[DONE] wml://security/2000/200011{11,20}.wml
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- --- english/security/2000/20001111.wml 2001-04-19 21:52:09.000000000 +0600
+++ russian/security/2000/20001111.wml 2016-01-19 17:13:45.203216640 +0500
@@ -1,20 +1,21 @@
+#use wml::debian::translation-check translation="1.3" maintainer="Lev Lamberov"
<define-tag moreinfo>
- -The version of gnupg that was distributed in Debian GNU/Linux 2.2 had
- -a logic error in the code that checks for valid signatures which could
- -cause false positive results: Jim Small discovered that if the input
- -contained multiple signed sections the exit-code gnupg returned was
- -only valid for the last section, so improperly signed other sections
- -were not noticed.
+Ð?еÑ?Ñ?иÑ? gnupg, поÑ?Ñ?авлÑ?емаÑ? в Ñ?оÑ?Ñ?аве Debian GNU/Linux 2.2, Ñ?одеÑ?жиÑ?
+логиÑ?еÑ?кÑ?Ñ? оÑ?ибкÑ? в коде длÑ? пÑ?овеÑ?ки пÑ?авилÑ?ноÑ?Ñ?и подпиÑ?ей, коÑ?оÑ?аÑ? можеÑ?
+пÑ?иводиÑ?Ñ? к ложнÑ?м Ñ?Ñ?абаÑ?Ñ?ваниÑ?м: Ð?жим Смолл обнаÑ?Ñ?жил, Ñ?Ñ?о еÑ?ли вÑ?однÑ?е даннÑ?е
+Ñ?одеÑ?жаÑ? неÑ?колÑ?ко подпиÑ?аннÑ?Ñ? Ñ?азделов, Ñ?о код вÑ?Ñ?ода, возвÑ?аÑ?аемÑ?й gnupg,
+пÑ?авилен Ñ?олÑ?ко длÑ? поÑ?леднего Ñ?аздела, из-за Ñ?Ñ?ого непÑ?авилÑ?но подпиÑ?аннÑ?е
+Ñ?азделÑ? пеÑ?ед поÑ?ледним не замеÑ?аÑ?Ñ?Ñ?Ñ?.
- -<p>This has been fixed in version 1.0.4-1 and we recommend that you upgrade
- -your gnupg package to that version. Please note that this version of gnupg
- -includes the RSA code directly instead of relying on the gpg-rsa package.
- -This means that the <code>"load-extension rsa"</code> command in
- -<code>~/.gnupg/options</code> is no longer needed and must be removed: gnupg
- -will not work correctly if it tries to load an extension that is not
- -present.
+<p>ÐÑ?а Ñ?Ñ?звимоÑ?Ñ?Ñ? бÑ?ла иÑ?пÑ?авлена в веÑ?Ñ?ии 1.0.4-1, Ñ?екомендÑ?еÑ?Ñ?Ñ? обновиÑ?Ñ?
+пакеÑ? gnupg до Ñ?Ñ?ой веÑ?Ñ?ии. Ð?амеÑ?Ñ?Ñ?е, Ñ?Ñ?о Ñ?Ñ?а веÑ?Ñ?иÑ? gnupg
+Ñ?одеÑ?жиÑ? код RSA, а не обÑ?аÑ?аеÑ?Ñ?Ñ? к пакеÑ?Ñ? gpg-rsa.
+ÐÑ?о ознаÑ?аеÑ?, Ñ?Ñ?о команда <code>"load-extension rsa"</code> в
+<code>~/.gnupg/options</code> более не нÑ?жна и должна бÑ?Ñ?Ñ? Ñ?далена: gnupg
+бÑ?деÑ? Ñ?абоÑ?аÑ?Ñ? некоÑ?Ñ?екÑ?но в Ñ?ом Ñ?лÑ?Ñ?ае, еÑ?ли бÑ?деÑ? пÑ?оизведена попÑ?Ñ?ка загÑ?Ñ?зиÑ?Ñ?
+оÑ?Ñ?Ñ?Ñ?Ñ?Ñ?вÑ?Ñ?Ñ?ее Ñ?аÑ?Ñ?иÑ?ение.
</define-tag>
- -<define-tag description>incorrect signature verification</define-tag>
+<define-tag description>некоÑ?Ñ?екÑ?наÑ? пÑ?овеÑ?ка подпиÑ?и</define-tag>
# do not modify the following line
#include '$(ENGLISHDIR)/security/2000/20001111.data'
- --- english/security/2000/20001120.wml 2001-04-19 21:52:09.000000000 +0600
+++ russian/security/2000/20001120.wml 2016-01-19 17:36:33.036212890 +0500
@@ -1,19 +1,20 @@
- -<define-tag moreinfo>Sebastian Krahmer found a problem in the modprobe utility
- -that could be exploited by local users to run arbitrary commands as root if the
- -machine is running a kernel with kmod enabled.
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag moreinfo>СебаÑ?Ñ?иан Ð?Ñ?амеÑ? обнаÑ?Ñ?жил пÑ?облемÑ? в Ñ?Ñ?илиÑ?е modprobe,
+коÑ?оÑ?аÑ? можеÑ? иÑ?полÑ?зоваÑ?Ñ?Ñ?Ñ? локалÑ?нÑ?ми полÑ?зоваÑ?елÑ?ми длÑ? запÑ?Ñ?ка пÑ?оизволÑ?нÑ?Ñ? команд оÑ? лиÑ?а Ñ?Ñ?пеÑ?полÑ?зоваÑ?елÑ? в Ñ?ом Ñ?лÑ?Ñ?ае,
+еÑ?ли на маÑ?ине запÑ?Ñ?ено Ñ?дÑ?о Ñ? вклÑ?Ñ?Ñ?нной опÑ?ией kmod.
- -<p>The kmod kernel feature allows the kernel to dynamically load kernel modules if
- -functionality is required that is not present in the running kernel. It does
- -this by invoking the modprobe command with the requested module as parameter.
- -This parameter can be influenced by users, for example by opening a currently
- -non-existing files on a devfs filesystem, or trying to access a non-existing
- -network interface. Since modprobe did not properly escape shell meta-characters
- -when calling external commands or check if the last parameters was an option
- -instead of a modulename, users can cause it to run arbitrary commands.
+<p>Ð?пÑ?иÑ? kmod позволÑ?еÑ? Ñ?дÑ?Ñ? динамиÑ?еÑ?ки загÑ?Ñ?жаÑ?Ñ? модÑ?ли Ñ?дÑ?а, еÑ?ли
+Ñ?Ñ?ебÑ?емаÑ? Ñ?Ñ?нкÑ?ионалÑ?ноÑ?Ñ?Ñ? оÑ?Ñ?Ñ?Ñ?Ñ?Ñ?вÑ?еÑ? в запÑ?Ñ?енном Ñ?дÑ?е. ÐÑ?о вÑ?полнÑ?еÑ?Ñ?Ñ?
+благодаÑ?Ñ? запÑ?Ñ?кÑ? командÑ? modprobe Ñ? Ñ?Ñ?ебÑ?емÑ?м модÑ?лем в каÑ?еÑ?Ñ?ве паÑ?амеÑ?Ñ?а.
+ÐÑ?оÑ? паÑ?амеÑ?Ñ? можеÑ? бÑ?Ñ?Ñ? изменÑ?н полÑ?зоваÑ?елÑ?ми, напÑ?имеÑ?, пÑ?Ñ?Ñ?м оÑ?кÑ?Ñ?Ñ?иÑ?
+неÑ?Ñ?Ñ?еÑ?Ñ?вÑ?Ñ?Ñ?иÑ? в даннÑ?й моменÑ? Ñ?айлов в Ñ?айловой Ñ?иÑ?Ñ?еме devfs, либо пÑ?и попÑ?Ñ?ке обÑ?аÑ?ениÑ? к неÑ?Ñ?Ñ?еÑ?Ñ?вÑ?Ñ?Ñ?емÑ?
+Ñ?еÑ?евомÑ? инÑ?еÑ?Ñ?ейÑ?Ñ?. Ð?оÑ?колÑ?кÑ? modprobe непÑ?авилÑ?но Ñ?кÑ?аниÑ?Ñ?еÑ? меÑ?аÑ?имволÑ? командной оболоÑ?ки
+пÑ?и вÑ?зове внеÑ?ниÑ? команд, либо непÑ?авилÑ?но вÑ?полнÑ?еÑ? пÑ?овеÑ?кÑ? поÑ?леднего паÑ?амеÑ?Ñ?а на пÑ?едмеÑ? Ñ?ого, Ñ?влÑ?еÑ?Ñ?Ñ?
+ли он именем модÑ?лÑ?, поÑ?Ñ?олÑ?кÑ? полÑ?зоваÑ?ели могÑ?Ñ? запÑ?Ñ?каÑ?Ñ? пÑ?оизволÑ?нÑ?е командÑ?.
- -<p>This has been fixed in version 2.3.11-12 and we recommend that you upgrade your
- -modutils package immediately.</define-tag>
- -<define-tag description>local exploit</define-tag>
+<p>ÐÑ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в веÑ?Ñ?ии 2.3.11-12, Ñ?екомендÑ?еÑ?Ñ?Ñ? как можно Ñ?коÑ?ее
+обновиÑ?Ñ? пакеÑ? modutils.</define-tag>
+<define-tag description>локалÑ?наÑ? Ñ?Ñ?звимоÑ?Ñ?Ñ?</define-tag>
# do not modify the following line
#include '$(ENGLISHDIR)/security/2000/20001120.data'
-----BEGIN PGP SIGNATURE-----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=WUf8
-----END PGP SIGNATURE-----
Reply to: