[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[DONE] wml://security/2015/dla-{314,366,250}.wml

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2015/dla-250.wml	2016-04-07 03:10:35.000000000 +0500
+++ russian/security/2015/dla-250.wml	2016-04-26 21:41:55.125637387 +0500
@@ -1,16 +1,17 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>обновление безопаÑ?ноÑ?Ñ?и LTS</define-tag>
 <define-tag moreinfo>
- -<p>Upstream published version 0.98.5.  This update updates sqeeze-lts to the
- -latest upstream release in line with the approach used for other Debian
- -releases.</p>
+<p>Ð?вÑ?оÑ?Ñ? оÑ?новной веÑ?ки Ñ?азÑ?абоÑ?ки вÑ?пÑ?Ñ?Ñ?или веÑ?Ñ?иÑ? 0.98.5.  Ð?анное обновление обновлÑ?еÑ? sqeeze-lts
+до наиболее Ñ?вежего вÑ?пÑ?Ñ?ка из оÑ?новной веÑ?ки Ñ?азÑ?абоÑ?ки, Ñ?Ñ?о Ñ?оглаÑ?Ñ?еÑ?Ñ?Ñ? Ñ? обÑ?им подÑ?одом, иÑ?полÑ?зÑ?емом
+длÑ? дÑ?Ñ?гиÑ? вÑ?пÑ?Ñ?ков Debian.</p>
 
- -<p>This update corrects a double-free error that existed within the
- -"unrar_extract_next_prepare()" function (libclamunrar_iface/unrar_iface.c)
- -when parsing a RAR file.  While no CVE was assigned, this issue does have
- -potential security implications.</p>
+<p>Ð?анное обновление иÑ?пÑ?авлÑ?еÑ? оÑ?ибкÑ? Ñ? двойнÑ?м оÑ?вобождением памÑ?Ñ?и, коÑ?оÑ?аÑ? пÑ?иÑ?Ñ?Ñ?Ñ?Ñ?вÑ?еÑ? в
+Ñ?Ñ?нкÑ?ии "unrar_extract_next_prepare()" (libclamunrar_iface/unrar_iface.c) и возникаеÑ?
+пÑ?и гÑ?аммаÑ?иÑ?еÑ?ком Ñ?азбоÑ?е Ñ?айлов RAR.  ХоÑ?Ñ? иденÑ?иÑ?икаÑ?оÑ? CVE Ñ?Ñ?ой пÑ?облеме не бÑ?л назнаÑ?ен, даннаÑ? Ñ?Ñ?звимоÑ?Ñ?Ñ?
+поÑ?енÑ?иалÑ?но можеÑ? повлиÑ?Ñ?Ñ? на безопаÑ?ноÑ?Ñ?Ñ?.</p>
 
- -<p>If you use libclamunrar, we strongly recommend that you upgrade to this
- -version.</p>
+<p>Ð?Ñ?ли вÑ? иÑ?полÑ?зÑ?еÑ?е libclamunrar, наÑ?Ñ?оÑ?Ñ?елÑ?но Ñ?екомендÑ?ем вÑ?полниÑ?Ñ? обновление до
+Ñ?казанной веÑ?Ñ?ии.</p>
 </define-tag>
 
 # do not modify the following line
- --- english/security/2015/dla-314.wml	2016-04-07 03:10:36.000000000 +0500
+++ russian/security/2015/dla-314.wml	2016-04-26 21:35:25.880546421 +0500
@@ -1,13 +1,14 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov"
+<define-tag description>обновление безопаÑ?ноÑ?Ñ?и LTS</define-tag>
 <define-tag moreinfo>
- -<p>Petr Sklenar of Red Hat discovered that the texttopdf tool, part of cups
- -filters, was susceptible to multiple heap-based buffer and integer overflows
- -due to improper handling of print jobs. This could allow remote attackers to
- -crash texttopdf or possibly execute arbitrary code.</p>
+<p>Ð?еÑ?Ñ? СкленаÑ? из Red Hat обнаÑ?Ñ?жил, Ñ?Ñ?о инÑ?Ñ?Ñ?Ñ?менÑ? texttopdf, Ñ?аÑ?Ñ?Ñ? Ñ?илÑ?Ñ?Ñ?ов
+cups, возможно Ñ?одеÑ?жиÑ? многоÑ?иÑ?леннÑ?е пеÑ?еполнениÑ? динамиÑ?еÑ?кой памÑ?Ñ?и и Ñ?елÑ?Ñ?
+Ñ?иÑ?ел в Ñ?вÑ?зи Ñ? непÑ?авилÑ?ной обÑ?абоÑ?кой задаÑ? пеÑ?аÑ?и. ЭÑ?о позволÑ?еÑ? Ñ?далÑ?ннÑ?м злоÑ?мÑ?Ñ?ленникам
+аваÑ?ийно завеÑ?Ñ?аÑ?Ñ? Ñ?абоÑ?Ñ? texttopdf или поÑ?енÑ?иалÑ?но вÑ?полнÑ?Ñ?Ñ? пÑ?оизволÑ?нÑ?й код.</p>
 
- -<p>For Debian 6 <q>Squeeze</q>, this issue has been fixed in cups version
- -1.4.4-7+squeeze10. For Wheezy and Jessie, this has been fixed in the
- -cups-filter package. We recommend you to upgrade your cups packages.</p>
+<p>Ð? Debian 6 <q>Squeeze</q> Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в cups веÑ?Ñ?ии
+1.4.4-7+squeeze10. Ð? Wheezy и Jessie Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в
+пакеÑ?е cups-filter. РекомендÑ?еÑ?Ñ?Ñ? обновиÑ?Ñ? пакеÑ?Ñ? cups.</p>
 </define-tag>
 
 # do not modify the following line
- --- english/security/2015/dla-366.wml	2016-04-08 01:27:56.000000000 +0500
+++ russian/security/2015/dla-366.wml	2016-04-26 21:38:03.722316067 +0500
@@ -1,15 +1,16 @@
- -<define-tag description>LTS security update</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>обновление безопаÑ?ноÑ?Ñ?и LTS</define-tag>
 <define-tag moreinfo>
- -<p>It has been reported that arts uses the insecure mktemp() function
- -to create the temporary directory it uses to host user-specific sockets.
- -It is thus possible for another user to hijack this temporary directory
- -and gain IPC access it should not have.</p>
+<p>СообÑ?аеÑ?Ñ?Ñ?, Ñ?Ñ?о arts иÑ?полÑ?зÑ?еÑ? небезопаÑ?нÑ?Ñ? Ñ?Ñ?нкÑ?иÑ? mktemp()
+длÑ? Ñ?озданиÑ? вÑ?еменного каÑ?алога, иÑ?полÑ?зÑ?Ñ?Ñ?егоÑ?Ñ? длÑ? Ñ?азмеÑ?ениÑ? полÑ?зоваÑ?елÑ?Ñ?киÑ? Ñ?океÑ?ов.
+Ð?Ñ?Ñ?гой полÑ?зоваÑ?елÑ? можеÑ? поÑ?иÑ?иÑ?Ñ? Ñ?Ñ?оÑ? вÑ?еменнÑ?й каÑ?алог
+и полÑ?Ñ?иÑ?Ñ? доÑ?Ñ?Ñ?п к IPC, коÑ?оÑ?ого он не должен имеÑ?Ñ?.</p>
 
- -<p>In Debian 6 <q>Squeeze</q>, this issue has been addressed in arts
- -1.5.9-3+deb6u1 with the use of the safer mkdtemp() function.
- -We recommend that you upgrade your arts packages.</p>
+<p>Ð? Debian 6 <q>Squeeze</q> Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в arts
+1.5.9-3+deb6u1 пÑ?Ñ?Ñ?м иÑ?полÑ?зованиÑ? более безопаÑ?ной Ñ?Ñ?нкÑ?ии mkdtemp().
+РекомендÑ?еÑ?Ñ?Ñ? обновиÑ?Ñ? пакеÑ?Ñ? arts.</p>
 
- -<p>Other Debian releases do not have the arts package.</p>
+<p>Ð?Ñ?Ñ?гие вÑ?пÑ?Ñ?ки Debian не Ñ?одеÑ?жаÑ? пакеÑ? arts.</p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----
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=/KU8
-----END PGP SIGNATURE-----
Reply to: