-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- ../../english/security/2018/dsa-4182.wml 2018-04-29 00:35:42.000000000 +0500 +++ 2018/dsa-4182.wml 2018-04-29 00:34:56.602822577 +0500 @@ -1,270 +1,270 @@ - -<define-tag description>security update</define-tag> +#use wml::debian::translation-check translation="1.2" mindelta="1" maintainer="Lev Lamberov" +<define-tag description>обновление безопаÑноÑÑи</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities have been discovered in the chromium web browser.</p> +<p>Рвеб-бÑаÑзеÑе chromium бÑло обнаÑÑжено неÑколÑко ÑÑзвимоÑÑей.</p> <ul> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6056";>CVE-2018-6056</a> - - <p>lokihardt discovered an error in the v8 javascript library.</p></li> + <p>lokihardt обнаÑÑжил оÑÐ¸Ð±ÐºÑ Ð² javascript-библиоÑеке v8.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6057";>CVE-2018-6057</a> - - <p>Gal Beniamini discovered errors related to shared memory permissions.</p></li> + <p>Ðал Ðениамини обнаÑÑжил оÑибки, ÑвÑзаннÑе Ñ Ð¿Ñавами доÑÑÑпа к ÑазделÑемой памÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6060";>CVE-2018-6060</a> - - <p>Omair discovered a use-after-free issue in blink/webkit.</p></li> + <p>Omair обнаÑÑжил в blink/webkit иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6061";>CVE-2018-6061</a> - - <p>Guang Gong discovered a race condition in the v8 javascript library.</p></li> + <p>ÐÑан Ðон обнаÑÑжил ÑоÑÑоÑние гонки в javascript-библиоÑеке v8.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6062";>CVE-2018-6062</a> - - <p>A heap overflow issue was discovered in the v8 javascript library.</p></li> + <p>Ð javascript-библиоÑеке v8 бÑло обнаÑÑжено пеÑеполнение динамиÑеÑкой памÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6063";>CVE-2018-6063</a> - - <p>Gal Beniamini discovered errors related to shared memory permissions.</p></li> + <p>Ðал Ðениамини обнаÑÑжил оÑибки, ÑвÑзаннÑе Ñ Ð¿Ñавами доÑÑÑпа к ÑазделÑемой памÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6064";>CVE-2018-6064</a> - - <p>lokihardt discovered a type confusion error in the v8 javascript - - library.</p></li> + <p>lokihardt обнаÑÑжил ÑмеÑение Ñипов в javascript-библиоÑеке + v8.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6065";>CVE-2018-6065</a> - - <p>Mark Brand discovered an integer overflow issue in the v8 javascript - - library.</p></li> + <p>ÐаÑк ÐÑан обнаÑÑжил пеÑеполнение ÑелÑÑ ÑиÑел в javascript-библиоÑеке + v8.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6066";>CVE-2018-6066</a> - - <p>Masato Kinugawa discovered a way to bypass the Same Origin Policy.</p></li> + <p>ÐаÑаÑо ÐинÑгава обнаÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6067";>CVE-2018-6067</a> - - <p>Ned Williamson discovered a buffer overflow issue in the skia library.</p></li> + <p>ÐÑд УилÑÑмÑон обнаÑÑжил пеÑеполнение бÑÑеÑа в библиоÑеке skia.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6068";>CVE-2018-6068</a> - - <p>Luan Herrera discovered object lifecycle issues.</p></li> + <p>ÐÑан ÐеÑÑеÑа обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¶Ð¸Ð·Ð½ÐµÐ½Ð½Ñм Ñиклом обÑекÑов.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6069";>CVE-2018-6069</a> - - <p>Wanglu and Yangkang discovered a stack overflow issue in the skia - - library.</p></li> + <p>Wanglu и Yangkang обнаÑÑжили пеÑеполнение ÑÑека в библиоÑеке + skia.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6070";>CVE-2018-6070</a> - - <p>Rob Wu discovered a way to bypass the Content Security Policy.</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила безопаÑноÑÑи ÑодеÑжимого.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6071";>CVE-2018-6071</a> - - <p>A heap overflow issue was discovered in the skia library.</p></li> + <p>РбиблиоÑеке skia бÑло обнаÑÑжено пеÑеполнение динамиÑеÑкой памÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6072";>CVE-2018-6072</a> - - <p>Atte Kettunen discovered an integer overflow issue in the pdfium - - library.</p></li> + <p>ÐÑÑе ÐеÑÑÑнен обнаÑÑжил пеÑеполнение ÑелÑÑ ÑиÑел в библиоÑеке + pdfium.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6073";>CVE-2018-6073</a> - - <p>Omair discover a heap overflow issue in the WebGL implementation.</p></li> + <p>Omair обнаÑÑжил пеÑеполнение динамиÑеÑкой памÑÑи в ÑеализаÑии WebGL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6074";>CVE-2018-6074</a> - - <p>Abdulrahman Alqabandi discovered a way to cause a downloaded web page - - to not contain a Mark of the Web.</p></li> + <p>ÐбдÑлÑÐ°Ñ Ð¼Ð°Ð½ ÐлÑкабанди обнаÑÑжил ÑпоÑоб вÑзова ÑиÑÑаÑии, когда на загÑÑженной веб-ÑÑÑаниÑе + оÑÑÑÑÑÑÐ²ÐµÑ Ð²ÐµÐ±-меÑка безопаÑноÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6075";>CVE-2018-6075</a> - - <p>Inti De Ceukelaire discovered a way to bypass the Same Origin Policy.</p></li> + <p>ÐнÑи Ðе ÐеÑкела обнаÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6076";>CVE-2018-6076</a> - - <p>Mateusz Krzeszowiec discovered that URL fragment identifiers could be - - handled incorrectly.</p></li> + <p>ÐаÑеÑÑ ÐÑеÑÐ¾Ð²ÐµÑ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо иденÑиÑикаÑоÑÑ ÑÑагменÑов, ÑодеÑжаÑÐ¸Ñ URL, + могÑÑ Ð¾Ð±ÑабаÑÑваÑÑÑÑ Ð½ÐµÐºÐ¾ÑÑекÑно.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6077";>CVE-2018-6077</a> - - <p>Khalil Zhani discovered a timing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð¿Ñи ÑÐ¸Ð½Ñ ÑонизаÑии ÑобÑÑий.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6078";>CVE-2018-6078</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6079";>CVE-2018-6079</a> - - <p>Ivars discovered an information disclosure issue.</p></li> + <p>Ivars обнаÑÑжил ÑаÑкÑÑÑие инÑоÑмаÑии.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6080";>CVE-2018-6080</a> - - <p>Gal Beniamini discovered an information disclosure issue.</p></li> + <p>Ðал Ðениамини обнаÑÑжил ÑаÑкÑÑÑие инÑоÑмаÑии.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6081";>CVE-2018-6081</a> - - <p>Rob Wu discovered a cross-site scripting issue.</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил межÑайÑовÑй ÑкÑипÑинг.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6082";>CVE-2018-6082</a> - - <p>WenXu Wu discovered a way to bypass blocked ports.</p></li> + <p>ÐÐµÐ½Ð¨Ñ ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° заблокиÑованнÑÑ Ð¿Ð¾ÑÑов.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6083";>CVE-2018-6083</a> - - <p>Jun Kokatsu discovered that AppManifests could be handled incorrectly.</p></li> + <p>ÐжÑн ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо AppManifest могÑÑ Ð¾Ð±ÑабаÑÑваÑÑÑÑ Ð½ÐµÐºÐ¾ÑÑекÑно.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6085";>CVE-2018-6085</a> - - <p>Ned Williamson discovered a use-after-free issue.</p></li> + <p>ÐÑд УилÑÑмÑон обнаÑÑжил иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6086";>CVE-2018-6086</a> - - <p>Ned Williamson discovered a use-after-free issue.</p></li> + <p>ÐÑд УилÑÑмÑон обнаÑÑжил иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6087";>CVE-2018-6087</a> - - <p>A use-after-free issue was discovered in the WebAssembly implementation.</p></li> + <p>Ð ÑеализаÑии WebAssembly бÑло обнаÑÑжено иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6088";>CVE-2018-6088</a> - - <p>A use-after-free issue was discovered in the pdfium library.</p></li> + <p>РбиблиоÑеке pdfium бÑло обнаÑÑжено иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6089";>CVE-2018-6089</a> - - <p>Rob Wu discovered a way to bypass the Same Origin Policy.</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6090";>CVE-2018-6090</a> - - <p>ZhanJia Song discovered a heap overflow issue in the skia library.</p></li> + <p>ÐанÐжи Сон обнаÑÑжил пеÑеполнение динамиÑеÑкой памÑÑи в библиоÑеке skia.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6091";>CVE-2018-6091</a> - - <p>Jun Kokatsu discovered that plugins could be handled incorrectly.</p></li> + <p>ÐжÑн ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо Ð´Ð¾Ð¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¼Ð¾Ð³ÑÑ Ð¾Ð±ÑабаÑÑваÑÑÑÑ Ð½ÐµÐºÐ¾ÑÑекÑно.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6092";>CVE-2018-6092</a> - - <p>Natalie Silvanovich discovered an integer overflow issue in the - - WebAssembly implementation.</p></li> + <p>ÐаÑали СилÑÐ²Ð°Ð½Ð¾Ð²Ð¸Ñ Ð¾Ð±Ð½Ð°ÑÑжила пеÑеполнение ÑелÑÑ ÑиÑел в + ÑеализаÑии WebAssembly.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6093";>CVE-2018-6093</a> - - <p>Jun Kokatsu discovered a way to bypass the Same Origin Policy.</p></li> + <p>ÐжÑн ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила одного иÑÑоÑника.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6094";>CVE-2018-6094</a> - - <p>Chris Rohlf discovered a regression in garbage collection hardening.</p></li> + <p>ÐÑÐ¸Ñ Ð Ð¾Ð»ÑÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑегÑеÑÑÐ¸Ñ Ð² ÑÑилении безопаÑноÑÑи ÑбоÑÑика мÑÑоÑа.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6095";>CVE-2018-6095</a> - - <p>Abdulrahman Alqabandi discovered files could be uploaded without user - - interaction.</p></li> + <p>ÐбдÑлÑÐ°Ñ Ð¼Ð°Ð½ ÐлÑкабанди обнаÑÑжил, ÑÑо ÑÐ°Ð¹Ð»Ñ Ð¼Ð¾Ð³ÑÑ Ð±ÑÑÑ Ð·Ð°Ð³ÑÑÐ¶ÐµÐ½Ñ Ð±ÐµÐ· + взаимодейÑÑÐ²Ð¸Ñ Ñ Ð¿Ð¾Ð»ÑзоваÑелем.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6096";>CVE-2018-6096</a> - - <p>WenXu Wu discovered a user interface spoofing issue.</p></li> + <p>ÐÐµÐ½Ð¨Ñ ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ инÑеÑÑейÑа полÑзоваÑелÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6097";>CVE-2018-6097</a> - - <p>xisigr discovered a user interface spoofing issue.</p></li> + <p>xisigr обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ инÑеÑÑейÑа полÑзоваÑелÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6098";>CVE-2018-6098</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6099";>CVE-2018-6099</a> - - <p>Jun Kokatsu discovered a way to bypass the Cross Origin Resource - - Sharing mechanism.</p></li> + <p>ÐжÑн ÐокаÑÑÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° Ð¼ÐµÑ Ð°Ð½Ð¸Ð·Ð¼Ð° ÑÐ°Ð·Ð´ÐµÐ»ÐµÐ½Ð¸Ñ ÑеÑÑÑÑов Ð¼ÐµÐ¶Ð´Ñ + иÑÑоÑниками.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6100";>CVE-2018-6100</a> - - <p>Lnyas Zhang discovered a URL spoofing issue.</p></li> + <p>Lnyas Zhang обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6101";>CVE-2018-6101</a> - - <p>Rob Wu discovered an issue in the developer tools remote debugging - - protocol.</p></li> + <p>Роб ÐÑ Ð¾Ð±Ð½Ð°ÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² пÑоÑоколе ÑдалÑнной оÑладки из инÑÑÑÑменÑов + ÑазÑабоÑÑика.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6102";>CVE-2018-6102</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6103";>CVE-2018-6103</a> - - <p>Khalil Zhani discovered a user interface spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ инÑеÑÑейÑа полÑзоваÑелÑ.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6104";>CVE-2018-6104</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6105";>CVE-2018-6105</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6106";>CVE-2018-6106</a> - - <p>lokihardt discovered that v8 promises could be handled incorrectly.</p></li> + <p>lokihardt обнаÑÑжил, ÑÑо обеÑÐ°Ð½Ð¸Ñ Ð°ÑÐ¸Ð½Ñ Ñонного вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð² v8 могÑÑ Ð¾Ð±ÑабаÑÑваÑÑÑÑ Ð½ÐµÐºÐ¾ÑÑекÑно.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6107";>CVE-2018-6107</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6108";>CVE-2018-6108</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6109";>CVE-2018-6109</a> - - <p>Dominik Weber discovered a way to misuse the FileAPI feature.</p></li> + <p>Ðоминик ÐÐµÐ±ÐµÑ Ð¾Ð±Ð½Ð°ÑÑжил ÑпоÑоб вÑедоноÑного иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð²Ð¾Ð·Ð¼Ð¾Ð¶Ð½Ð¾ÑÑи FileAPI.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6110";>CVE-2018-6110</a> - - <p>Wenxiang Qian discovered that local plain text files could be handled - - incorrectly.</p></li> + <p>ÐенÑÑÐ½Ñ Ð¦ÑÐ½Ñ Ð¾Ð±Ð½Ð°ÑÑжил, ÑÑо локалÑнÑе ÑÐ°Ð¹Ð»Ñ Ð² ÑоÑмаÑе обÑÑного ÑекÑÑа могÑÑ Ð¾Ð±ÑабаÑÑваÑÑÑÑ + некоÑÑекÑно.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6111";>CVE-2018-6111</a> - - <p>Khalil Zhani discovered a use-after-free issue in the developer tools.</p></li> + <p>Халил Ðани обнаÑÑжил иÑполÑзование ÑказаÑелей поÑле оÑÐ²Ð¾Ð±Ð¾Ð¶Ð´ÐµÐ½Ð¸Ñ Ð¿Ð°Ð¼ÑÑи в инÑÑÑÑменÑÐ°Ñ ÑазÑабоÑÑика.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6112";>CVE-2018-6112</a> - - <p>Khalil Zhani discovered incorrect handling of URLs in the developer - - tools.</p></li> + <p>Халил Ðани обнаÑÑжил некоÑÑекÑнÑÑ Ð¾Ð±ÑабоÑÐºÑ URL в инÑÑÑÑменÑÐ°Ñ + ÑазÑабоÑÑика.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6113";>CVE-2018-6113</a> - - <p>Khalil Zhani discovered a URL spoofing issue.</p></li> + <p>Халил Ðани обнаÑÑжил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ñ Ð¿Ð¾Ð´Ð´ÐµÐ»ÐºÐ¾Ð¹ URL.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6114";>CVE-2018-6114</a> - - <p>Lnyas Zhang discovered a way to bypass the Content Security Policy.</p></li> + <p>Lnyas Zhang обнаÑÑжил ÑпоÑоб Ð¾Ð±Ñ Ð¾Ð´Ð° пÑавила безопаÑноÑÑи ÑодеÑжимого.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6116";>CVE-2018-6116</a> - - <p>Chengdu Security Response Center discovered an error when memory - - is low.</p></li> + <p>СоÑÑÑдники Chengdu Security Response Center обнаÑÑжили оÑибкÑ, возникаÑÑÑÑ Ð¿Ñи + неболÑÑом обÑÑме доÑÑÑпной памÑÑи.</p></li> <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-6117";>CVE-2018-6117</a> - - <p>Spencer Dailey discovered an error in form autofill settings.</p></li> + <p>СпенÑÐµÑ ÐÑйли обнаÑÑжил оÑÐ¸Ð±ÐºÑ Ð² наÑÑÑÐ¾Ð¹ÐºÐ°Ñ Ð°Ð²ÑÐ¾Ð·Ð°Ð¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ ÑоÑм.</p></li> </ul> - -<p>For the oldstable distribution (jessie), security support for chromium - -has been discontinued.</p> +<p>РпÑедÑдÑÑем ÑÑабилÑном вÑпÑÑке (jessie) поддеÑжка безопаÑноÑÑи Ð´Ð»Ñ Ð¿Ð°ÐºÐµÑа chromium +бÑла пÑекÑаÑена.</p> - -<p>For the stable distribution (stretch), these problems have been fixed in +<p>Ð ÑÑабилÑном вÑпÑÑке (stretch) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² version 66.0.3359.117-1~deb9u1.</p> - -<p>We recommend that you upgrade your chromium-browser packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ chromium-browser.</p> - -<p>For the detailed security status of chromium-browser please refer to - -its security tracker page at: +<p>С подÑобнÑм ÑÑаÑÑÑом поддеÑжки безопаÑноÑÑи chromium-browser можно ознакомиÑÑÑÑ Ð½Ð° +ÑооÑвеÑÑÑвÑÑÑей ÑÑÑаниÑе оÑÑÐ»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ Ð±ÐµÐ·Ð¾Ð¿Ð°ÑноÑÑи по адÑеÑÑ: <a href="https://security-tracker.debian.org/tracker/chromium-browser";>\ https://security-tracker.debian.org/tracker/chromium-browser</a></p> </define-tag> # do not modify the following line #include "$(ENGLISHDIR)/security/2018/dsa-4182.data" - -# $Id: dsa-4182.wml,v 1.2 2018/04/28 19:35:42 dogsleg Exp $ -----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEE3mumcdV9mwCc9oZQXudu4gIW0qUFAlrkzSQACgkQXudu4gIW 0qV0zRAAn75CMuvpaIX8Icn65obWJNHINnr8cmzdot8nPmS7CxCDyAhxpq7NtD82 Pg6XC2ohRmWWA+PK1unnJYHgkfTBqv3ejpfMA31Lj8TxSoGxZsnA1tL7vyiz5ATM lAgqzjMxVYD1OFq260goilTHNycuz2hWtoopnTCEcw4Sy8ObeLmtrRAKIqpjv+BE BqcosWzuHoIUTrzPAJNx7ykTUrxsG7cxN7iFisCI4k5ACKZyf9nkW+s5Lp+6Rxr6 QiZnP3z+PwdMTizfAgj0Eg0VzmjaB8Dvh7kyNR7d4oBZEtjKWdPfBc63TfmOabCC FS3kC4aduq0A+wp0kHNbgCrTQXHrm8XDbDiToniFKAHgM8dxy70ZoSILLcgfF+p0 lmJQtn13p4epi1r4ZIq/yvmb1fp6o6jCQ7yancbxXWCLmgblahgxchgoh0HpbLtQ e5KeOPC/VF5ElHr0qDzIs4LyjdRcYlPWtX2jwpAES/qoFFV2wflIS2XCy2qsfYnc 51CWWPUeNjD+lQisWchzkKqDRnO9V8sTsib5sDsvLgJOHgF1R9c3xb1+jBi76ps4 6nrvKUASCuxoxafxKT9DU/NEualwuu0jzIQ9HL+2eG5pAA7WLgdRQ7bhPdlhWf3a l0YnEHB3MMGM1BgkN7RWzZte4Z9PeyT4AfIg/Za5EG7JnYxhBXU= =epUB -----END PGP SIGNATURE-----
