dsa-2313.wml}

Lev Lamberov Thu, 01 Mar 2018 01:59:40 -0800

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2011/dsa-2313.wml        2017-11-01 10:11:10.283841606 
+0500
+++ russian/security/2011/dsa-2313.wml  2018-03-01 14:58:41.684203169 +0500
@@ -1,54 +1,55 @@
- -<define-tag description>several vulnerabilities</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>Ð½ÐµÑÐºÐ¾Ð»ÑÐºÐ¾ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐµÐ¹</define-tag>
 <define-tag moreinfo>
 
- -<p>Several vulnerabilities have been found in Iceweasel, a web browser
- -based on Firefox:</p>
+<p>Ð Iceweasel, Ð²ÐµÐ±-Ð±ÑÐ°ÑÐ·ÐµÑÐµ Ð½Ð° Ð¾ÑÐ½Ð¾Ð²Ðµ Firefox, Ð±ÑÐ»Ð¾ 
Ð¾Ð±Ð½Ð°ÑÑÐ¶ÐµÐ½Ð¾
+Ð½ÐµÑÐºÐ¾Ð»ÑÐºÐ¾ ÑÑÐ·Ð²Ð¸Ð¼Ð¾ÑÑÐµÐ¹:</p>
 
 <ul>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2011-2372";>CVE-2011-2372</a>
 
- -   <p>Mariusz Mlynski discovered that websites could open a download
- -   dialog âÂ which has <q>open</q> as the default actionÂ â, while a user
- -   presses the ENTER key.</p></li>
+   <p>ÐÐ°ÑÐ¸ÑÑ ÐÐ»Ð¸Ð½ÑÐºÐ¸Ð¹ Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ 
Ð²ÐµÐ±-ÑÐ°Ð¹ÑÑ Ð¼Ð¾Ð³ÑÑ Ð¾ÑÐºÑÑÐ²Ð°ÑÑ Ð´Ð¸Ð°Ð»Ð¾Ð³ Ð·Ð°Ð³ÑÑÐ·ÐºÐ¸,
+   Ð² ÐºÐ¾ÑÐ¾ÑÐ¾Ð¼ Ð´ÐµÐ¹ÑÑÐ²Ð¸ÐµÐ¼ Ð¿Ð¾ ÑÐ¼Ð¾Ð»ÑÐ°Ð½Ð¸Ñ 
ÑÐ²Ð»ÑÐµÑÑÑ <q>Ð¾ÑÐºÑÑÑÑ</q>, ÐºÐ¾Ð³Ð´Ð° Ð¿Ð¾Ð»ÑÐ·Ð¾Ð²Ð°ÑÐµÐ»Ñ
+   Ð½Ð°Ð¶Ð¸Ð¼Ð°ÐµÑ ÐºÐ»Ð°Ð²Ð¸ÑÑ ENTER.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2011-2995";>CVE-2011-2995</a>
 
- -   <p>Benjamin Smedberg, Bob Clary and Jesse Ruderman discovered crashes
- -   in the rendering engine, which could lead to the execution of
- -   arbitrary code.</p></li>
+   <p>ÐÐµÐ½Ð´Ð¶Ð°Ð¼Ð¸Ð½ Ð¡Ð¼ÐµÐ´Ð±ÐµÑÐ³, ÐÐ¾Ð± ÐÐ»ÑÑÐ¸ Ð¸ ÐÐ¶ÐµÑÑ Ð 
Ð°Ð´ÐµÑÐ¼Ð°Ð½ Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð»Ð¸ ÑÐ»ÑÑÐ°Ð¸ Ð°Ð²Ð°ÑÐ¸Ð¹Ð½Ð¾Ð¹
+   Ð¾ÑÑÐ°Ð½Ð¾Ð²ÐºÐ¸ Ð² Ð´Ð²Ð¸Ð¶ÐºÐµ Ð¾ÑÑÐ¸ÑÐ¾Ð²ÐºÐ¸, ÐºÐ¾ÑÐ¾ÑÑÐµ 
Ð¼Ð¾Ð³ÑÑ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ
+   Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½Ð¾Ð³Ð¾ ÐºÐ¾Ð´Ð°.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2011-2998";>CVE-2011-2998</a>
 
- -   <p>Mark Kaplan discovered an integer underflow in the JavaScript
- -   engine, which could lead to the execution of arbitrary code.</p></li>
+   <p>ÐÐ°ÑÐº ÐÐ°Ð¿Ð»Ð°Ð½ Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð» Ð¾ÑÑÐ¸ÑÐ°ÑÐµÐ»ÑÐ½Ð¾Ðµ 
Ð¿ÐµÑÐµÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ðµ ÑÐµÐ»ÑÑ ÑÐ¸ÑÐ»Ðµ Ð² Ð´Ð²Ð¸Ð¶ÐºÐµ
+   JavaScript, ÐºÐ¾ÑÐ¾ÑÐ¾Ðµ Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº 
Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½Ð¾Ð³Ð¾ ÐºÐ¾Ð´Ð°.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2011-2999";>CVE-2011-2999</a>
 
- -   <p>Boris Zbarsky discovered that incorrect handling of the
- -   window.location object could lead to bypasses of the same-origin
- -   policy.</p></li>
+   <p>ÐÐ¾ÑÐ¸Ñ ÐÐ±Ð°ÑÑÐºÐ¸Ð¹ Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ 
Ð½ÐµÐ¿ÑÐ°Ð²Ð¸Ð»ÑÐ½Ð°Ñ Ð¾Ð±ÑÐ°Ð±Ð¾ÑÐºÐ° Ð¾Ð±ÑÐµÐºÑÐ°
+   window.location Ð¼Ð¾Ð¶ÐµÑ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº Ð¾Ð±ÑÐ¾Ð´Ñ 
Ð¿ÑÐ°Ð²Ð¸Ð»Ð° Ð¾Ð´Ð½Ð¾Ð³Ð¾
+   Ð¸ÑÑÐ¾ÑÐ½Ð¸ÐºÐ°.</p></li>
 
 <li><a 
href="https://security-tracker.debian.org/tracker/CVE-2011-3000";>CVE-2011-3000</a>
 
- -   <p>Ian Graham discovered that multiple Location headers might lead to
- -   CRLF injection.</p></li>
+   <p>ÐÑÐ½ ÐÑÑÑÑÐ¼ Ð¾Ð±Ð½Ð°ÑÑÐ¶Ð¸Ð», ÑÑÐ¾ 
Ð¼Ð½Ð¾Ð¶ÐµÑÑÐ²ÐµÐ½Ð½ÑÐµ Ð·Ð°Ð³Ð¾Ð»Ð¾Ð²ÐºÐ¸ Location Ð¼Ð¾Ð³ÑÑ 
Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº
+   CRLF-Ð¸Ð½ÑÐµÐºÑÐ¸Ð¸.</p></li>
 
 </ul>
 
- -<p>For the oldstable distribution (lenny), this problem has been fixed in
- -version 1.9.0.19-14 of the xulrunner source package. This update also
- -marks the compromised DigiNotar root certs as revoked rather then
- -untrusted.</p>
- -
- -<p>For the stable distribution (squeeze), this problem has been fixed
- -in version 3.5.16-10. This update also marks the compromised DigiNotar
- -root certs as revoked rather then untrusted.</p>
+<p>Ð Ð¿ÑÐµÐ´ÑÐ´ÑÑÐµÐ¼ ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (lenny) ÑÑÐ° 
Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 1.9.0.19-14 Ð¿Ð°ÐºÐµÑÐ° Ñ Ð¸ÑÑÐ¾Ð´Ð½ÑÐ¼ ÐºÐ¾Ð´Ð¾Ð¼ 
xulrunner. ÐÑÐ¾Ð¼Ðµ ÑÐ¾Ð³Ð¾, Ð² Ð´Ð°Ð½Ð½Ð¾Ð¼
+Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ð¸ ÐºÐ¾ÑÐ½ÐµÐ²ÑÐµ ÑÐµÑÑÐ¸ÑÐ¸ÐºÐ°ÑÑ DigiNotar 
Ð±ÑÐ»Ð¸ Ð¾ÑÐ¼ÐµÑÐµÐ½Ñ ÐºÐ°Ðº Ð¾ÑÐ¾Ð·Ð²Ð°Ð½Ð½ÑÐµ,
+Ð° Ð½Ðµ ÐºÐ°Ðº Ð½ÐµÐ´Ð¾Ð²ÐµÑÐµÐ½Ð½ÑÐµ.</p>
+
+<p>Ð ÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (squeeze) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð°
+Ð² Ð²ÐµÑÑÐ¸Ð¸ 3.5.16-10. ÐÑÐ¾Ð¼Ðµ ÑÐ¾Ð³Ð¾, Ð² Ð´Ð°Ð½Ð½Ð¾Ð¼ 
Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ð¸ ÑÐºÐ¾Ð¼Ð¿ÑÐ¾Ð¼ÐµÑÐ¸ÑÐ¾Ð²Ð°Ð½Ð½ÑÐµ
+ÐºÐ¾ÑÐ½ÐµÐ²ÑÐµ ÑÐµÑÑÐ¸ÑÐ¸ÐºÐ°ÑÑ DigiNotar Ð±ÑÐ»Ð¸ Ð¾ÑÐ¼ÐµÑÐµÐ½Ñ 
ÐºÐ°Ðº Ð¾ÑÐ¾Ð·Ð²Ð°Ð½Ð½ÑÐµ, Ð° Ð½Ðµ ÐºÐ°Ðº Ð½ÐµÐ´Ð¾Ð²ÐµÑÐµÐ½Ð½ÑÐµ.</p>
 
- -<p>For the unstable distribution (sid), this problem has been fixed in
- -version 7.0-1.</p>
+<p>Ð Ð½ÐµÑÑÐ°Ð±Ð¸Ð»ÑÐ½Ð¾Ð¼ Ð²ÑÐ¿ÑÑÐºÐµ (sid) ÑÑÐ° Ð¿ÑÐ¾Ð±Ð»ÐµÐ¼Ð° 
Ð±ÑÐ»Ð° Ð¸ÑÐ¿ÑÐ°Ð²Ð»ÐµÐ½Ð° Ð²
+Ð²ÐµÑÑÐ¸Ð¸ 7.0-1.</p>
 
- -<p>We recommend that you upgrade your iceweasel packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´ÑÐµÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ iceweasel.</p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----

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=1uJt
-----END PGP SIGNATURE-----

[DONE] wml://{security/2011/dsa-2313.wml}

Ответить