ð¼Ð¿Ð¾Ð½Ð¾Ð²ÐºÐ¸, напÑимеÑ, пÑÑÑм оÑклÑÑÐµÐ½Ð¸Ñ +кеÑиÑÐ¾Ð²Ð°Ð½Ð¸Ñ DNS на ÑÑоÑоне клиенÑа, добавление клÑÑей авÑоÑиÑеÑов, коÑоÑÑе поÑенÑиалÑно +бÑли компÑомеÑиÑÐ¾Ð²Ð°Ð½Ñ Ð°Ñакой heartbleed, обновление ÑпиÑка авÑоÑиÑеÑов +и многое дÑÑгое.</p> - -<p>We recommend that you upgrade your tor packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ tor.</p> - -<p>For Debian 6 <q>Squeeze</q>, these issues have been fixed in tor version 0.2.4.23-1~deb6u1</p> +<p>Ð Debian 6 <q>Squeeze</q> ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² пакеÑе tor веÑÑии 0.2.4.23-1~deb6u1</p> </define-tag> # do not modify the following line - --- english/security/2014/dla-62.wml 2016-04-09 01:32:21.000000000 +0500 +++ russian/security/2014/dla-62.wml 2016-06-22 15:53:44.037756690 +0500 @@ -1,18 +1,19 @@ - -<define-tag description>LTS security update</define-tag> +#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи LTS</define-tag> <define-tag moreinfo> - -<p>Antoine Delignat-Lavaud from Inria discovered an issue in the way NSS - -(the Mozilla Network Security Service library) was parsing ASN.1 data - -used in signatures, making it vulnerable to a signature forgery attack.</p> +<p>ÐнÑÑан ÐелинÑ-ÐÐ°Ð²Ñ Ð¸Ð· Inria обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² ÑпоÑобе, иÑполÑзÑемом NSS +(библиоÑека Mozilla Network Security Service) Ð´Ð»Ñ Ð³ÑаммаÑиÑеÑкого ÑазбоÑа даннÑÑ ASN.1, +иÑполÑзÑемÑÑ Ð² подпиÑÑÑ , ÑÑо Ð´ÐµÐ»Ð°ÐµÑ ÑÑÑ Ð±Ð¸Ð±Ð»Ð¸Ð¾ÑÐµÐºÑ ÑÑзвимой к аÑаке ÑеÑез Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÑ Ð¿Ð¾Ð´Ð¿Ð¸Ñи.</p> - -<p>An attacker could craft ASN.1 data to forge RSA certificates with a - -valid certification chain to a trusted CA.</p> +<p>ÐлоÑмÑÑленник Ð¼Ð¾Ð¶ÐµÑ ÑÑоÑмиÑоваÑÑ Ð´Ð°Ð½Ð½Ñе ASN.1 Ð´Ð»Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¸ ÑеÑÑиÑикаÑов RSA, имеÑÑÐ¸Ñ +коÑÑекÑнÑÑ ÑепоÑÐºÑ ÑеÑÑиÑикаÑов к довеÑÐµÐ½Ð½Ð¾Ð¼Ñ Ð°Ð²ÑоÑиÑеÑÑ CA.</p> - -<p>This update fixes this issue for the NSS libraries.</p> +<p>Ðанное обновление иÑпÑавлÑÐµÑ ÑказаннÑÑ Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² библиоÑÐµÐºÐ°Ñ NSS.</p> - -<p>Note that iceweasel, which is also affected by <a href="https://security-tracker.debian.org/tracker/CVE-2014-1568">CVE-2014-1568</a>, however - -has reached end-of-life in Squeeze(-LTS) and thus has not been fixed.</p> +<p>ÐамеÑÑÑе, ÑÑо поддеÑжка веб-бÑаÑзеÑа iceweasel, коÑоÑÑй Ñакже подвеÑжен <a href="https://security-tracker.debian.org/tracker/CVE-2014-1568">CVE-2014-1568</a>, +в Squeeze(-LTS) пÑекÑаÑена, в нÑм ÑÑа оÑибка иÑпÑавлена не бÑдеÑ.</p> - -<p>For Debian 6 <q>Squeeze</q>, these issues have been fixed in nss version 3.12.8-1+squeeze9</p> +<p>Ð Debian 6 <q>Squeeze</q> ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² пакеÑе nss веÑÑии 3.12.8-1+squeeze9</p> </define-tag> # do not modify the following line - --- english/security/2014/dla-82.wml 2016-04-09 01:32:22.000000000 +0500 +++ russian/security/2014/dla-82.wml 2016-06-22 15:49:27.492331307 +0500 @@ -1,17 +1,18 @@ - -<define-tag description>LTS security update</define-tag> +#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи LTS</define-tag> <define-tag moreinfo> - -<p>HD Moore of Rapid7 discovered a symlink attack in Wget, a command-line - -utility to retrieve files via HTTP, HTTPS, and FTP. The vulnerability - -allows to create arbitrary files on the user's system when Wget runs in - -recursive mode against a malicious FTP server. Arbitrary file creation - -may override content of user's files or permit remote code execution with - -the user privilege.</p> +<p>ÐйÑди ÐÑÑ Ð¸Ð· Rapid7 обнаÑÑжил возможноÑÑÑ Ð°Ñаки ÑеÑез ÑимволÑнÑе ÑÑÑлки в Wget, ÑÑилиÑе +командной ÑÑÑоки Ð´Ð»Ñ Ð·Ð°Ð³ÑÑзки Ñайлов по пÑоÑоколам HTTP, HTTPS и FTP. ÐÑа ÑÑзвимоÑÑÑ +позволÑÐµÑ ÑоздаваÑÑ Ð¿ÑоизволÑнÑе ÑÐ°Ð¹Ð»Ñ Ð² полÑзоваÑелÑÑкой ÑиÑÑеме в Ñом ÑлÑÑае, когда Wget запÑÑен +в ÑекÑÑÑивном Ñежиме Ð´Ð»Ñ Ð¾Ð±ÑабоÑки FTP-ÑеÑвеÑа злоÑмÑÑленника. Создание пÑоизволÑнÑÑ Ñайлов +Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑивеÑÑи к пеÑезапиÑи ÑодеÑжимого Ñайлов полÑзоваÑÐµÐ»Ñ Ð¸Ð»Ð¸ позволиÑÑ ÑдалÑнно вÑполниÑÑ ÐºÐ¾Ð´ Ñ +пÑавами полÑзоваÑелÑ.</p> - -<p>This update changes the default setting in Wget such that it no longer - -creates local symbolic links, but rather traverses them and retrieves the - -pointed-to file in such a retrieval.</p> +<p>Ðанное обновление изменÑÐµÑ Ð½Ð°ÑÑÑойки по ÑмолÑÐ°Ð½Ð¸Ñ Ð² Wget Ñак, ÑÑо пÑогÑамма более +не ÑоздаÑÑ Ð»Ð¾ÐºÐ°Ð»ÑнÑе ÑимволÑнÑе ÑÑÑлки, а пеÑÐµÑ Ð¾Ð´Ð¸Ñ Ð¿Ð¾ ним и загÑÑÐ¶Ð°ÐµÑ +ÑказÑваем ими Ñайл.</p> - -<p>For Debian 6 <q>Squeeze</q>, these issues have been fixed in wget version 1.12-2.1+deb6u1</p> +<p>Ð Debian 6 <q>Squeeze</q> ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² пакеÑе wget веÑÑии 1.12-2.1+deb6u1</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJXam+MAAoJEF7nbuICFtKlRVwP/2d+FzvY8G95laNZnyz0rSd+ FtHErcA/k1EPF3C3EMw627Wi2bxPjWaBpizSxDiCnLOkNEBsxYwmdnBA7RJ4NH8o iQFiDOpVYURHa120bldu9G/RbHdGxXQQJ7SOJcX3kzEeZK+vm0ErwRNNwfOKK4jM xx52fQtXKHs9g3n5Bb7AJKU5ao5yAPL3txJstkN41s2qI9A4nTgjJLQsUkzTDotT 86PgwlSpt2+n3zLIKHG/FndI/JYfYC5kaL/H+sVm161+n4CmH8Y4gKc9s35EQCcL sW3sEEmudoggLdIxTBWm4A2FmisQ12VVDPG12s7usQdXSyEfI8pBLwh1vbl1VKOd JgxZiXDjE+L9eRydRGzQtPV4xHhOoQ+W+u3gp64uaT/a8P9U5VfG6h0LgSgWHRzQ oSe+RJvHgb72lp2xJZdlF2cdKFlQLi+QE/vlzQyP7oBfQmQ0vYoqiZyIqaTm66bH KZ0y9xsqtMS47r+bKinFpr9fRJyQTVvBhkfqjAHIEEP4ODgR6hxqSQWc6c/ZvMQN 8C+5c6BKE2Kbx7eRtRl+Gv9+geeUakFJcQSBwbMdrtNtV1q4seQI2AAghgDL9G6g Fzi+JSciLIkgoG98mshVrDaNJKS+648Yr+eN3BE6D9TWyBxSm0NAQcDYsldM3yBc yXEXQeB/LoRmScNkXanZ =kvO6 -----END PGP SIGNATURE-----