dsa-388{7,8,9}.wml

Lev Lamberov Tue, 20 Jun 2017 05:18:54 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2017/dsa-3887.wml        2017-06-19 22:00:39.000000000 
+0500
+++ russian/security/2017/dsa-3887.wml  2017-06-20 12:57:53.455005440 +0500
@@ -1,20 +1,21 @@
- -<define-tag description>security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸</define-tag>
 <define-tag moreinfo>
- -<p>The Qualys Research Labs discovered various problems in the dynamic
- -linker of the GNU C Library which allow local privilege escalation by
- -clashing the stack. For the full details, please refer to their advisory
- -published at:
+<p>Ð¡Ð¾ÑÑÑÐ´Ð½Ð¸ÐºÐ¸ Qualys Research Labs Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð»Ð¸ 
ÑÐ°Ð·Ð»Ð¸ÑÐ½ÑÐµ Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² Ð´Ð¸Ð½Ð°Ð¼Ð¸ÑÐµÑÐºÐ¾Ð¼
+ÐºÐ¾Ð¼Ð¿Ð¾Ð½Ð¾Ð²ÑÐ¸ÐºÐµ Ð¸Ð· ÑÐ¾ÑÑÐ°Ð²Ð° GNU C Library, ÐºÐ¾ÑÐ¾ÑÑÐµ 
Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÑÑ Ð²ÑÐ¿Ð¾Ð»Ð½ÑÑÑ Ð»Ð¾ÐºÐ°Ð»ÑÐ½Ð¾Ðµ Ð¿Ð¾Ð²ÑÑÐµÐ½Ð¸Ðµ
+Ð¿ÑÐ¸Ð²Ð¸Ð»ÐµÐ³Ð¸Ð¹ Ð¸Ð·-Ð·Ð° Ð¿Ð¾ÑÑÐ¸ ÑÑÐµÐºÐ°. ÐÐ° 
Ð¿Ð¾Ð´ÑÐ¾Ð±Ð½Ð¾ÑÑÑÐ¼Ð¸ Ð¾Ð±ÑÐ°ÑÐ°Ð¹ÑÐµÑÑ Ðº ÑÐµÐºÐ¾Ð¼ÐµÐ½Ð´Ð°ÑÐ¸Ð¸
+Ð½Ð° ÑÐ°Ð¹ÑÐµ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸Ð¸ Ð¿Ð¾ ÑÐ»ÐµÐ´ÑÑÑÐµÐ¼Ñ Ð°Ð´ÑÐµÑÑ:
 <a 
href="https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt";>https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt</a></p>
 
- -<p>For the oldstable distribution (jessie), this problem has been fixed
- -in version 2.19-18+deb8u10.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (jessie) ÑÑÐ° 
Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð°
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 2.19-18+deb8u10.</p>
 
- -<p>For the stable distribution (stretch), this problem has been fixed in
- -version 2.24-11+deb9u1.</p>
+<p>Ð ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (stretch) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 2.24-11+deb9u1.</p>
 
- -<p>For the unstable distribution (sid), this problem will be fixed soon.</p>
+<p>Ð Ð½ÐµÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (sid) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ´ÐµÑ Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð¿Ð¾Ð·Ð¶Ðµ.</p>
 
- -<p>We recommend that you upgrade your glibc packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´ÑÐµÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ glibc.</p>
 </define-tag>
 
 # do not modify the following line
- --- english/security/2017/dsa-3888.wml        2017-06-19 22:02:40.000000000 
+0500
+++ russian/security/2017/dsa-3888.wml  2017-06-20 17:10:54.662869115 +0500
@@ -1,20 +1,21 @@
- -<define-tag description>security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸</define-tag>
 <define-tag moreinfo>
- -<p>The Qualys Research Labs discovered a memory leak in the Exim mail
- -transport agent. This is not a security vulnerability in Exim by itself,
- -but can be used to exploit a vulnerability in stack handling. For the
- -full details, please refer to their advisory published at:
+<p>Ð¡Ð¾ÑÑÑÐ´Ð½Ð¸ÐºÐ¸ Qualys Research Labs Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð»Ð¸ ÑÑÐµÑÐºÑ 
Ð¿Ð°Ð¼ÑÑÐ¸ Ð² Exim, Ð°Ð³ÐµÐ½ÑÐµ
+Ð¿ÐµÑÐµÐ´Ð°ÑÐ¸ Ð¿Ð¾ÑÑÐ¸. ÐÑÐ¾ Ð½Ðµ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÑ Ð² ÑÐ°Ð¼Ð¾Ð¼ 
Exim,
+Ð½Ð¾ Ð¾Ð½Ð° Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÑ ÐºÐ°Ðº ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÑ 
Ð¿ÑÐ¸ ÑÐ°Ð±Ð¾ÑÐµ ÑÐ¾ ÑÑÐµÐºÐ¾Ð¼. Ð¡
+Ð¿Ð¾Ð´ÑÐ¾Ð±Ð½Ð¾ÑÑÑÐ¼Ð¸ Ð¼Ð¾Ð¶Ð½Ð¾ Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼Ð¸ÑÑÑÑ Ð² 
ÑÐµÐºÐ¾Ð¼ÐµÐ½Ð´Ð°ÑÐ¸Ð¸ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸Ð¸ Ð¿Ð¾ ÑÐ»ÐµÐ´ÑÑÑÐµÐ¼Ñ 
Ð°Ð´ÑÐµÑÑ:
 <a 
href="https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt";>https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt</a></p>
 
- -<p>For the oldstable distribution (jessie), this problem has been fixed
- -in version 4.84.2-2+deb8u4.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (jessie) ÑÑÐ° 
Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð°
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 4.84.2-2+deb8u4.</p>
 
- -<p>For the stable distribution (stretch), this problem has been fixed in
- -version 4.89-2+deb9u1.</p>
+<p>Ð ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (stretch) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 4.89-2+deb9u1.</p>
 
- -<p>For the unstable distribution (sid), this problem will be fixed soon.</p>
+<p>Ð Ð½ÐµÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (sid) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ´ÐµÑ Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð¿Ð¾Ð·Ð¶Ðµ.</p>
 
- -<p>We recommend that you upgrade your exim4 packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´ÑÐµÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ exim4.</p>
 </define-tag>
 
 # do not modify the following line
- --- english/security/2017/dsa-3889.wml        2017-06-19 22:03:47.000000000 
+0500
+++ russian/security/2017/dsa-3889.wml  2017-06-20 17:17:50.432130821 +0500
@@ -1,26 +1,27 @@
- -<define-tag description>security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ 
Ð±ÐµÐ·Ð¾Ð¿Ð°ÑÐ½Ð¾ÑÑÐ¸</define-tag>
 <define-tag moreinfo>
- -<p>libffi, a library used to call code written in one language from code 
written
- -in a different language, was enforcing an executable stack on the i386
- -architecture. While this might not be considered a vulnerability by itself,
- -this could be leveraged when exploiting other vulnerabilities, like for 
example
- -the <q>stack clash</q> class of vulnerabilities discovered by Qualys 
Research Labs.
- -For the full details, please refer to their advisory published at:
+<p>libffi, Ð±Ð¸Ð±Ð»Ð¸Ð¾ÑÐµÐºÐ° Ð´Ð»Ñ Ð²ÑÐ·Ð¾Ð²Ð° ÐºÐ¾Ð´Ð°, 
Ð½Ð°Ð¿Ð¸ÑÐ°Ð½Ð½Ð¾Ð³Ð¾ Ð½Ð° Ð¾Ð´Ð½Ð¾Ð¼ ÑÐ·ÑÐºÐµ, Ð¸Ð· ÐºÐ¾Ð´Ð°, 
Ð½Ð°Ð¿Ð¸ÑÐ°Ð½Ð½Ð¾Ð³Ð¾
+Ð½Ð° Ð´ÑÑÐ³Ð¾Ð¼ ÑÐ·ÑÐºÐµ, Ð¿ÑÐ¸Ð½ÑÐ´Ð¸ÑÐµÐ»ÑÐ½Ð¾ 
ÑÑÑÐ°Ð½Ð°Ð²Ð»Ð¸Ð²Ð°ÐµÑ Ð¸ÑÐ¿Ð¾Ð»Ð½ÑÐµÐ¼ÑÐ¹ ÑÑÐµÐº Ð½Ð° Ð°ÑÑ
Ð¸ÑÐµÐºÑÑÑÐµ
+i386. Ð¥Ð¾ÑÑ ÑÐ°Ð¼Ð¾ Ð¿Ð¾ ÑÐµÐ±Ðµ ÑÑÐ¾ Ð½Ðµ ÑÐ²Ð»ÑÐµÑÑÑ 
ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÑÑ,
+ÑÑÐ¾ Ð¼Ð¾Ð¶ÐµÑ ÑÐ¿Ð¾ÑÐ¾Ð±ÑÑÐ²Ð¾Ð²Ð°ÑÑ Ð¸ÑÐ¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ 
Ð´ÑÑÐ³Ð¸Ñ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐµÐ¹. ÐÐ°Ð¿ÑÐ¸Ð¼ÐµÑ, ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐµÐ¹
+ÑÐ¸Ð¿Ð° <q>Ð¿Ð¾ÑÑÐ¸ ÑÑÐµÐºÐ°</q>, ÐºÐ¾ÑÐ¾ÑÑÐµ Ð±ÑÐ»Ð¸ 
Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ñ ÑÐ¾ÑÑÑÐ´Ð½Ð¸ÐºÐ°Ð¼Ð¸ Qualys Research Labs.
+Ð¡ Ð¿Ð¾Ð´ÑÐ¾Ð±Ð½Ð¾ÑÑÑÐ¼Ð¸ Ð¼Ð¾Ð¶Ð½Ð¾ Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼Ð¸ÑÑÑÑ Ð² 
ÑÐµÐºÐ¾Ð¼ÐµÐ½Ð´Ð°ÑÐ¸Ð¸ ÐºÐ¾Ð¼Ð¿Ð°Ð½Ð¸Ð¸ Ð¿Ð¾ ÑÐ»ÐµÐ´ÑÑÑÐµÐ¼Ñ 
Ð°Ð´ÑÐµÑÑ:
 <a 
href="https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt";>https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt</a></p>
 
- -<p>For the oldstable distribution (jessie), this problem has been fixed
- -in version 3.1-2+deb8u1.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (jessie) ÑÑÐ° 
Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð°
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 3.1-2+deb8u1.</p>
 
- -<p>For the stable distribution (stretch), this problem has been fixed in
- -version 3.2.1-4.</p>
+<p>Ð ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾ Ð²ÑÐ¿ÑÑÐºÐµ (stretch) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 3.2.1-4.</p>
 
- -<p>For the testing distribution (buster), this problem has been fixed
- -in version 3.2.1-4.</p>
+<p>Ð ÑÐµÑÑÐ¸ÑÑÐµÐ¼Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (buster) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð°
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 3.2.1-4.</p>
 
- -<p>For the unstable distribution (sid), this problem has been fixed in
- -version 3.2.1-4.</p>
+<p>Ð Ð½ÐµÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (sid) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 3.2.1-4.</p>
 
- -<p>We recommend that you upgrade your libffi packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´ÑÐµÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ libffi.</p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----

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=Fwu6
-----END PGP SIGNATURE-----

[DONE] wml://security/2017/dsa-388{7,8,9}.wml

Ответить