[DONE] wml://{security/2018/dsa-4136.wml}

To: <debian-l10n-russian@lists.debian.org>
Subject: [DONE] wml://{security/2018/dsa-4136.wml}
From: Lev Lamberov <dogsleg@debian.org>
Date: Thu, 15 Mar 2018 16:28:22 +0500
Message-id: <[🔎] E1ewR3W-0002AV-GW@urfu-thinkpad>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- english/security/2018/dsa-4136.wml	2018-03-15 16:20:33.896549917 +0500
+++ russian/security/2018/dsa-4136.wml	2018-03-15 16:28:05.211963333 +0500
@@ -1,43 +1,45 @@
- -<define-tag description>security update</define-tag>
+#use wml::debian::translation-check translation="1.2" maintainer="Lev Lamberov"
+<define-tag description>Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ðµ Ð±ÐµÐ·Ð¾Ð¿Ð°Ñ?Ð½Ð¾Ñ?Ñ?Ð¸</define-tag>
 <define-tag moreinfo>
- -<p>Multiple vulnerabilities were discovered in cURL, an URL transfer library.</p>
+<p>Ð? cURL, Ð±Ð¸Ð±Ð»Ð¸Ð¾Ñ?ÐµÐºÐµ Ð¿ÐµÑ?ÐµÐ´Ð°Ñ?Ð¸ URL, Ð±Ñ?Ð»Ð¸ Ð¾Ð±Ð½Ð°Ñ?Ñ?Ð¶ÐµÐ½Ñ? Ð¼Ð½Ð¾Ð³Ð¾Ñ?Ð¸Ñ?Ð»ÐµÐ½Ð½Ñ?Ðµ Ñ?Ñ?Ð·Ð²Ð¸Ð¼Ð¾Ñ?Ñ?Ð¸.</p>
 
 <ul>
 
 <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-1000120";>CVE-2018-1000120</a>
 
- -    <p>Duy Phan Thanh discovered that curl could be fooled into writing a
- -    zero byte out of bounds when curl is told to work on an FTP URL with
- -    the setting to only issue a single CWD command, if the directory part
- -    of the URL contains a &ldquo;&#37;00&rdquo; sequence.</p></li>
+    <p>Ð?Ð°Ð¹ Ð¤Ð°Ð½ Ð¢Ð°Ð½ Ð¾Ð±Ð½Ð°Ñ?Ñ?Ð¶Ð¸Ð», Ñ?Ñ?Ð¾ curl Ð¼Ð¾Ð¶ÐµÑ? Ð¿Ð¾ Ð¾Ñ?Ð¸Ð±ÐºÐµ Ð·Ð°Ð¿Ð¸Ñ?Ð°Ñ?Ñ? Ð½Ñ?Ð»ÐµÐ²Ð¾Ð¹ Ð±Ð°Ð¹Ñ? Ð·Ð°
+    Ð¿Ñ?ÐµÐ´ÐµÐ»Ñ? Ð²Ñ?Ð´ÐµÐ»ÐµÐ½Ð½Ð¾Ð³Ð¾ Ð±Ñ?Ñ?ÐµÑ?Ð° Ð¿Ð°Ð¼Ñ?Ñ?Ð¸, ÐºÐ¾Ð³Ð´Ð° curl Ñ?Ð°Ð±Ð¾Ñ?Ð°ÐµÑ? Ð¿Ð¾ FTP URL Ð¿Ñ?Ð¸
+    Ð²Ñ?Ð±Ð¾Ñ?Ðµ Ð½Ð°Ñ?Ñ?Ñ?Ð¾Ð¹ÐºÐ¸ Ð¿Ð¾ Ð¾Ñ?Ð¿Ñ?Ð°Ð²ÐºÐµ Ñ?Ð¾Ð»Ñ?ÐºÐ¾ Ð¾Ð´Ð½Ð¾Ð¹ ÐºÐ¾Ð¼Ð°Ð½Ð´Ñ? CWD Ð² Ñ?Ð»Ñ?Ñ?Ð°Ðµ, ÐµÑ?Ð»Ð¸ Ñ?Ð°Ñ?Ñ?Ñ? ÐºÐ°Ñ?Ð°Ð»Ð¾Ð³Ð°
+    URL Ñ?Ð¾Ð´ÐµÑ?Ð¶Ð¸Ñ? Ð¿Ð¾Ñ?Ð»ÐµÐ´Ð¾Ð²Ð°Ñ?ÐµÐ»Ñ?Ð½Ð¾Ñ?Ñ?Ñ? &ldquo;&#37;00&rdquo;.</p></li>
 
 <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-1000121";>CVE-2018-1000121</a>
 
- -    <p>Dario Weisser discovered that curl might dereference a near-NULL
- -    address when getting an LDAP URL due to the ldap_get_attribute_ber()
- -    function returning LDAP_SUCCESS and a NULL pointer. A malicious server
- -    might cause libcurl-using applications that allow LDAP URLs, or that
- -    allow redirects to LDAP URLs to crash.</p></li>
+    <p>Ð?Ð°Ñ?Ð¸Ð¾ Ð?Ð°Ð¹Ð·ÐµÑ? Ð¾Ð±Ð½Ð°Ñ?Ñ?Ð¶Ð¸Ð», Ñ?Ñ?Ð¾ curl Ð¼Ð¾Ð¶ÐµÑ? Ð²Ñ?Ð¿Ð¾Ð»Ð½Ñ?Ñ?Ñ? Ñ?Ð°Ð·Ñ?Ð¼ÐµÐ½Ð¾Ð²Ð°Ð½Ð¸Ðµ Ð±Ð»Ð¸Ð·ÐºÐ¾Ð³Ð¾ Ðº NULL
+    Ð°Ð´Ñ?ÐµÑ?Ð° Ð¿Ñ?Ð¸ Ð¿Ð¾Ð»Ñ?Ñ?ÐµÐ½Ð¸Ð¸ LDAP URL Ð¸Ð·-Ð·Ð° Ñ?Ð¾Ð³Ð¾, Ñ?Ñ?Ð¾ Ñ?Ñ?Ð½ÐºÑ?Ð¸Ñ? ldap_get_attribute_ber()
+    Ð²Ð¾Ð·Ð²Ñ?Ð°Ñ?Ð°ÐµÑ? LDAP_SUCCESS Ð¸ NULL-Ñ?ÐºÐ°Ð·Ð°Ñ?ÐµÐ»Ñ?. Ð?Ñ?ÐµÐ´Ð¾Ð½Ð¾Ñ?Ð½Ñ?Ð¹ Ñ?ÐµÑ?Ð²ÐµÑ? Ð¼Ð¾Ð¶ÐµÑ?
+    Ð²Ñ?Ð·Ð²Ð°Ñ?Ñ? Ð°Ð²Ð°Ñ?Ð¸Ð¹Ð½Ñ?Ñ? Ð¾Ñ?Ñ?Ð°Ð½Ð¾Ð²ÐºÑ? Ð¸Ñ?Ð¿Ð¾Ð»Ñ?Ð·Ñ?Ñ?Ñ?ÐµÐ³Ð¾ libcurl Ð¿Ñ?Ð¸Ð»Ð¾Ð¶ÐµÐ½Ð¸Ñ?, Ñ?Ð°Ð·Ñ?ÐµÑ?Ð°Ñ?Ñ?ÐµÐ³Ð¾ LDAP URL,
+    Ð¸Ð»Ð¸ Ñ?Ð°Ð·Ñ?ÐµÑ?Ð°Ñ?Ñ?ÐµÐ³Ð¾ Ð¿ÐµÑ?ÐµÐ½Ð°Ð¿Ñ?Ð°Ð²Ð»ÐµÐ½Ð¸Ñ? Ð½Ð° LDAP URL.</p></li>
 
 <li><a href="https://security-tracker.debian.org/tracker/CVE-2018-1000122";>CVE-2018-1000122</a>
 
- -    <p>OSS-fuzz, assisted by Max Dymond, discovered that curl could be
- -    tricked into copying data beyond the end of its heap based buffer
- -    when asked to transfer an RTSP URL.</p></li>
+    <p>Ð¡Ð¾Ñ?Ñ?Ñ?Ð´Ð½Ð¸ÐºÐ¸ OSS-fuzz Ð¿Ñ?Ð¸ Ð¿Ð¾Ð¼Ð¾Ñ?Ð¸ Ð?Ð°ÐºÑ?Ð° Ð?Ð°Ð¹Ð¼Ð¾Ð½Ð´Ð° Ð¾Ð±Ð½Ð°Ñ?Ñ?Ð¶Ð¸Ð»Ð¸, Ñ?Ñ?Ð¾
+    curl Ð¼Ð¾Ð¶ÐµÑ? Ñ?ÐºÐ¾Ð¿Ð¸Ñ?Ð¾Ð²Ð°Ñ?Ñ? Ð´Ð°Ð½Ð½Ñ?Ðµ Ð·Ð° Ð¿Ñ?ÐµÐ´ÐµÐ»Ð°Ð¼Ð¸ Ð²Ñ?Ð´ÐµÐ»ÐµÐ½Ð½Ð¾Ð³Ð¾ Ð±Ñ?Ñ?ÐµÑ?Ð°
+    Ð´Ð¸Ð½Ð°Ð¼Ð¸Ñ?ÐµÑ?ÐºÐ¾Ð¹ Ð¿Ð°Ð¼Ñ?Ñ?Ð¸ Ð¿Ñ?Ð¸ Ð·Ð°Ð¿Ñ?Ð¾Ñ?Ðµ Ð¿ÐµÑ?ÐµÐ´Ð°Ñ?Ð¸ RTSP URL.</p></li>
 
 </ul>
 
- -<p>For the oldstable distribution (jessie), these problems have been fixed
- -in version 7.38.0-4+deb8u10.</p>
+<p>Ð? Ð¿Ñ?ÐµÐ´Ñ?Ð´Ñ?Ñ?ÐµÐ¼ Ñ?Ñ?Ð°Ð±Ð¸Ð»Ñ?Ð½Ð¾Ð¼ Ð²Ñ?Ð¿Ñ?Ñ?ÐºÐµ (jessie) Ñ?Ñ?Ð¸ Ð¿Ñ?Ð¾Ð±Ð»ÐµÐ¼Ñ? Ð±Ñ?Ð»Ð¸ Ð¸Ñ?Ð¿Ñ?Ð°Ð²Ð»ÐµÐ½Ñ?
+Ð² Ð²ÐµÑ?Ñ?Ð¸Ð¸ 7.38.0-4+deb8u10.</p>
 
- -<p>For the stable distribution (stretch), these problems have been fixed in
- -version 7.52.1-5+deb9u5.</p>
+<p>Ð? Ñ?Ñ?Ð°Ð±Ð¸Ð»Ñ?Ð½Ð¾Ð¼ Ð²Ñ?Ð¿Ñ?Ñ?ÐºÐµ (stretch) Ñ?Ñ?Ð¸ Ð¿Ñ?Ð¾Ð±Ð»ÐµÐ¼Ñ? Ð±Ñ?Ð»Ð¸ Ð¸Ñ?Ð¿Ñ?Ð°Ð²Ð»ÐµÐ½Ñ? Ð²
+Ð²ÐµÑ?Ñ?Ð¸Ð¸ 7.52.1-5+deb9u5.</p>
 
- -<p>We recommend that you upgrade your curl packages.</p>
+<p>Ð ÐµÐºÐ¾Ð¼ÐµÐ½Ð´Ñ?ÐµÑ?Ñ?Ñ? Ð¾Ð±Ð½Ð¾Ð²Ð¸Ñ?Ñ? Ð¿Ð°ÐºÐµÑ?Ñ? curl.</p>
 
- -<p>For the detailed security status of curl please refer to
- -its security tracker page at:
- -<a href="https://security-tracker.debian.org/tracker/curl";>https://security-tracker.debian.org/tracker/curl</a></p>
+<p>Ð¡ Ð¿Ð¾Ð´Ñ?Ð¾Ð±Ð½Ñ?Ð¼ Ñ?Ñ?Ð°Ñ?Ñ?Ñ?Ð¾Ð¼ Ð¿Ð¾Ð´Ð´ÐµÑ?Ð¶ÐºÐ¸ Ð±ÐµÐ·Ð¾Ð¿Ð°Ñ?Ð½Ð¾Ñ?Ñ?Ð¸ curl Ð¼Ð¾Ð¶Ð½Ð¾ Ð¾Ð·Ð½Ð°ÐºÐ¾Ð¼Ð¸Ñ?Ñ?Ñ?Ñ? Ð½Ð°
+Ñ?Ð¾Ð¾Ñ?Ð²ÐµÑ?Ñ?Ñ?Ð²Ñ?Ñ?Ñ?ÐµÐ¹ Ñ?Ñ?Ñ?Ð°Ð½Ð¸Ñ?Ðµ Ð¾Ñ?Ñ?Ð»ÐµÐ¶Ð¸Ð²Ð°Ð½Ð¸Ñ? Ð±ÐµÐ·Ð¾Ð¿Ð°Ñ?Ð½Ð¾Ñ?Ñ?Ð¸ Ð¿Ð¾ Ð°Ð´Ñ?ÐµÑ?Ñ?
+<a href="https://security-tracker.debian.org/tracker/curl";>\
+https://security-tracker.debian.org/tracker/curl</a></p>
 </define-tag>
 
 # do not modify the following line
-----BEGIN PGP SIGNATURE-----
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=p+x+
-----END PGP SIGNATURE-----
Reply to:
Prev by Date: Re: из man в po программой po4a-gettextize пишет-Данный файл создан с помощью Pod::Man
Next by Date: [DONE] wml://{security/2018/dsa-4137.wml}
Previous by thread: Re: из man в po программой po4a-gettextize пишет-Данный файл создан с помощью Pod::Man
Next by thread: [DONE] wml://{security/2018/dsa-4137.wml}
Index(es):
- Date
- Thread