[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[DONE] wml://security/2012/dsa-2452.wml

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- --- ../../english/security/2012/dsa-2452.wml	2017-11-01 10:11:10.339845257 +0500
+++ 2012/dsa-2452.wml	2018-04-01 10:54:05.939764507 +0500
@@ -1,54 +1,54 @@
- -<define-tag description>insecure default configuration</define-tag>
+#use wml::debian::translation-check translation="1.2" mindelta="1"
+<define-tag description>небезопаÑ?нÑ?е наÑ?Ñ?Ñ?ойки по Ñ?молÑ?аниÑ?</define-tag>
 <define-tag moreinfo>
- -<p>Niels Heinen noticed a security issue with the default Apache
- -configuration on Debian if certain scripting modules like mod_php or
- -mod_rivet are installed. The problem arises because the directory
- -/usr/share/doc, which is mapped to the URL /doc, may contain example
- -scripts that can be executed by requests to this URL. Although access
- -to the URL /doc is restricted to connections from localhost, this still
- -creates security issues in two specific configurations:</p>
+<p>Ð?илÑ?Ñ? Ð?айнен замеÑ?ил пÑ?облемÑ? безопаÑ?ноÑ?Ñ?и Ñ? наÑ?Ñ?Ñ?ойками Apache
+по Ñ?молÑ?аниÑ? в Ñ?иÑ?Ñ?емаÑ? Debian в Ñ?лÑ?Ñ?ае, еÑ?ли Ñ?Ñ?Ñ?ановленÑ? опÑ?еделÑ?ннÑ?е модÑ?ли
+поддеÑ?жки Ñ?зÑ?ков Ñ?Ñ?енаÑ?иев, Ñ?акие как mod_php или mod_rivet. Ð?Ñ?облема возникаеÑ? из-за
+Ñ?ого, Ñ?Ñ?о каÑ?алог /usr/share/doc, коÑ?оÑ?Ñ?й оÑ?обÑ?ажаеÑ?Ñ?Ñ? в URL /doc, можеÑ? Ñ?одеÑ?жаÑ?Ñ? пÑ?имеÑ?
+Ñ?Ñ?енаÑ?иев, коÑ?оÑ?Ñ?е могÑ?Ñ? бÑ?Ñ?Ñ? вÑ?полненÑ? пÑ?Ñ?Ñ?м оÑ?пÑ?авки запÑ?оÑ?ов по Ñ?Ñ?омÑ? URL. ХоÑ?Ñ? доÑ?Ñ?Ñ?п
+к URL /doc огÑ?аниÑ?иваеÑ?Ñ?Ñ? Ñ?оединениÑ?ми Ñ? локалÑ?ного Ñ?зла, Ñ?Ñ?о вÑ?Ñ? Ñ?авно
+Ñ?оздаÑ?Ñ? пÑ?облема безопаÑ?ноÑ?Ñ?и пÑ?и двÑ?Ñ? Ñ?казаннÑ?Ñ? конкÑ?еÑ?нÑ?Ñ? наÑ?Ñ?Ñ?ойкаÑ?:</p>
 
 <ul>
 <li>
- -if some front-end server on the same host forwards connections to an
- -apache2 backend server on the localhost address, or
+еÑ?ли внеÑ?ний Ñ?еÑ?веÑ? на Ñ?ом же Ñ?зле пеÑ?енапÑ?авлÑ?еÑ? подклÑ?Ñ?ениÑ? на
+внÑ?Ñ?Ñ?енний Ñ?еÑ?веÑ? apache2 по адÑ?еÑ?Ñ? локалÑ?ного Ñ?зла, либо
 </li>
 <li>
- -if the machine running apache2 is also used for web browsing.
+еÑ?ли маÑ?ина, на коÑ?оÑ?ой запÑ?Ñ?ен apache2, Ñ?акже иÑ?полÑ?зÑ?еÑ?Ñ?Ñ? и длÑ? пÑ?оÑ?моÑ?Ñ?а веб-Ñ?Ñ?Ñ?аниÑ? в Ð?нÑ?еÑ?неÑ?е.
 </li>
 </ul>
 
- -<p>Systems not meeting one of these two conditions are not known to be
- -vulnerable. The actual security impact depends on which packages (and
- -accordingly which example scripts) are installed on the system.
- -Possible issues include cross site scripting, code execution, or
- -leakage of sensitive data.</p>
- -
- -<p>This updates removes the problematic configuration sections from the
- -files /etc/apache2/sites-available/default and .../default-ssl. When
- -upgrading, you should not blindly allow dpkg to replace those files,
- -though. Rather you should merge the changes, namely the removal of the
- -<q>Alias /doc "/usr/share/doc"</q> line and the related <q>&lt;Directory
- -"/usr/share/doc/"&gt;</q> block, into your versions of these config files.
- -You may also want to check if you have copied these sections to any
- -additional virtual host configurations.</p>
- -
- -<p>For the stable distribution (squeeze), this problem has been fixed in
- -version 2.2.16-6+squeeze7.</p>
- -
- -<p>For the testing distribution (wheezy), this problem will be fixed in
- -version 2.2.22-4.</p>
+<p>Ð?еизвеÑ?Ñ?но, подвеÑ?женÑ? ли Ñ?казанной Ñ?Ñ?звимоÑ?Ñ?и Ñ?иÑ?Ñ?емÑ?, не Ñ?довлеÑ?воÑ?Ñ?Ñ?Ñ?ие
+одномÑ? из пÑ?иведÑ?ннÑ?Ñ? Ñ?Ñ?ловий. ФакÑ?иÑ?еÑ?кое влиÑ?ние на безопаÑ?ноÑ?Ñ?Ñ? Ñ?иÑ?Ñ?емÑ? завиÑ?иÑ? оÑ? Ñ?ого,
+какие пакеÑ?Ñ? (Ñ?ооÑ?веÑ?Ñ?Ñ?венно, и какие пÑ?имеÑ?Ñ? Ñ?Ñ?енаÑ?иев) Ñ?Ñ?Ñ?ановленÑ? в Ñ?иÑ?Ñ?еме.
+СÑ?еди возможнÑ?Ñ? пÑ?облем можно назваÑ?Ñ? межÑ?айÑ?овÑ?й Ñ?Ñ?Ñ?ипÑ?инг, вÑ?полнение кода и
+Ñ?Ñ?еÑ?кÑ? Ñ?Ñ?вÑ?Ñ?виÑ?елÑ?нÑ?Ñ? даннÑ?Ñ?.</p>
+
+<p>Ð?анное обновление Ñ?далÑ?еÑ? пÑ?облемнÑ?е Ñ?азделÑ? наÑ?Ñ?Ñ?ойки из
+Ñ?айлов /etc/apache2/sites-available/default и .../default-ssl. Ð?Ñ?и
+обновлении вам не Ñ?ледÑ?еÑ? вÑ?лепÑ?Ñ? Ñ?азÑ?еÑ?аÑ?Ñ? dpkg замениÑ?Ñ? Ñ?казаннÑ?е Ñ?айлÑ?.
+СкоÑ?ее вам Ñ?ледÑ?еÑ? Ñ?лиÑ?Ñ? изменениÑ?, в Ñ?аÑ?Ñ?ноÑ?Ñ?и, Ñ?даление Ñ?Ñ?Ñ?оки
+<q>Alias /doc "/usr/share/doc"</q> и Ñ?вÑ?заннÑ?й Ñ? ней блок <q>&lt;Directory
+"/usr/share/doc/"&gt;</q> Ñ? ваÑ?ими веÑ?Ñ?иÑ?ми Ñ?Ñ?иÑ? Ñ?айлов наÑ?Ñ?Ñ?ойки.
+Ð?Ñ?оме Ñ?ого, вам можеÑ? поÑ?Ñ?ебоваÑ?Ñ?Ñ?Ñ? пÑ?овеÑ?иÑ?Ñ?, бÑ?ли ли Ñ?казаннÑ?е Ñ?азделÑ? Ñ?копиÑ?ованÑ? в
+какие-либо дополниÑ?елÑ?нÑ?е наÑ?Ñ?Ñ?ойки виÑ?Ñ?Ñ?алÑ?нÑ?Ñ? Ñ?злов.</p>
+
+<p>Ð? Ñ?Ñ?абилÑ?ном вÑ?пÑ?Ñ?ке (squeeze) Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в
+веÑ?Ñ?ии 2.2.16-6+squeeze7.</p>
+
+<p>Ð? Ñ?еÑ?Ñ?иÑ?Ñ?емом вÑ?пÑ?Ñ?ке (wheezy) Ñ?Ñ?а пÑ?облема бÑ?деÑ? иÑ?пÑ?авлена в
+веÑ?Ñ?ии 2.2.22-4.</p>
 
- -<p>For the unstable distribution (sid), this problem will be fixed in
- -version 2.2.22-4.</p>
+<p>Ð? неÑ?Ñ?абилÑ?ном вÑ?пÑ?Ñ?ке (sid) Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в
+веÑ?Ñ?ии 2.2.22-4.</p>
 
- -<p>For the experimental distribution, this problem has been fixed in
- -version 2.4.1-3.</p>
+<p>Ð? Ñ?кÑ?пеÑ?именÑ?алÑ?ном вÑ?пÑ?Ñ?ке Ñ?Ñ?а пÑ?облема бÑ?ла иÑ?пÑ?авлена в
+веÑ?Ñ?ии 2.4.1-3.</p>
 
- -<p>We recommend that you upgrade your apache2 packages and adjust your
- -configuration.</p>
+<p>РекомендÑ?еÑ?Ñ?Ñ? обновиÑ?Ñ? пакеÑ?Ñ? apache2 и измениÑ?Ñ? ваÑ?и
+наÑ?Ñ?Ñ?ойки.</p>
 </define-tag>
 
 # do not modify the following line
 #include "$(ENGLISHDIR)/security/2012/dsa-2452.data"
- -# $Id: dsa-2452.wml,v 1.2 2012/04/18 12:48:45 taffit Exp $
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3mumcdV9mwCc9oZQXudu4gIW0qUFAlrAdBsACgkQXudu4gIW
0qXfNQ/9EsDawgc93u0d4lOy7XhWSgrZW5sTV+vKp9QWI6yFlq28RfR3EExHGoyc
5Kp07lBa6Dx8bqelfFfCKHMuCyY2mz793jBbTF9Y2dwcmNwamH786y5Yhgkhf5Tn
WAH32Qd55mRZw/tzqNVCHARIyc8SYaYfr6rmMG9t3Uk1I0AwW9wMZKkYDCx4Hqvp
BU9g/ZKpYpxsBn8WEDNfhYvihwW2MD6vBeVHbcSR7WMk0nbItzCzLVUEwD770Y+p
L8x4O2PvdgJaQnG2WPBZz+wkL5VHRsc0btYbNoKB7JYVKqZnYyGRbts0txoARUek
dYLvFExAzHXU/Gcu0fiGhgnP3eeOMmaPQFv0DXDxNfMg7jfCBwf3Fj2Q8pcnHK3N
3lmeEj50GZBsAYNtGZ8ivDPfgguPnU+n/JPk7aOe/mDD9pL+R1ZPu8PK6VeL/ZZk
V7y8TGl02ssPLJHEWzdJgLgfqfTSz07es5ehVM9HOQsz3WFSD1HDcJsdExzjKBlD
ixAGaE/wVO5qq+mfc0uKolMOQDB60llYni06yh3KmL4ujf2sbK1dOcLimNuoRrIf
DBIoB9vo2t0BFP2rF5EfI8qh1aabecSmUkDNNKHfRyPTF4SrkwaE3+wQilUuwtFX
wLIHSRILtnOVlZaaJq4rOHozvn8RGGo2fo4cOe92jSniAkuwS0o=
=3/MV
-----END PGP SIGNATURE-----
Reply to: