<?xml version="1.0" ?>
<updates>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1064</id>
		<title>关于 aspell 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:45"/>
		<updated date="2023-02-20 13:33:08"/>
		<severity>Important</severity>
		<description>关于 aspell 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-25051" id="CVE-2019-25051" severity="Important" severity_desc="高风险" title="GNU Aspell 0.60.8版本中的objstack组件存在堆缓冲区溢出漏洞，该漏洞发生在acommon::ObjStack::dup_top函数中，当调用来自acommon::StringMap::add和acommon::Config::lookup_list时可触发。攻击者可通过构造恶意输入数据，在受影响程序处理过程中触发堆缓冲区溢出，从而可能导致任意代码执行或造成拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="12" name="aspell" release="22.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/aspell-0.60.6.1-22.el8.i686.rpm" version="0.60.6.1">
					<filename>aspell-0.60.6.1-22.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="12" name="aspell" release="22.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/aspell-0.60.6.1-22.el8.x86_64.rpm" version="0.60.6.1">
					<filename>aspell-0.60.6.1-22.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="12" name="aspell-devel" release="22.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/aspell-devel-0.60.6.1-22.el8.i686.rpm" version="0.60.6.1">
					<filename>aspell-devel-0.60.6.1-22.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="12" name="aspell-devel" release="22.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/aspell-devel-0.60.6.1-22.el8.x86_64.rpm" version="0.60.6.1">
					<filename>aspell-devel-0.60.6.1-22.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1066</id>
		<title>关于 bluez 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:49"/>
		<updated date="2023-02-20 13:32:41"/>
		<severity>Low</severity>
		<description>关于 bluez 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-41229" id="CVE-2021-41229" severity="Moderate" severity_desc="中风险" title="BlueZ的sdp_cstate_alloc_buf函数存在内存泄漏漏洞，该漏洞源于分配的内存总是挂载在cstates的单链表中且未被正确释放。攻击者可通过持续发送sdp数据包导致数据对象不断累积，可能造成目标设备服务崩溃。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bluez" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-5.56-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bluez-cups" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-cups-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-cups-5.56-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bluez-hid2hci" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-hid2hci-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-hid2hci-5.56-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="bluez-libs" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-libs-5.56-3.el8.i686.rpm" version="5.56">
					<filename>bluez-libs-5.56-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bluez-libs" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-libs-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-libs-5.56-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="bluez-libs-devel" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-libs-devel-5.56-3.el8.i686.rpm" version="5.56">
					<filename>bluez-libs-devel-5.56-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bluez-libs-devel" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-libs-devel-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-libs-devel-5.56-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bluez-obexd" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bluez-obexd-5.56-3.el8.x86_64.rpm" version="5.56">
					<filename>bluez-obexd-5.56-3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1067</id>
		<title>关于 c-ares 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:51"/>
		<updated date="2023-10-23 21:02:12"/>
		<severity>Moderate</severity>
		<description>关于 c-ares 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3672" id="CVE-2021-3672" severity="Moderate" severity_desc="中风险" title="c-ares库存在输入验证不充分漏洞，该漏洞源于未对DNS（域名服务器）返回的主机名进行正确校验。可能导致输出错误的主机名，进而引发域名劫持，并影响机密性、完整性及系统可用性。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="c-ares" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/c-ares-1.13.0-6.el8.i686.rpm" version="1.13.0">
					<filename>c-ares-1.13.0-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="c-ares" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/c-ares-1.13.0-6.el8.x86_64.rpm" version="1.13.0">
					<filename>c-ares-1.13.0-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="c-ares-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/c-ares-devel-1.13.0-6.el8.i686.rpm" version="1.13.0">
					<filename>c-ares-devel-1.13.0-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="c-ares-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/c-ares-devel-1.13.0-6.el8.x86_64.rpm" version="1.13.0">
					<filename>c-ares-devel-1.13.0-6.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1068</id>
		<title>关于 cairo 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:53"/>
		<updated date="2023-02-20 13:32:23"/>
		<severity>Important</severity>
		<description>关于 cairo 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-35492" id="CVE-2020-35492" severity="Important" severity_desc="高风险" title="cairo的image-compositor.c文件中存在缓冲区溢出漏洞，该漏洞源于未正确处理图像合成操作中的边界条件。当处理由攻击者提供的恶意构造的输入文件时，可能导致导致堆栈缓冲区溢出并引发越界写入，进而影响信息的保密性、完整性和系统的可用性。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="cairo" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-1.15.12-6.el8.i686.rpm" version="1.15.12">
					<filename>cairo-1.15.12-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cairo" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-1.15.12-6.el8.x86_64.rpm" version="1.15.12">
					<filename>cairo-1.15.12-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cairo-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-devel-1.15.12-6.el8.i686.rpm" version="1.15.12">
					<filename>cairo-devel-1.15.12-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cairo-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-devel-1.15.12-6.el8.x86_64.rpm" version="1.15.12">
					<filename>cairo-devel-1.15.12-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cairo-gobject" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-gobject-1.15.12-6.el8.i686.rpm" version="1.15.12">
					<filename>cairo-gobject-1.15.12-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cairo-gobject" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-gobject-1.15.12-6.el8.x86_64.rpm" version="1.15.12">
					<filename>cairo-gobject-1.15.12-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cairo-gobject-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-gobject-devel-1.15.12-6.el8.i686.rpm" version="1.15.12">
					<filename>cairo-gobject-devel-1.15.12-6.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cairo-gobject-devel" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-gobject-devel-1.15.12-6.el8.x86_64.rpm" version="1.15.12">
					<filename>cairo-gobject-devel-1.15.12-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cairo-tools" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cairo-tools-1.15.12-6.el8.x86_64.rpm" version="1.15.12">
					<filename>cairo-tools-1.15.12-6.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1069</id>
		<title>关于 cryptsetup 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:54"/>
		<updated date="2023-02-20 13:32:14"/>
		<severity>Moderate</severity>
		<description>关于 cryptsetup 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4122" id="CVE-2021-4122" severity="Moderate" severity_desc="中风险" title="Cryptsetup是是一个实用程序，用于基于DMCrypt内核模块方便地设置磁盘加密。cryptsetup 存在安全漏洞，该漏洞源于软件对于数据真实性缺乏有效的验证。一个特别制作的LUKS头可以欺骗cryptsetup在设备恢复期间禁用加密。物理访问介质(如闪存盘)的攻击者可以利用这个漏洞迫使用户永久禁用该介质的加密层。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="cryptsetup" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>cryptsetup-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cryptsetup-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-devel-2.3.7-2.el8.i686.rpm" version="2.3.7">
					<filename>cryptsetup-devel-2.3.7-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cryptsetup-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-devel-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>cryptsetup-devel-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cryptsetup-libs" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-libs-2.3.7-2.el8.i686.rpm" version="2.3.7">
					<filename>cryptsetup-libs-2.3.7-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cryptsetup-libs" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-libs-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>cryptsetup-libs-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cryptsetup-reencrypt" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cryptsetup-reencrypt-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>cryptsetup-reencrypt-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="integritysetup" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/integritysetup-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>integritysetup-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="veritysetup" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/veritysetup-2.3.7-2.el8.x86_64.rpm" version="2.3.7">
					<filename>veritysetup-2.3.7-2.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1070</id>
		<title>关于 cyrus-sasl 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:56"/>
		<updated date="2023-02-20 13:32:03"/>
		<severity>Important</severity>
		<description>关于 cyrus-sasl 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-24407" id="CVE-2022-24407" severity="Important" severity_desc="高风险" title="Cyrus SASL 存在SQL注入漏洞，该漏洞源于 Cyrus SASL SQL 插件错误地处理了 SQL 输入。远程攻击者可以利用此问题执行任意 SQL 命令。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="cyrus-sasl" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-devel" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-devel-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-devel-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-devel" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-devel-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-devel-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-gs2" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-gs2-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-gs2-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-gs2" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-gs2-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-gs2-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-gssapi" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-gssapi-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-gssapi-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-gssapi" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-gssapi-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-gssapi-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-ldap" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-ldap-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-ldap-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-ldap" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-ldap-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-ldap-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-lib" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-lib-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-lib-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-lib" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-lib-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-lib-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-md5" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-md5-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-md5-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-md5" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-md5-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-md5-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-ntlm" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-ntlm-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-ntlm-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-ntlm" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-ntlm-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-ntlm-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-plain" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-plain-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-plain-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-plain" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-plain-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-plain-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-scram" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-scram-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-scram-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-scram" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-scram-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-scram-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cyrus-sasl-sql" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-sql-2.1.27-6.el8_5.i686.rpm" version="2.1.27">
					<filename>cyrus-sasl-sql-2.1.27-6.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cyrus-sasl-sql" release="6.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cyrus-sasl-sql-2.1.27-6.el8_5.x86_64.rpm" version="2.1.27">
					<filename>cyrus-sasl-sql-2.1.27-6.el8_5.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1071</id>
		<title>关于 device-mapper-multipath 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:58"/>
		<updated date="2023-02-28 18:58:18"/>
		<severity>Important</severity>
		<description>关于 device-mapper-multipath 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-3787" id="CVE-2022-3787" severity="Important" severity_desc="高风险" title="设备映射多路径存在漏洞。设备映射器多路径允许本地用户获得根访问权限，可以单独使用，也可以与CVE-2022-41973结合使用。能够写入UNIX域套接字的本地用户可以绕过访问控制并操作多路径设置。出现此问题是因为攻击者可以重复关键字，当使用算术ADD而不是按位OR时，该关键字会被错误处理。这可能导致本地权限升级到根权限。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-41974" id="CVE-2022-41974" severity="Important" severity_desc="高风险" title="multipath-tools 0.7.0 版本至 0.9.x 版本（早于 0.9.2）存在权限提升漏洞。本地用户可通过写入UNIX域套接字绕过访问控制并操纵多路径设置，从而获得root权限。该漏洞源于程序在处理关键字时使用了算术加法而非按位或操作，导致权限检查机制被绕过。攻击者可利用此漏洞实现本地权限提升至root。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="device-mapper-multipath" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/device-mapper-multipath-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>device-mapper-multipath-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="device-mapper-multipath-devel" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/device-mapper-multipath-devel-0.8.4-28.el8_7.1.i686.rpm" version="0.8.4">
					<filename>device-mapper-multipath-devel-0.8.4-28.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="device-mapper-multipath-devel" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/device-mapper-multipath-devel-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>device-mapper-multipath-devel-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="device-mapper-multipath-libs" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/device-mapper-multipath-libs-0.8.4-28.el8_7.1.i686.rpm" version="0.8.4">
					<filename>device-mapper-multipath-libs-0.8.4-28.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="device-mapper-multipath-libs" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/device-mapper-multipath-libs-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>device-mapper-multipath-libs-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kpartx" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/kpartx-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>kpartx-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libdmmp" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libdmmp-0.8.4-28.el8_7.1.i686.rpm" version="0.8.4">
					<filename>libdmmp-0.8.4-28.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libdmmp" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libdmmp-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>libdmmp-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libdmmp-devel" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libdmmp-devel-0.8.4-28.el8_7.1.i686.rpm" version="0.8.4">
					<filename>libdmmp-devel-0.8.4-28.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libdmmp-devel" release="28.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libdmmp-devel-0.8.4-28.el8_7.1.x86_64.rpm" version="0.8.4">
					<filename>libdmmp-devel-0.8.4-28.el8_7.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1072</id>
		<title>关于 dnsmasq 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:51:59"/>
		<updated date="2023-02-20 13:31:45"/>
		<severity>Moderate</severity>
		<description>关于 dnsmasq 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0934" id="CVE-2022-0934" severity="Important" severity_desc="高风险" title="dnsmasq的数据包处理模块存在释放后使用漏洞，该漏洞源于对特制数据包处理时存在单字节非任意写/释放后使用的逻辑缺陷。可能导致攻击者发送特制数据包造成拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="dnsmasq" release="24.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dnsmasq-2.79-24.el8.x86_64.rpm" version="2.79">
					<filename>dnsmasq-2.79-24.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="dnsmasq-utils" release="24.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dnsmasq-utils-2.79-24.el8.x86_64.rpm" version="2.79">
					<filename>dnsmasq-utils-2.79-24.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1073</id>
		<title>关于 elfutils 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:52:01"/>
		<updated date="2023-07-03 18:57:52"/>
		<severity>Critical</severity>
		<description>关于 elfutils 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2018-25032" id="CVE-2018-25032" severity="Important" severity_desc="高风险" title="zlib库在1.2.12版本之前存在内存损坏漏洞，该漏洞发生在数据压缩（deflate）过程中。当输入数据包含大量远距离匹配时，zlib未能正确处理内部数据结构，导致内存越界写入。攻击者可以构造恶意的输入数据，在应用程序调用zlib进行压缩时触发此漏洞，可能造成拒绝服务（程序崩溃）或潜在的任意代码执行风险。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4028" id="CVE-2021-4028" severity="Moderate" severity_desc="中风险" title="Linux kernel 5.15 rc1之前版本存在资源管理错误漏洞，该漏洞源于RDMA listen（）函数的释放后使用错误。攻击者可利用该漏洞运行精心编制的程序来触发释放后使用错误，并以提升的权限执行任意代码。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4083" id="CVE-2021-4083" severity="Important" severity_desc="高风险" title="Linux kernel存在资源管理错误漏洞，该漏洞源于攻击者可以通过 RCU 文件参考 GC 触发 Linux 内核的内存损坏，以触发拒绝服务，并可能运行代码。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1271" id="CVE-2022-1271" severity="Important" severity_desc="高风险" title="GNU gzip的zgrep工具存在任意文件写入漏洞，该漏洞源于在处理包含两个或更多换行符的文件名时对文件名验证不足的逻辑缺陷。可能导致远程低权限攻击者利用精心构造的多行文件名，强制zgrep将攻击者选择的内容写入攻击者选定的任意文件。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-24903" id="CVE-2022-24903" severity="Important" severity_desc="高风险" title="Rsyslog 是一个高性能的日志处理系统。当使用基于TCP的syslog接收模块并启用八位计数帧（octet-counted framing）时，存在潜在的堆缓冲区溢出风险。该漏洞源于在读取八位计数时，尽管有最大值检查，但在超过最大值的情况下仍会将数字写入堆缓冲区，从而可能覆盖相邻内存区域。攻击者可利用此漏洞发送特制的八位计数帧数据包，造成服务崩溃（拒绝服务）或引发其他异常行为。虽然目前认为该漏洞难以用于远程代码执行，但高级攻击者仍可能存在利用可能性。受影响的模块包括 `imtcp`、`imptcp`、`imgssapi` 和 `imhttp`，建议不要将其直接暴露于公网。若不需使用八位计数帧模式，用户应关闭相关配置以缓解风险。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25235" id="CVE-2022-25235" severity="Critical" severity_desc="严重风险" title="Expat（也称为libexpat）2.4.5版本之前的xmltok_impl.c文件中缺少对编码的有效验证，例如未检查UTF-8字符在特定上下文中是否合法。攻击者可利用该漏洞通过构造恶意的XML数据触发缓冲区溢出或其他内存异常，从而可能实现远程代码执行。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25236" id="CVE-2022-25236" severity="Critical" severity_desc="严重风险" title="Expat（又名libexpat）2.4.5版本之前的xmlparse.c文件存在安全漏洞，该漏洞源于未正确验证XML命名空间URI中的分隔符字符，允许攻击者将命名空间分隔符字符插入到命名空间URI中。攻击者可利用此漏洞通过构造恶意的XML文档来破坏应用程序的XML解析逻辑，可能导致信息泄露、拒绝服务或在特定条件下实现远程代码执行。此漏洞影响所有使用受影响版本Expat库进行XML解析的Linux及类Unix系统上的应用软件。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25315" id="CVE-2022-25315" severity="Critical" severity_desc="严重风险" title="Expat（也称为libexpat）2.4.5版本之前存在整数溢出漏洞，该漏洞位于storeRawNames函数中。由于在处理XML文档时未正确验证整数边界，攻击者可通过构造恶意的XML数据触发该漏洞，可能导致缓冲区溢出，进而引发拒绝服务或潜在的远程代码执行。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25636" id="CVE-2022-25636" severity="Important" severity_desc="高风险" title="Linux kernel存在安全漏洞，该漏洞源于堆越界写入问题。攻击者可利用该漏洞访问越界内存，从而导致系统崩溃或权限升级威胁。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="elfutils" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-debuginfod" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-debuginfod-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-debuginfod-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-debuginfod-client" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-debuginfod-client-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-debuginfod-client-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-debuginfod-client" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-debuginfod-client-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-debuginfod-client-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-debuginfod-client-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-debuginfod-client-devel-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-debuginfod-client-devel-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-debuginfod-client-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-debuginfod-client-devel-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-debuginfod-client-devel-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="elfutils-default-yama-scope" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-default-yama-scope-0.186-1.el8.noarch.rpm" version="0.186">
					<filename>elfutils-default-yama-scope-0.186-1.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-devel-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-devel-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-devel-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-devel-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-devel-static" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-devel-static-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-devel-static-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-devel-static" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-devel-static-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-devel-static-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-libelf" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-libelf-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-libelf" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-libelf-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-libelf-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-devel-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-libelf-devel-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-libelf-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-devel-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-libelf-devel-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-libelf-devel-static" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-devel-static-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-libelf-devel-static-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-libelf-devel-static" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libelf-devel-static-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-libelf-devel-static-0.186-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="elfutils-libs" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libs-0.186-1.el8.i686.rpm" version="0.186">
					<filename>elfutils-libs-0.186-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="elfutils-libs" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/elfutils-libs-0.186-1.el8.x86_64.rpm" version="0.186">
					<filename>elfutils-libs-0.186-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1077</id>
		<title>关于 sudo 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-17 13:52:12"/>
		<updated date="2023-04-10 16:02:57"/>
		<severity>Important</severity>
		<description>关于 sudo 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2023-22809" id="CVE-2023-22809" severity="Important" severity_desc="高风险" title="Sudo组件在1.9.12p2版本之前存在权限提升漏洞，该漏洞源于sudoedit（也称为-e）功能对用户提供的环境变量（SUDO_EDITOR、VISUAL和EDITOR）中传递的额外参数处理不当。攻击者可利用此漏洞将任意文件路径追加到待处理文件列表中，从而实现权限提升。具体而言，当用户指定的编辑器包含“--”参数时，会绕过原有的保护机制，例如设置EDITOR='vim -- /path/to/extra/file'即可触发漏洞。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="sudo" release="8.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/sudo-1.8.29-8.el8_7.1.x86_64.rpm" version="1.8.29">
					<filename>sudo-1.8.29-8.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="sudo-devel" release="8.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/sudo-devel-1.8.29-8.el8_7.1.i686.rpm" version="1.8.29">
					<filename>sudo-devel-1.8.29-8.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="sudo-devel" release="8.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/sudo-devel-1.8.29-8.el8_7.1.x86_64.rpm" version="1.8.29">
					<filename>sudo-devel-1.8.29-8.el8_7.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1085</id>
		<title>关于 compat-exiv2-026 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:20"/>
		<updated date="2023-02-28 18:58:55"/>
		<severity>Moderate</severity>
		<description>关于 compat-exiv2-026 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-18898" id="CVE-2020-18898" severity="Moderate" severity_desc="中风险" title="Exiv2是Andreas Huggel个人开发者的一套用于管理图像元数据的C++库和命令行应用程序。该产品提供了读取和写入EXIF、IPTC和XMP等多种格式图像元数据的功能。Exiv2 中存在缓冲区错误漏洞，该漏洞源于产品 image.cpp 中的Exiv2：：Image：：printIFDStructure函数会导致堆栈资源耗尽。攻击者可通过该漏洞导致拒绝服务。以下产品及版本受到影响：Exiv2 0.27 版本。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="compat-exiv2-026" release="7.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/compat-exiv2-026-0.26-7.el8.i686.rpm" version="0.26">
					<filename>compat-exiv2-026-0.26-7.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="compat-exiv2-026" release="7.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/compat-exiv2-026-0.26-7.el8.x86_64.rpm" version="0.26">
					<filename>compat-exiv2-026-0.26-7.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1090</id>
		<title>关于 e2fsprogs 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:34"/>
		<updated date="2023-02-28 18:59:27"/>
		<severity>Moderate</severity>
		<description>关于 e2fsprogs 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1304" id="CVE-2022-1304" severity="Important" severity_desc="高风险" title="e2fsprogs 1.46.5版本中的文件系统处理模块存在缓冲区越界读写漏洞，该漏洞源于在解析特制文件系统镜像时未能正确验证边界条件，攻击者可通过提供恶意构造的文件系统镜像触发该漏洞，导致程序发生段错误（崩溃）或可能实现任意代码执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="e2fsprogs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>e2fsprogs-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="e2fsprogs-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-devel-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>e2fsprogs-devel-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="e2fsprogs-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-devel-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>e2fsprogs-devel-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="e2fsprogs-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-libs-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>e2fsprogs-libs-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="e2fsprogs-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-libs-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>e2fsprogs-libs-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="e2fsprogs-static" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-static-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>e2fsprogs-static-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="e2fsprogs-static" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/e2fsprogs-static-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>e2fsprogs-static-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libcom_err" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcom_err-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>libcom_err-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libcom_err" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcom_err-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>libcom_err-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libcom_err-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcom_err-devel-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>libcom_err-devel-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libcom_err-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcom_err-devel-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>libcom_err-devel-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libss" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libss-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>libss-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libss" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libss-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>libss-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libss-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libss-devel-1.45.6-5.el8.i686.rpm" version="1.45.6">
					<filename>libss-devel-1.45.6-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libss-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libss-devel-1.45.6-5.el8.x86_64.rpm" version="1.45.6">
					<filename>libss-devel-1.45.6-5.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1091</id>
		<title>关于 exiv2 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:37"/>
		<updated date="2023-02-28 18:59:51"/>
		<severity>Moderate</severity>
		<description>关于 exiv2 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-18898" id="CVE-2020-18898" severity="Moderate" severity_desc="中风险" title="Exiv2是Andreas Huggel个人开发者的一套用于管理图像元数据的C++库和命令行应用程序。该产品提供了读取和写入EXIF、IPTC和XMP等多种格式图像元数据的功能。Exiv2 中存在缓冲区错误漏洞，该漏洞源于产品 image.cpp 中的Exiv2：：Image：：printIFDStructure函数会导致堆栈资源耗尽。攻击者可通过该漏洞导致拒绝服务。以下产品及版本受到影响：Exiv2 0.27 版本。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="exiv2" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-0.27.5-2.el8.x86_64.rpm" version="0.27.5">
					<filename>exiv2-0.27.5-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="exiv2-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-devel-0.27.5-2.el8.i686.rpm" version="0.27.5">
					<filename>exiv2-devel-0.27.5-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="exiv2-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-devel-0.27.5-2.el8.x86_64.rpm" version="0.27.5">
					<filename>exiv2-devel-0.27.5-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="exiv2-doc" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-doc-0.27.5-2.el8.noarch.rpm" version="0.27.5">
					<filename>exiv2-doc-0.27.5-2.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="exiv2-libs" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-libs-0.27.5-2.el8.i686.rpm" version="0.27.5">
					<filename>exiv2-libs-0.27.5-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="exiv2-libs" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/exiv2-libs-0.27.5-2.el8.x86_64.rpm" version="0.27.5">
					<filename>exiv2-libs-0.27.5-2.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1092</id>
		<title>关于 fapolicyd 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:40"/>
		<updated date="2023-02-28 19:00:44"/>
		<severity>Moderate</severity>
		<description>关于 fapolicyd 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1117" id="CVE-2022-1117" severity="Moderate" severity_desc="中风险" title="glibc（GNU C Library）是GNU计划所实现的C标准库。glibc 存在安全漏洞，该漏洞源于应用构建时正则表达式可能无法正确检测运行时链接器，应用程序的模式检测可能无法检测到模式并允许其执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="fapolicyd" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fapolicyd-1.1-6.el8.x86_64.rpm" version="1.1">
					<filename>fapolicyd-1.1-6.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="fapolicyd-selinux" release="6.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fapolicyd-selinux-1.1-6.el8.noarch.rpm" version="1.1">
					<filename>fapolicyd-selinux-1.1-6.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1093</id>
		<title>关于 fetchmail 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:43"/>
		<updated date="2023-02-28 19:00:58"/>
		<severity>Moderate</severity>
		<description>关于 fetchmail 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-36386" id="CVE-2021-36386" severity="Moderate" severity_desc="中风险" title="Fetchmail 6.4.20之前的版本存在安全漏洞。该漏洞源于report.c中的report_vbuild有时会忽略va_list参数的初始化。这可能会导致邮件服务器拒绝服务，或者其他未明确的影响。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-39272" id="CVE-2021-39272" severity="Moderate" severity_desc="中风险" title="在6.4.22之前的Fetchmail未能执行STARTTLS会话加密,如某些情况与IMAP和PREAUTH。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="fetchmail" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fetchmail-6.4.24-1.el8.x86_64.rpm" version="6.4.24">
					<filename>fetchmail-6.4.24-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1094</id>
		<title>关于 flatpak-builder 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:46"/>
		<updated date="2024-01-15 11:08:20"/>
		<severity>Moderate</severity>
		<description>关于 flatpak-builder 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21682" id="CVE-2022-21682" severity="Moderate" severity_desc="中风险" title="Flatpak是一套用于Linux桌面应用计算机环境的应用程序虚拟化系统。Flatpak 1.12.3和1.10.6之前版本存在安全漏洞，攻击者可利用该漏洞通过恶意应用程序替换appstream util二进制文件，并可能执行其他恶意操作。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="flatpak-builder" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/flatpak-builder-1.0.14-2.el8.x86_64.rpm" version="1.0.14">
					<filename>flatpak-builder-1.0.14-2.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1096</id>
		<title>关于 gstreamer1-plugins-good 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:39:52"/>
		<updated date="2023-02-28 18:59:39"/>
		<severity>Moderate</severity>
		<description>关于 gstreamer1-plugins-good 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3497" id="CVE-2021-3497" severity="Important" severity_desc="高风险" title="GStreamer 1.18.4之前版本在解复用某些损坏的Matroska文件时，可能会在错误处理路径中访问已被释放的内存。该漏洞源于对异常处理流程中的内存管理不当，攻击者可通过诱导用户打开恶意构造的媒体文件来触发此缺陷，可能导致信息泄露、程序崩溃或任意代码执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="gstreamer1-plugins-good" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gstreamer1-plugins-good-1.16.1-3.el8.i686.rpm" version="1.16.1">
					<filename>gstreamer1-plugins-good-1.16.1-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gstreamer1-plugins-good" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gstreamer1-plugins-good-1.16.1-3.el8.x86_64.rpm" version="1.16.1">
					<filename>gstreamer1-plugins-good-1.16.1-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="gstreamer1-plugins-good-gtk" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gstreamer1-plugins-good-gtk-1.16.1-3.el8.i686.rpm" version="1.16.1">
					<filename>gstreamer1-plugins-good-gtk-1.16.1-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gstreamer1-plugins-good-gtk" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gstreamer1-plugins-good-gtk-1.16.1-3.el8.x86_64.rpm" version="1.16.1">
					<filename>gstreamer1-plugins-good-gtk-1.16.1-3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1100</id>
		<title>关于 libksba 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-23 13:40:02"/>
		<updated date="2023-02-28 18:35:40"/>
		<severity>Critical</severity>
		<description>关于 libksba 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-3515" id="CVE-2022-3515" severity="Critical" severity_desc="严重风险" title="Libksba库中的CRL解析器存在整数溢出漏洞，攻击者可通过向应用程序传递特制数据（例如恶意的S/MIME附件）远程利用该漏洞，在目标系统上执行任意代码。该漏洞源于ASN.1结构解析过程中对输入数据长度处理不当，导致缓冲区溢出，可能引发远程代码执行或拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-47629" id="CVE-2022-47629" severity="Critical" severity_desc="严重风险" title="Libksba 1.6.3之前版本在CRL签名解析器中存在整数溢出漏洞，该漏洞源于对输入数据长度处理不当，导致在处理恶意构造的证书吊销列表(CRL)时可能发生缓冲区溢出，攻击者可利用此漏洞通过提供特制的CRL数据引发拒绝服务或潜在的远程代码执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libksba" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libksba-1.3.5-9.el8_7.i686.rpm" version="1.3.5">
					<filename>libksba-1.3.5-9.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libksba" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libksba-1.3.5-9.el8_7.x86_64.rpm" version="1.3.5">
					<filename>libksba-1.3.5-9.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libksba-devel" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libksba-devel-1.3.5-9.el8_7.i686.rpm" version="1.3.5">
					<filename>libksba-devel-1.3.5-9.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libksba-devel" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libksba-devel-1.3.5-9.el8_7.x86_64.rpm" version="1.3.5">
					<filename>libksba-devel-1.3.5-9.el8_7.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1118</id>
		<title>关于 bind 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:06"/>
		<updated date="2023-03-03 19:22:21"/>
		<severity>Moderate</severity>
		<description>关于 bind 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-25219" id="CVE-2021-25219" severity="Moderate" severity_desc="中风险" title="ISC BIND是美国ISC公司实现了DNS协议的一套开源软件。BIND 中存在资源管理错误漏洞，该漏洞源于产品授权服务器的处理错误。攻击者可通过该漏洞令BIND解析器性能下降进而导致查询处理延迟。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-25220" id="CVE-2021-25220" severity="Moderate" severity_desc="中风险" title="ISC BIND是美国ISC公司的一套实现了DNS协议的开源软件。ISC BIND 存在安全漏洞，该漏洞源于已经收紧了接受记录到缓存中的规则，以防止如果转发器在配置的范围之外发送记录可能会中毒。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="32" name="bind" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-chroot" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-chroot-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-chroot-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-devel-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-devel-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-devel-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-devel-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-export-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-export-devel-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-export-devel-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-export-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-export-devel-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-export-devel-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-export-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-export-libs-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-export-libs-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-export-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-export-libs-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-export-libs-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-libs-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-libs-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-libs-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-libs-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-libs-lite" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-libs-lite-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-libs-lite-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-libs-lite" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-libs-lite-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-libs-lite-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="32" name="bind-license" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-license-9.11.36-5.el8.noarch.rpm" version="9.11.36">
					<filename>bind-license-9.11.36-5.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-lite-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-lite-devel-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-lite-devel-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-lite-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-lite-devel-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-lite-devel-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-pkcs11" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-pkcs11-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-pkcs11-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-devel-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-pkcs11-devel-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-pkcs11-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-devel-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-pkcs11-devel-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="32" name="bind-pkcs11-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-libs-9.11.36-5.el8.i686.rpm" version="9.11.36">
					<filename>bind-pkcs11-libs-9.11.36-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-pkcs11-libs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-libs-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-pkcs11-libs-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-pkcs11-utils" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-pkcs11-utils-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-pkcs11-utils-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-sdb" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-sdb-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-sdb-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-sdb-chroot" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-sdb-chroot-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-sdb-chroot-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="32" name="bind-utils" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bind-utils-9.11.36-5.el8.x86_64.rpm" version="9.11.36">
					<filename>bind-utils-9.11.36-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="32" name="python3-bind" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-bind-9.11.36-5.el8.noarch.rpm" version="9.11.36">
					<filename>python3-bind-9.11.36-5.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1119</id>
		<title>关于 cups 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:09"/>
		<updated date="2023-03-03 19:22:10"/>
		<severity>Important</severity>
		<description>关于 cups 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26691" id="CVE-2022-26691" severity="Moderate" severity_desc="中风险" title="Apple macOS等都是美国苹果（Apple）公司的产品。Apple macOS是一套专为Mac计算机所开发的专用操作系统。Apple macOS Catalina是一套专为Mac计算机所开发的专用操作系统。Apple macOS Big Sur是macOS Big Sur是苹果公司用于MAC操作系统macOS的第17个主要版本。
Apple macOS Catalina 2022-003版本、Apple macOS Monterey 12.3版本、Apple macOS Big Sur 11.6.5版本存在授权问题漏洞。攻击者利用该漏洞提升权限。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="cups" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="cups-client" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-client-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-client-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="cups-devel" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-devel-2.2.6-45.el8_6.2.ks8.01.i686.rpm" version="2.2.6">
					<filename>cups-devel-2.2.6-45.el8_6.2.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="cups-devel" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-devel-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-devel-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="1" name="cups-filesystem" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-filesystem-2.2.6-45.el8_6.2.ks8.01.noarch.rpm" version="2.2.6">
					<filename>cups-filesystem-2.2.6-45.el8_6.2.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="cups-ipptool" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-ipptool-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-ipptool-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="cups-libs" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-libs-2.2.6-45.el8_6.2.ks8.01.i686.rpm" version="2.2.6">
					<filename>cups-libs-2.2.6-45.el8_6.2.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="cups-libs" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-libs-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-libs-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="cups-lpd" release="45.el8_6.2.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/cups-lpd-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm" version="2.2.6">
					<filename>cups-lpd-2.2.6-45.el8_6.2.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1123</id>
		<title>关于 freetype 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:21"/>
		<updated date="2023-03-03 19:21:27"/>
		<severity>Critical</severity>
		<description>关于 freetype 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-27404" id="CVE-2022-27404" severity="Critical" severity_desc="严重风险" title="FreeType是一款使用C语言编写的开源字体渲染库。

FreeType 存在安全漏洞，该漏洞通过函数 sfnt_init_face 被发现包含堆缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-27405" id="CVE-2022-27405" severity="Important" severity_desc="高风险" title="FreeType是一款使用C语言编写的开源字体渲染库。FreeType 存在安全漏洞，该漏洞源于提交 53dfdcd8198d2b3201a23c4bad9190519ba918db 通过 FNT_Size_Request 函数发现包含分段违规。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-27406" id="CVE-2022-27406" severity="Important" severity_desc="高风险" title="FreeType是一款使用C语言编写的开源字体渲染库。FreeType 存在安全漏洞，该漏洞源于分段违规。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="freetype" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/freetype-2.9.1-9.el8.i686.rpm" version="2.9.1">
					<filename>freetype-2.9.1-9.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="freetype" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/freetype-2.9.1-9.el8.x86_64.rpm" version="2.9.1">
					<filename>freetype-2.9.1-9.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="freetype-demos" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/freetype-demos-2.9.1-9.el8.x86_64.rpm" version="2.9.1">
					<filename>freetype-demos-2.9.1-9.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="freetype-devel" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/freetype-devel-2.9.1-9.el8.i686.rpm" version="2.9.1">
					<filename>freetype-devel-2.9.1-9.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="freetype-devel" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/freetype-devel-2.9.1-9.el8.x86_64.rpm" version="2.9.1">
					<filename>freetype-devel-2.9.1-9.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1124</id>
		<title>关于 fribidi 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:23"/>
		<updated date="2023-03-03 19:21:17"/>
		<severity>Important</severity>
		<description>关于 fribidi 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25308" id="CVE-2022-25308" severity="Important" severity_desc="高风险" title="Fribidi 组件存在栈缓冲区溢出漏洞，该漏洞源于在处理特制文件时未能正确验证输入数据长度，导致攻击者可通过传递精心构造的文件触发缓冲区溢出，可能造成内存泄漏或拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25309" id="CVE-2022-25309" severity="Moderate" severity_desc="中风险" title="Fribidi 组件中的 fribidi_cap_rtl_to_unicode() 函数存在堆缓冲区溢出漏洞，该漏洞位于 fribidi-char-sets-cap-rtl.c 文件中。攻击者可以通过向 Fribidi 应用程序传递一个特制文件，并使用 '--caprtl' 选项来触发该漏洞，从而导致应用程序崩溃，引发拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25310" id="CVE-2022-25310" severity="Moderate" severity_desc="中风险" title="Fribidi 库中的 fribidi_remove_bidi_marks() 函数存在缓冲区溢出漏洞，攻击者可通过传递特制文件触发该缺陷，导致程序发生段错误（SEGV）并引发拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="fribidi" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fribidi-1.0.4-9.el8.i686.rpm" version="1.0.4">
					<filename>fribidi-1.0.4-9.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fribidi" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fribidi-1.0.4-9.el8.x86_64.rpm" version="1.0.4">
					<filename>fribidi-1.0.4-9.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fribidi-devel" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fribidi-devel-1.0.4-9.el8.i686.rpm" version="1.0.4">
					<filename>fribidi-devel-1.0.4-9.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fribidi-devel" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fribidi-devel-1.0.4-9.el8.x86_64.rpm" version="1.0.4">
					<filename>fribidi-devel-1.0.4-9.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1125</id>
		<title>关于 gnutls 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:26"/>
		<updated date="2023-03-03 19:21:07"/>
		<severity>Important</severity>
		<description>关于 gnutls 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-2509" id="CVE-2022-2509" severity="Important" severity_desc="高风险" title="GnuTLS组件在验证PKCS7签名时存在安全漏洞，该漏洞源于在gnutls_pkcs7_verify函数中处理恶意PKCS7签名数据时发生双重释放错误，导致攻击者可通过构造特定数据触发漏洞，造成拒绝服务或远程代码执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="gnutls" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-3.6.16-5.el8_6.i686.rpm" version="3.6.16">
					<filename>gnutls-3.6.16-5.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gnutls" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-3.6.16-5.el8_6.x86_64.rpm" version="3.6.16">
					<filename>gnutls-3.6.16-5.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="gnutls-c++" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-c++-3.6.16-5.el8_6.i686.rpm" version="3.6.16">
					<filename>gnutls-c++-3.6.16-5.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gnutls-c++" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-c++-3.6.16-5.el8_6.x86_64.rpm" version="3.6.16">
					<filename>gnutls-c++-3.6.16-5.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="gnutls-dane" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-dane-3.6.16-5.el8_6.i686.rpm" version="3.6.16">
					<filename>gnutls-dane-3.6.16-5.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gnutls-dane" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-dane-3.6.16-5.el8_6.x86_64.rpm" version="3.6.16">
					<filename>gnutls-dane-3.6.16-5.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="gnutls-devel" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-devel-3.6.16-5.el8_6.i686.rpm" version="3.6.16">
					<filename>gnutls-devel-3.6.16-5.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gnutls-devel" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-devel-3.6.16-5.el8_6.x86_64.rpm" version="3.6.16">
					<filename>gnutls-devel-3.6.16-5.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="gnutls-utils" release="5.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gnutls-utils-3.6.16-5.el8_6.x86_64.rpm" version="3.6.16">
					<filename>gnutls-utils-3.6.16-5.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1126</id>
		<title>关于 gzip 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:29"/>
		<updated date="2023-03-03 19:20:56"/>
		<severity>Important</severity>
		<description>关于 gzip 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1271" id="CVE-2022-1271" severity="Important" severity_desc="高风险" title="GNU gzip的zgrep工具存在任意文件写入漏洞，该漏洞源于在处理包含两个或更多换行符的文件名时对文件名验证不足的逻辑缺陷。可能导致远程低权限攻击者利用精心构造的多行文件名，强制zgrep将攻击者选择的内容写入攻击者选定的任意文件。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="gzip" release="13.el8_5.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gzip-1.9-13.el8_5.ks8.01.x86_64.rpm" version="1.9">
					<filename>gzip-1.9-13.el8_5.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1130</id>
		<title>关于 libgcrypt 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:41"/>
		<updated date="2023-03-03 19:20:14"/>
		<severity>Moderate</severity>
		<description>关于 libgcrypt 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-40528" id="CVE-2021-40528" severity="Moderate" severity_desc="中风险" title="Libgcrypt 1.9.4之前版本存在加密问题漏洞，该漏洞源于在1.9.4之前的Libgcrypt中的ElGamal实现允许明文恢复，因为在两个密码库之间的交互过程中，接收方公钥定义的质数、接收方公钥定义的生成器、和发送方的临时指数可能导致对OpenPGP的交叉配置攻击。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libgcrypt" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libgcrypt-1.8.5-7.el8_6.i686.rpm" version="1.8.5">
					<filename>libgcrypt-1.8.5-7.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libgcrypt" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libgcrypt-1.8.5-7.el8_6.x86_64.rpm" version="1.8.5">
					<filename>libgcrypt-1.8.5-7.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libgcrypt-devel" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libgcrypt-devel-1.8.5-7.el8_6.i686.rpm" version="1.8.5">
					<filename>libgcrypt-devel-1.8.5-7.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libgcrypt-devel" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libgcrypt-devel-1.8.5-7.el8_6.x86_64.rpm" version="1.8.5">
					<filename>libgcrypt-devel-1.8.5-7.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1131</id>
		<title>关于 libinput 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:44"/>
		<updated date="2023-03-03 19:20:03"/>
		<severity>Important</severity>
		<description>关于 libinput 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1215" id="CVE-2022-1215" severity="Important" severity_desc="高风险" title="libinput组件存在格式化字符串漏洞，该漏洞源于在处理用户输入时未正确验证格式化字符串，攻击者可通过构造恶意输入触发该漏洞，可能导致任意代码执行、信息泄露或拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libinput" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-1.16.3-3.el8_6.i686.rpm" version="1.16.3">
					<filename>libinput-1.16.3-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libinput" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-1.16.3-3.el8_6.x86_64.rpm" version="1.16.3">
					<filename>libinput-1.16.3-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libinput-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-devel-1.16.3-3.el8_6.i686.rpm" version="1.16.3">
					<filename>libinput-devel-1.16.3-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libinput-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-devel-1.16.3-3.el8_6.x86_64.rpm" version="1.16.3">
					<filename>libinput-devel-1.16.3-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libinput-test" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-test-1.16.3-3.el8_6.x86_64.rpm" version="1.16.3">
					<filename>libinput-test-1.16.3-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libinput-utils" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libinput-utils-1.16.3-3.el8_6.x86_64.rpm" version="1.16.3">
					<filename>libinput-utils-1.16.3-3.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1132</id>
		<title>关于 libpq 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:46"/>
		<updated date="2023-03-03 19:19:53"/>
		<severity>Low</severity>
		<description>关于 libpq 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-23222" id="CVE-2021-23222" severity="Low" severity_desc="低风险" title="PostgreSQL是Postgresql组织的一套自由的对象关系型数据库管理系统。该系统支持大部分SQL标准并且提供了许多其他特性，例如外键、触发器、视图等。PostgreSQL 存在安全漏洞，该漏洞源于PostgreSQL中的libpq进程处理加密连接的方式造成的。攻击者可利用该漏洞窃取可能在会话早期传输的客户端密码或其他机密数据。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libpq" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libpq-13.5-1.el8.i686.rpm" version="13.5">
					<filename>libpq-13.5-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libpq" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libpq-13.5-1.el8.x86_64.rpm" version="13.5">
					<filename>libpq-13.5-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libpq-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libpq-devel-13.5-1.el8.i686.rpm" version="13.5">
					<filename>libpq-devel-13.5-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libpq-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libpq-devel-13.5-1.el8.x86_64.rpm" version="13.5">
					<filename>libpq-devel-13.5-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1133</id>
		<title>关于 libsndfile 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:49"/>
		<updated date="2023-03-03 19:19:42"/>
		<severity>Important</severity>
		<description>关于 libsndfile 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4156" id="CVE-2021-4156" severity="Important" severity_desc="高风险" title="libsndfile组件在FLAC编解码器功能中存在安全漏洞，该漏洞源于在处理FLAC文件时未正确验证输入数据长度，导致攻击者可通过提交特制文件触发越界读取，从而导致应用程序崩溃或泄露内存信息。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libsndfile" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libsndfile-1.0.28-12.el8.i686.rpm" version="1.0.28">
					<filename>libsndfile-1.0.28-12.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libsndfile" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libsndfile-1.0.28-12.el8.x86_64.rpm" version="1.0.28">
					<filename>libsndfile-1.0.28-12.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libsndfile-devel" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libsndfile-devel-1.0.28-12.el8.i686.rpm" version="1.0.28">
					<filename>libsndfile-devel-1.0.28-12.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libsndfile-devel" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libsndfile-devel-1.0.28-12.el8.x86_64.rpm" version="1.0.28">
					<filename>libsndfile-devel-1.0.28-12.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libsndfile-utils" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libsndfile-utils-1.0.28-12.el8.x86_64.rpm" version="1.0.28">
					<filename>libsndfile-utils-1.0.28-12.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202302-1134</id>
		<title>关于 libssh 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-02-28 20:50:51"/>
		<updated date="2023-03-03 19:19:33"/>
		<severity>Moderate</severity>
		<description>关于 libssh 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3634" id="CVE-2021-3634" severity="Moderate" severity_desc="中风险" title="Libssh是Libssh组织的一个用于访问SSH服务的C语言开发包，它能够执行远程命令、文件传输，同时为远程的程序提供安全的传输通道。libssh 存在缓冲区错误漏洞，该漏洞源于 libssh 允许在密钥重新交换操作中改变密钥交换方法。改变密钥交换方法时，如果采用不同长度的 hash ，将会导致缓冲区错误。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libssh" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libssh-0.9.6-3.el8.i686.rpm" version="0.9.6">
					<filename>libssh-0.9.6-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libssh" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libssh-0.9.6-3.el8.x86_64.rpm" version="0.9.6">
					<filename>libssh-0.9.6-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="libssh-config" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libssh-config-0.9.6-3.el8.noarch.rpm" version="0.9.6">
					<filename>libssh-config-0.9.6-3.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libssh-devel" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libssh-devel-0.9.6-3.el8.i686.rpm" version="0.9.6">
					<filename>libssh-devel-0.9.6-3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libssh-devel" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libssh-devel-0.9.6-3.el8.x86_64.rpm" version="0.9.6">
					<filename>libssh-devel-0.9.6-3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1010</id>
		<title>关于 openjpeg2 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-07 14:27:12"/>
		<updated date="2023-03-13 13:28:28"/>
		<severity>Low</severity>
		<description>关于 openjpeg2 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1122" id="CVE-2022-1122" severity="Moderate" severity_desc="中风险" title="openjpeg2的opj2_decompress程序存在拒绝服务漏洞，该漏洞源于在处理包含大量文件的输入目录时，分配缓冲区存储文件名失败后对未初始化指针调用free()的逻辑缺陷。可能导致程序发生段错误并造成拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="openjpeg2" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-2.4.0-5.el8.i686.rpm" version="2.4.0">
					<filename>openjpeg2-2.4.0-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openjpeg2" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-2.4.0-5.el8.x86_64.rpm" version="2.4.0">
					<filename>openjpeg2-2.4.0-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="openjpeg2-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-devel-2.4.0-5.el8.i686.rpm" version="2.4.0">
					<filename>openjpeg2-devel-2.4.0-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openjpeg2-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-devel-2.4.0-5.el8.x86_64.rpm" version="2.4.0">
					<filename>openjpeg2-devel-2.4.0-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="openjpeg2-devel-docs" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-devel-docs-2.4.0-5.el8.noarch.rpm" version="2.4.0">
					<filename>openjpeg2-devel-docs-2.4.0-5.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="openjpeg2-tools" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-tools-2.4.0-5.el8.i686.rpm" version="2.4.0">
					<filename>openjpeg2-tools-2.4.0-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openjpeg2-tools" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openjpeg2-tools-2.4.0-5.el8.x86_64.rpm" version="2.4.0">
					<filename>openjpeg2-tools-2.4.0-5.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1018</id>
		<title>关于 nspr 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-10 16:53:37"/>
		<updated date="2023-03-13 13:26:43"/>
		<severity>Moderate</severity>
		<description>关于 nspr 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-11756" id="CVE-2019-11756" severity="Moderate" severity_desc="中风险" title="Mozilla Network Security Services（NSS）是美国Mozilla基金会的一个函数库（网络安全服务库）。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。 Mozilla NSS中存在资源管理错误漏洞。攻击者可利用该漏洞造成拒绝服务并可能运行代码。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-17006" id="CVE-2019-17006" severity="Moderate" severity_desc="中风险" title="NSS是美国Mozilla基金会的一个底层密码学库。该库支持多种加密算法，并且 Firefox 浏览器的TLS实现基于该库。该漏洞源于网络系统或产品未充分验证数据的来源或真实性。攻击者可利用伪造的数据进行攻击。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-12403" id="CVE-2020-12403" severity="Moderate" severity_desc="中风险" title="Mozilla Network Security Services（NSS）是美国Mozilla基金会的一个函数库（网络安全服务库）。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。Mozilla Network Security Services 3.55之前版本中存在缓冲区错误漏洞。攻击者可利用该漏洞获取敏感信息。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="nspr" release="2.el8_2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-4.25.0-2.el8_2.x86_64.rpm" version="4.25.0">
					<filename>nspr-4.25.0-2.el8_2.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nspr-devel" release="2.el8_2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-devel-4.25.0-2.el8_2.i686.rpm" version="4.25.0">
					<filename>nspr-devel-4.25.0-2.el8_2.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nspr-devel" release="2.el8_2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-devel-4.25.0-2.el8_2.x86_64.rpm" version="4.25.0">
					<filename>nspr-devel-4.25.0-2.el8_2.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1019</id>
		<title>关于 nss 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-10 16:53:41"/>
		<updated date="2023-03-13 13:26:31"/>
		<severity>Moderate</severity>
		<description>关于 nss 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-11756" id="CVE-2019-11756" severity="Moderate" severity_desc="中风险" title="Mozilla Network Security Services（NSS）是美国Mozilla基金会的一个函数库（网络安全服务库）。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。 Mozilla NSS中存在资源管理错误漏洞。攻击者可利用该漏洞造成拒绝服务并可能运行代码。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-17006" id="CVE-2019-17006" severity="Moderate" severity_desc="中风险" title="NSS是美国Mozilla基金会的一个底层密码学库。该库支持多种加密算法，并且 Firefox 浏览器的TLS实现基于该库。该漏洞源于网络系统或产品未充分验证数据的来源或真实性。攻击者可利用伪造的数据进行攻击。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-12403" id="CVE-2020-12403" severity="Moderate" severity_desc="中风险" title="Mozilla Network Security Services（NSS）是美国Mozilla基金会的一个函数库（网络安全服务库）。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。Mozilla Network Security Services 3.55之前版本中存在缓冲区错误漏洞。攻击者可利用该漏洞获取敏感信息。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="nss" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-devel-3.53.1-17.el8.ks8.01.i686.rpm" version="3.53.1">
					<filename>nss-devel-3.53.1-17.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-devel-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-devel-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-pkcs11-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-pkcs11-devel-3.53.1-17.el8.ks8.01.i686.rpm" version="3.53.1">
					<filename>nss-pkcs11-devel-3.53.1-17.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-pkcs11-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-pkcs11-devel-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-pkcs11-devel-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-softokn-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-devel-3.53.1-17.el8.ks8.01.i686.rpm" version="3.53.1">
					<filename>nss-softokn-devel-3.53.1-17.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-devel-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-softokn-devel-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-freebl" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-softokn-freebl-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn-freebl-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-devel-3.53.1-17.el8.ks8.01.i686.rpm" version="3.53.1">
					<filename>nss-softokn-freebl-devel-3.53.1-17.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-freebl-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-devel-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-softokn-freebl-devel-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-sysinit" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-sysinit-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-sysinit-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-tools" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-tools-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-tools-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-util" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-util-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-util-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-devel-3.53.1-17.el8.ks8.01.i686.rpm" version="3.53.1">
					<filename>nss-util-devel-3.53.1-17.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-util-devel" release="17.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-devel-3.53.1-17.el8.ks8.01.x86_64.rpm" version="3.53.1">
					<filename>nss-util-devel-3.53.1-17.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1020</id>
		<title>关于 openssl 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-10 16:53:44"/>
		<updated date="2023-06-19 13:09:50"/>
		<severity>Critical</severity>
		<description>关于 openssl 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1292" id="CVE-2022-1292" severity="Important" severity_desc="高风险" title="OpenSSL 存在操作系统命令注入漏洞，该漏洞源于c_rehash 脚本未正确清理 shell 元字符导致命令注入。攻击者利用该漏洞执行任意命令。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-2068" id="CVE-2022-2068" severity="Important" severity_desc="高风险" title="OpenSSL 1.0.2、1.1.1 和 3.0 版本存在安全漏洞，该漏洞源于错误地处理了 c_rehash 脚本。本地攻击者可能会在运行 c_rehash 时利用该漏洞执行任意命令。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-2097" id="CVE-2022-2097" severity="Moderate" severity_desc="中风险" title="OpenSSL是Openssl团队的一个开源的能够实现安全套接层（SSLv2/v3）和安全传输层（TLSv1）协议的通用加密库。该产品支持多种加密算法，包括对称密码、哈希算法、安全散列算法等。OpenSSL存在安全漏洞，该漏洞源于不会加密全部数据，从而导致 16 个字节的明文泄露。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="openssl" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-1.1.1k-7.el8_6.x86_64.rpm" version="1.1.1k">
					<filename>openssl-1.1.1k-7.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-devel" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-devel-1.1.1k-7.el8_6.i686.rpm" version="1.1.1k">
					<filename>openssl-devel-1.1.1k-7.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-devel" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-devel-1.1.1k-7.el8_6.x86_64.rpm" version="1.1.1k">
					<filename>openssl-devel-1.1.1k-7.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-libs" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-libs-1.1.1k-7.el8_6.i686.rpm" version="1.1.1k">
					<filename>openssl-libs-1.1.1k-7.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-libs" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-libs-1.1.1k-7.el8_6.x86_64.rpm" version="1.1.1k">
					<filename>openssl-libs-1.1.1k-7.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-perl" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-perl-1.1.1k-7.el8_6.x86_64.rpm" version="1.1.1k">
					<filename>openssl-perl-1.1.1k-7.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-static" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-static-1.1.1k-7.el8_6.i686.rpm" version="1.1.1k">
					<filename>openssl-static-1.1.1k-7.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-static" release="7.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-static-1.1.1k-7.el8_6.x86_64.rpm" version="1.1.1k">
					<filename>openssl-static-1.1.1k-7.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1051</id>
		<title>关于 java-1.8.0-openjdk 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:16"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 java-1.8.0-openjdk 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21540" id="CVE-2022-21540" severity="Moderate" severity_desc="中风险" title="Oracle Java SE的Oracle GraalVM Enterprise Edition产品Oracle Java SE漏洞(组件:Hotspot)。受影响的版本有Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1;Oracle GraalVM企业版:20.3.6,21.3.2和22.1.0。容易利用的漏洞允许未经身份验证的攻击者通过多个协议进行网络访问，从而危害Oracle Java SE, Oracle GraalVM Enterprise Edition。该漏洞攻击成功后，可能导致对Oracle Java SE、Oracle GraalVM Enterprise Edition可访问数据的子集进行未授权的读访问。注意:此漏洞适用于Java部署，通常在运行沙箱Java Web Start应用程序或沙箱Java小程序的客户端中，这些客户端加载和运行不受信任的代码(例如，来自互联网的代码)，并依赖Java沙箱来获得安全性。使用指定组件中的api也可以利用此漏洞，例如，通过向api提供数据的web服务。CVSS 3.1基础评分5.3(保密影响)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21541" id="CVE-2022-21541" severity="Moderate" severity_desc="中风险" title="Oracle Java SE的Oracle GraalVM Enterprise Edition产品Oracle Java SE漏洞(组件:Hotspot)。受影响的版本有Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1;Oracle GraalVM企业版:20.3.6,21.3.2和22.1.0。容易利用的漏洞允许未经身份验证的攻击者通过多个协议进行网络访问，从而危害Oracle Java SE, Oracle GraalVM Enterprise Edition。该漏洞攻击成功后，可能导致对Oracle Java SE、Oracle GraalVM Enterprise Edition可访问数据的子集进行未授权的读访问。注意:此漏洞适用于Java部署，通常在运行沙箱Java Web Start应用程序或沙箱Java小程序的客户端中，这些客户端加载和运行不受信任的代码(例如，来自互联网的代码)，并依赖Java沙箱来获得安全性。使用指定组件中的api也可以利用此漏洞，例如，通过向api提供数据的web服务。CVSS 3.1基础评分5.3(保密影响)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21619" id="CVE-2022-21619" severity="Low" severity_desc="低风险" title="Oracle Java SE是美国甲骨文（Oracle）公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21624" id="CVE-2022-21624" severity="Low" severity_desc="低风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞可以更新、插入或删除数据库数据。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21626" id="CVE-2022-21626" severity="Moderate" severity_desc="中风险" title="Oracle Java SE是美国甲骨文（Oracle）公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21628" id="CVE-2022-21628" severity="Moderate" severity_desc="中风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-34169" id="CVE-2022-34169" severity="Important" severity_desc="高风险" title="Apache Xalan是美国阿帕奇（Apache）基金会的开源软件库。
Apache Xalan Java XSLT库存在输入验证错误漏洞，该漏洞源于在处理恶意的XSLT样式表时，存在整数截断问题。这可以用来破坏由内部XSLTC编译器生成的Java类文件并执行任意的Java字节码。Apache Xalan Java项目已处于休眠状态并正在退出。预计将来不会有解决这个问题的Apache Xalan Java版本。注意：Java 运行时（例如 OpenJDK）包括重新打包的 Xalan 副本。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2023-21830" id="CVE-2023-21830" severity="Moderate" severity_desc="中风险" title="Oracle Java SE是美国甲骨文（Oracle）公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。
Oracle Java SE 8u351, 8u351-perf 存在安全漏洞，攻击者可利用该漏洞导致对某些 Oracle Java SE、Oracle GraalVM 企业版可访问数据进行未经授权的更新、插入或删除访问。 注意：此漏洞适用于 Java 部署，通常在运行沙盒 Java Web Start 应用程序或沙盒 Java 小程序的客户端中，它们加载和运行不受信任的代码（例如，来自 Internet 的代码）并依赖 Java 沙箱来确保安全。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-accessibility" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-accessibility-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-accessibility-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-accessibility-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-accessibility-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-demo" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-demo-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-demo-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-demo-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-demo-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-demo-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-demo-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-demo-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-demo-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-devel" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-devel-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-devel-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-devel-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-devel-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-devel-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-devel-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-devel-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-devel-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-headless" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-headless-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-headless-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-headless-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-headless-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-headless-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-headless-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-headless-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-headless-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="1" name="java-1.8.0-openjdk-javadoc" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-javadoc-1.8.0.362.b09-2.el8_7.noarch.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-javadoc-1.8.0.362.b09-2.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="1" name="java-1.8.0-openjdk-javadoc-zip" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-javadoc-zip-1.8.0.362.b09-2.el8_7.noarch.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-javadoc-zip-1.8.0.362.b09-2.el8_7.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-src" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-src-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-src-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-src-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-src-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-src-fastdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-1.8.0-openjdk-src-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-1.8.0-openjdk-src-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm" version="1.8.0.362.b09">
					<filename>java-1.8.0-openjdk-src-slowdebug-1.8.0.362.b09-2.el8_7.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1054</id>
		<title>关于 java-11-openjdk 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:27"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 java-11-openjdk 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21540" id="CVE-2022-21540" severity="Moderate" severity_desc="中风险" title="Oracle Java SE的Oracle GraalVM Enterprise Edition产品Oracle Java SE漏洞(组件:Hotspot)。受影响的版本有Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1;Oracle GraalVM企业版:20.3.6,21.3.2和22.1.0。容易利用的漏洞允许未经身份验证的攻击者通过多个协议进行网络访问，从而危害Oracle Java SE, Oracle GraalVM Enterprise Edition。该漏洞攻击成功后，可能导致对Oracle Java SE、Oracle GraalVM Enterprise Edition可访问数据的子集进行未授权的读访问。注意:此漏洞适用于Java部署，通常在运行沙箱Java Web Start应用程序或沙箱Java小程序的客户端中，这些客户端加载和运行不受信任的代码(例如，来自互联网的代码)，并依赖Java沙箱来获得安全性。使用指定组件中的api也可以利用此漏洞，例如，通过向api提供数据的web服务。CVSS 3.1基础评分5.3(保密影响)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21541" id="CVE-2022-21541" severity="Moderate" severity_desc="中风险" title="Oracle Java SE的Oracle GraalVM Enterprise Edition产品Oracle Java SE漏洞(组件:Hotspot)。受影响的版本有Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1;Oracle GraalVM企业版:20.3.6,21.3.2和22.1.0。容易利用的漏洞允许未经身份验证的攻击者通过多个协议进行网络访问，从而危害Oracle Java SE, Oracle GraalVM Enterprise Edition。该漏洞攻击成功后，可能导致对Oracle Java SE、Oracle GraalVM Enterprise Edition可访问数据的子集进行未授权的读访问。注意:此漏洞适用于Java部署，通常在运行沙箱Java Web Start应用程序或沙箱Java小程序的客户端中，这些客户端加载和运行不受信任的代码(例如，来自互联网的代码)，并依赖Java沙箱来获得安全性。使用指定组件中的api也可以利用此漏洞，例如，通过向api提供数据的web服务。CVSS 3.1基础评分5.3(保密影响)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21618" id="CVE-2022-21618" severity="Moderate" severity_desc="中风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 17.0.4.1版本和19版本、Oracle GraalVM Enterprise Edition 21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞可以更新、插入或删除数据库数据。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21619" id="CVE-2022-21619" severity="Low" severity_desc="低风险" title="Oracle Java SE是美国甲骨文（Oracle）公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21624" id="CVE-2022-21624" severity="Low" severity_desc="低风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞可以更新、插入或删除数据库数据。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21626" id="CVE-2022-21626" severity="Moderate" severity_desc="中风险" title="Oracle Java SE是美国甲骨文（Oracle）公司的一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-21628" id="CVE-2022-21628" severity="Moderate" severity_desc="中风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 8u341版本、8u345 perf版本、11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞导致Oracle Java SE，Oracle GraalVM Enterprise Edition部分拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-34169" id="CVE-2022-34169" severity="Important" severity_desc="高风险" title="Apache Xalan是美国阿帕奇（Apache）基金会的开源软件库。
Apache Xalan Java XSLT库存在输入验证错误漏洞，该漏洞源于在处理恶意的XSLT样式表时，存在整数截断问题。这可以用来破坏由内部XSLTC编译器生成的Java类文件并执行任意的Java字节码。Apache Xalan Java项目已处于休眠状态并正在退出。预计将来不会有解决这个问题的Apache Xalan Java版本。注意：Java 运行时（例如 OpenJDK）包括重新打包的 Xalan 副本。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-39399" id="CVE-2022-39399" severity="Low" severity_desc="低风险" title="Oracle Java SE和Oracle GraalVM都是美国甲骨文（Oracle）公司的产品。Oracle Java SE是一款用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。Oracle GraalVM是一套使用Java语言编写的即时编译器。该产品支持多种编程语言和执行模式。Oracle Java SE 11.0.16.1版本、17.0.4.1版本、19版本，Oracle GraalVM Enterprise Edition 20.3.7版本、21.3.3版本和22.2.0版本存在安全漏洞。攻击者利用该漏洞可以更新、插入或删除数据库数据。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="1" name="java-11-openjdk" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-11.0.18.0.10-2.el8_7.i686.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-11.0.18.0.10-2.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-demo" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-demo-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-demo-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-demo-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-demo-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-demo-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-demo-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-demo-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-demo-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="java-11-openjdk-devel" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-devel-11.0.18.0.10-2.el8_7.i686.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-devel-11.0.18.0.10-2.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-devel" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-devel-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-devel-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-devel-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-devel-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-devel-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-devel-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-devel-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-devel-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="java-11-openjdk-headless" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-headless-11.0.18.0.10-2.el8_7.i686.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-headless-11.0.18.0.10-2.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-headless" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-headless-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-headless-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-headless-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-headless-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-headless-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-headless-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-headless-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-headless-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-javadoc" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-javadoc-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-javadoc-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-javadoc-zip" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-javadoc-zip-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-javadoc-zip-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-jmods" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-jmods-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-jmods-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-jmods-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-jmods-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-jmods-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-jmods-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-jmods-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-jmods-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-src" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-src-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-src-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-src-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-src-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-src-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-src-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-src-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-src-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-static-libs" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-static-libs-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-static-libs-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-static-libs-fastdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-static-libs-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-static-libs-fastdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="java-11-openjdk-static-libs-slowdebug" release="2.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/java-11-openjdk-static-libs-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm" version="11.0.18.0.10">
					<filename>java-11-openjdk-static-libs-slowdebug-11.0.18.0.10-2.el8_7.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1057</id>
		<title>关于 pcre2 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:37"/>
		<updated date="2023-03-17 16:07:32"/>
		<severity>Critical</severity>
		<description>关于 pcre2 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1586" id="CVE-2022-1586" severity="Critical" severity_desc="严重风险" title="PCRE是Philip Hazel个人开发者的一款使用C语言编写的开源正则表达式函数库。

PCRE 存在安全漏洞。攻击者利用该漏洞通过 pcre2_jit_compile.c 中的 compile_xclass_matchingpath 强制读取 PCRE 的无效内存地址，以触发拒绝服务或获取敏感信息。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="pcre2" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-10.32-3.el8_6.i686.rpm" version="10.32">
					<filename>pcre2-10.32-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="pcre2-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-devel-10.32-3.el8_6.i686.rpm" version="10.32">
					<filename>pcre2-devel-10.32-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-devel-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-devel-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="pcre2-static" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-static-10.32-3.el8_6.i686.rpm" version="10.32">
					<filename>pcre2-static-10.32-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2-static" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-static-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-static-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2-tools" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-tools-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-tools-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="pcre2-utf16" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-utf16-10.32-3.el8_6.i686.rpm" version="10.32">
					<filename>pcre2-utf16-10.32-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2-utf16" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-utf16-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-utf16-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="pcre2-utf32" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-utf32-10.32-3.el8_6.i686.rpm" version="10.32">
					<filename>pcre2-utf32-10.32-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pcre2-utf32" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pcre2-utf32-10.32-3.el8_6.x86_64.rpm" version="10.32">
					<filename>pcre2-utf32-10.32-3.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1058</id>
		<title>关于 pixman 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:40"/>
		<updated date="2023-03-17 16:06:46"/>
		<severity>Important</severity>
		<description>关于 pixman 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-35492" id="CVE-2020-35492" severity="Important" severity_desc="高风险" title="cairo的image-compositor.c文件中存在缓冲区溢出漏洞，该漏洞源于未正确处理图像合成操作中的边界条件。当处理由攻击者提供的恶意构造的输入文件时，可能导致导致堆栈缓冲区溢出并引发越界写入，进而影响信息的保密性、完整性和系统的可用性。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="pixman" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pixman-0.38.4-2.el8.i686.rpm" version="0.38.4">
					<filename>pixman-0.38.4-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pixman" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pixman-0.38.4-2.el8.x86_64.rpm" version="0.38.4">
					<filename>pixman-0.38.4-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="pixman-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pixman-devel-0.38.4-2.el8.i686.rpm" version="0.38.4">
					<filename>pixman-devel-0.38.4-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pixman-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/pixman-devel-0.38.4-2.el8.x86_64.rpm" version="0.38.4">
					<filename>pixman-devel-0.38.4-2.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1059</id>
		<title>关于 rsync 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:44"/>
		<updated date="2023-03-17 16:06:34"/>
		<severity>Important</severity>
		<description>关于 rsync 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2018-25032" id="CVE-2018-25032" severity="Important" severity_desc="高风险" title="zlib库在1.2.12版本之前存在内存损坏漏洞，该漏洞发生在数据压缩（deflate）过程中。当输入数据包含大量远距离匹配时，zlib未能正确处理内部数据结构，导致内存越界写入。攻击者可以构造恶意的输入数据，在应用程序调用zlib进行压缩时触发此漏洞，可能造成拒绝服务（程序崩溃）或潜在的任意代码执行风险。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-29154" id="CVE-2022-29154" severity="Important" severity_desc="高风险" title="rsync 3.2.5之前版本存在安全漏洞，该漏洞源于rsync客户端对从服务器接收的文件名缺乏充分验证。攻击者可利用恶意rsync服务器或中间人攻击，向rsync客户端的目标目录及其子目录中写入任意文件，例如覆盖 .ssh/authorized_keys 文件，从而实现远程代码执行或权限提升。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-37434" id="CVE-2022-37434" severity="Critical" severity_desc="严重风险" title="zlib的inflate.c文件中的inflate函数存在堆缓冲区越界读写漏洞，该漏洞源于在处理大型gzip头部额外字段时未正确校验数据长度。仅当应用程序调用inflateGetHeader时，该逻辑缺陷可能导致堆缓冲区越界读取或溢出，进而引发信息泄露或内存破坏。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="rsync" release="19.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsync-3.1.3-19.el8.x86_64.rpm" version="3.1.3">
					<filename>rsync-3.1.3-19.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="rsync-daemon" release="19.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsync-daemon-3.1.3-19.el8.noarch.rpm" version="3.1.3">
					<filename>rsync-daemon-3.1.3-19.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1060</id>
		<title>关于 rsyslog 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:47"/>
		<updated date="2023-03-17 16:06:25"/>
		<severity>Important</severity>
		<description>关于 rsyslog 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-24903" id="CVE-2022-24903" severity="Important" severity_desc="高风险" title="Rsyslog 是一个高性能的日志处理系统。当使用基于TCP的syslog接收模块并启用八位计数帧（octet-counted framing）时，存在潜在的堆缓冲区溢出风险。该漏洞源于在读取八位计数时，尽管有最大值检查，但在超过最大值的情况下仍会将数字写入堆缓冲区，从而可能覆盖相邻内存区域。攻击者可利用此漏洞发送特制的八位计数帧数据包，造成服务崩溃（拒绝服务）或引发其他异常行为。虽然目前认为该漏洞难以用于远程代码执行，但高级攻击者仍可能存在利用可能性。受影响的模块包括 `imtcp`、`imptcp`、`imgssapi` 和 `imhttp`，建议不要将其直接暴露于公网。若不需使用八位计数帧模式，用户应关闭相关配置以缓解风险。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="rsyslog" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-crypto" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-crypto-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-crypto-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="rsyslog-doc" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-doc-8.2102.0-7.el8_6.1.noarch.rpm" version="8.2102.0">
					<filename>rsyslog-doc-8.2102.0-7.el8_6.1.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-elasticsearch" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-elasticsearch-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-elasticsearch-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-gnutls" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-gnutls-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-gnutls-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-gssapi" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-gssapi-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-gssapi-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-kafka" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-kafka-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-kafka-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmaudit" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmaudit-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmaudit-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmfields" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmfields-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmfields-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmjsonparse" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmjsonparse-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmjsonparse-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmkubernetes" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmkubernetes-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmkubernetes-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmnormalize" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmnormalize-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmnormalize-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mmsnmptrapd" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mmsnmptrapd-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mmsnmptrapd-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-mysql" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-mysql-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-mysql-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-omamqp1" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-omamqp1-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-omamqp1-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-openssl" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-openssl-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-openssl-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-pgsql" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-pgsql-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-pgsql-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-relp" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-relp-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-relp-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-snmp" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-snmp-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-snmp-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rsyslog-udpspoof" release="7.el8_6.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rsyslog-udpspoof-8.2102.0-7.el8_6.1.x86_64.rpm" version="8.2102.0">
					<filename>rsyslog-udpspoof-8.2102.0-7.el8_6.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1061</id>
		<title>关于 shim 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:54"/>
		<updated date="2023-05-05 18:23:01"/>
		<severity>Moderate</severity>
		<description>关于 shim 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28737" id="CVE-2022-28737" severity="Moderate" severity_desc="中风险" title="shim组件在处理EFI可执行文件时，handle_image()函数未正确验证SizeOfRawData字段，导致攻击者可以通过构造恶意的EFI可执行文件触发缓冲区溢出，进而在内存中执行任意代码或造成拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="shim-ia32" release="1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/shim-ia32-15.6-1.el8.ks8.01.x86_64.rpm" version="15.6">
					<filename>shim-ia32-15.6-1.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="shim-x64" release="1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/shim-x64-15.6-1.el8.ks8.01.x86_64.rpm" version="15.6">
					<filename>shim-x64-15.6-1.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1062</id>
		<title>关于 shim-unsigned-x64 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-14 20:50:58"/>
		<updated date="2023-05-05 18:22:51"/>
		<severity>Moderate</severity>
		<description>关于 shim-unsigned-x64 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3695" id="CVE-2021-3695" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2 存在缓冲区错误漏洞，攻击者通过精心制作的PNG灰度图像利用该漏洞导致堆中越界写入。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3696" id="CVE-2021-3696" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2 存在缓冲区错误漏洞，攻击者通过精心制作的PNG图像利用该漏洞导致哈夫曼表处理时的越界写入。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3697" id="CVE-2021-3697" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2 存在缓冲区错误漏洞，攻击者通过精心制作的JPEG图像利用该漏洞导致堆中的缓冲区下溢写入。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28733" id="CVE-2022-28733" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2存在安全漏洞，该漏洞源于grub_net_recv_ip4_packets整数下溢。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28734" id="CVE-2022-28734" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2存在安全漏洞，该漏洞源于处理拆分HTTP header时出现越界写入。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28735" id="CVE-2022-28735" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2 存在安全漏洞，该漏洞源于shim_lock验证器允许加载非内核文件。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28736" id="CVE-2022-28736" severity="Moderate" severity_desc="中风险" title="grub2是GNU社区的一款Linux系统引导程序。grub2 存在安全漏洞，该漏洞源于在grub_cmd_chainloader()中释放后重用。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-28737" id="CVE-2022-28737" severity="Moderate" severity_desc="中风险" title="shim组件在处理EFI可执行文件时，handle_image()函数未正确验证SizeOfRawData字段，导致攻击者可以通过构造恶意的EFI可执行文件触发缓冲区溢出，进而在内存中执行任意代码或造成拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="shim-unsigned-ia32" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/shim-unsigned-ia32-15.6-1.el8.x86_64.rpm" version="15.6">
					<filename>shim-unsigned-ia32-15.6-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="shim-unsigned-x64" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/shim-unsigned-x64-15.6-1.el8.x86_64.rpm" version="15.6">
					<filename>shim-unsigned-x64-15.6-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1081</id>
		<title>关于 glib2 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:50:51"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 glib2 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22624" id="CVE-2022-22624" severity="Important" severity_desc="高风险" title="Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。Apple iOS 15.4 和 iPadOS 15.4 之前的 WebKit 存在资源管理错误漏洞，该漏洞源于处理恶意制作的 Web 内容可能会导致任意代码执行。以下产品和版本受到影响：iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22628" id="CVE-2022-22628" severity="Important" severity_desc="高风险" title="Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。Apple iOS 15.4 和 iPadOS 15.4 之前的 WebKit 存在资源管理错误漏洞，该漏洞源于处理恶意制作的 Web 内容可能会导致任意代码执行。以下产品和版本受到影响：iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22629" id="CVE-2022-22629" severity="Important" severity_desc="高风险" title="Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。Apple iOS 15.4 和 iPadOS 15.4 之前的 WebKit 存在缓冲区错误漏洞，该漏洞源于处理恶意制作的 Web 内容可能会导致任意代码执行。以下产品和版本受到影响：iPhone 6s and later, iPad Pro (all models), iPad Air 2 and later, iPad 5th generation and later, iPad mini 4 and later, and iPod touch (7th generation)。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22662" id="CVE-2022-22662" severity="Moderate" severity_desc="中风险" title="Apple iOS和Apple iPadOS都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple iPadOS是一套用于iPad平板电脑的操作系统。Apple iOS 和 iPadOS WebKit存在信息泄露漏洞，该漏洞源于处理恶意制作的网页内容可能会泄露敏感的用户信息。以下机型将会受到影响：iPhone 6s 及更新机型、iPad Pro（所有型号）、iPad Air 2 及更新机型、iPad 第 5 代及更新机型、iPad mini 4 及更新机型和 iPod touch（第 7 代）。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26700" id="CVE-2022-26700" severity="Important" severity_desc="高风险" title="Apple tvOS是美国苹果（Apple）公司的一套智能电视操作系统。tvOS 15.0 19J346 - 15.4.1 19L452 版本存在缓冲区错误漏洞，该漏洞源于在 WebKit 中处理 HTML 内容时出现边界错误。远程攻击者利用该漏洞可在目标系统上执行任意代码。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26709" id="CVE-2022-26709" severity="Important" severity_desc="高风险" title="Apple tvOS是美国苹果（Apple）公司的一套智能电视操作系统。Apple tvOS 15.0 19J346 - 15.4.1 19L452 版本存在资源管理错误漏洞，该漏洞源于在 WebKit 中处理 HTML 内容时出现释放后使用错误。远程攻击者利用该漏洞可破坏易受攻击的系统。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26710" id="CVE-2022-26710" severity="Important" severity_desc="高风险" title="Apple tvOS是美国苹果（Apple）公司的一套智能电视操作系统。Apple tvOS 15.0 19J346 - 15.4.1 19L452 版本存在资源管理错误漏洞，该漏洞源于在 WebKit 中处理 HTML 内容时出现释放后使用错误。远程攻击者利用该漏洞可破坏易受攻击的系统。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26716" id="CVE-2022-26716" severity="Important" severity_desc="高风险" title="WebKit是一个快速、开源的 网络浏览器引擎。Apple WebKit 存在缓冲区错误漏洞，该漏洞源于WebKit处理HTML内容时存在边界错误。 远程攻击者可以诱导受害者访问一个特别制作的网站，触发内存损坏，并在目标系统上执行任意代码。以下产品及版本受到影响：Apple TV 4K, Apple TV 4K (2nd generation), 和 Apple TV HD。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26717" id="CVE-2022-26717" severity="Important" severity_desc="高风险" title="WebKit是一个快速、开源的 网络浏览器引擎。Apple WebKit 存在资源管理错误漏洞，该漏洞源于WebKit在处理HTML内容时存在释放后重用错误。远程攻击者可以诱导受害者访问一个特别制作的网站，触发内存损坏和执行系统上的任意代码。以下产品及版本受到影响：Apple TV 4K, Apple TV 4K (2nd generation), and Apple TV HD。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-26719" id="CVE-2022-26719" severity="Important" severity_desc="高风险" title="WebKit是一个快速、开源的 网络浏览器引擎。Apple WebKit 存在缓冲区错误漏洞，该漏洞源于WebKit处理HTML内容时存在边界错误。 远程攻击者可以诱导受害者访问一个特别制作的网站，触发内存损坏，并在目标系统上执行任意代码。以下产品及版本受到影响：Apple TV 4K, Apple TV 4K (2nd generation), 和 Apple TV HD。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-30293" id="CVE-2022-30293" severity="Important" severity_desc="高风险" title="WebKitGTK是KDE、苹果（Apple）、谷歌（Google）等公司共同开发的一套开源的Web浏览器引擎。WebKitGTK 2.36.0版本及之前版本存在安全漏洞，该漏洞源于WebCore/platform/graphics/texmap/TextureMapperLayer.cpp中的WebCore：：TextureMapperLayer：：setContentsLayer存在基于堆的缓冲区溢出。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="glib2" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-2.56.4-159.el8.i686.rpm" version="2.56.4">
					<filename>glib2-2.56.4-159.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="glib2" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-2.56.4-159.el8.x86_64.rpm" version="2.56.4">
					<filename>glib2-2.56.4-159.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="glib2-devel" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-devel-2.56.4-159.el8.i686.rpm" version="2.56.4">
					<filename>glib2-devel-2.56.4-159.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="glib2-devel" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-devel-2.56.4-159.el8.x86_64.rpm" version="2.56.4">
					<filename>glib2-devel-2.56.4-159.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="glib2-doc" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-doc-2.56.4-159.el8.noarch.rpm" version="2.56.4">
					<filename>glib2-doc-2.56.4-159.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="glib2-fam" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-fam-2.56.4-159.el8.x86_64.rpm" version="2.56.4">
					<filename>glib2-fam-2.56.4-159.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="glib2-static" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-static-2.56.4-159.el8.i686.rpm" version="2.56.4">
					<filename>glib2-static-2.56.4-159.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="glib2-static" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-static-2.56.4-159.el8.x86_64.rpm" version="2.56.4">
					<filename>glib2-static-2.56.4-159.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="glib2-tests" release="159.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/glib2-tests-2.56.4-159.el8.x86_64.rpm" version="2.56.4">
					<filename>glib2-tests-2.56.4-159.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1088</id>
		<title>关于 libarchive 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:14"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Moderate</severity>
		<description>关于 libarchive 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-23177" id="CVE-2021-23177" severity="Moderate" severity_desc="中风险" title="libarchive是一款多格式存档和压缩库。libarchive 存在安全漏洞，该漏洞源于用户或自动化系统被骗去处理一个特别设计的存档，攻击者可利用该漏洞更改任意文件的模式、时间、acl和标志。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-31566" id="CVE-2021-31566" severity="Important" severity_desc="高风险" title="libarchive 存在安全漏洞，该漏洞源于可以通过符号链接模式时间标记修改数据。攻击者可利用该漏洞可以绕过libarchive的访问限制。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bsdcat" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdcat-3.3.3-3.el8_5.x86_64.rpm" version="3.3.3">
					<filename>bsdcat-3.3.3-3.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bsdcpio" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdcpio-3.3.3-3.el8_5.x86_64.rpm" version="3.3.3">
					<filename>bsdcpio-3.3.3-3.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bsdtar" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdtar-3.3.3-3.el8_5.x86_64.rpm" version="3.3.3">
					<filename>bsdtar-3.3.3-3.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libarchive" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-3.3.3-3.el8_5.i686.rpm" version="3.3.3">
					<filename>libarchive-3.3.3-3.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libarchive" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-3.3.3-3.el8_5.x86_64.rpm" version="3.3.3">
					<filename>libarchive-3.3.3-3.el8_5.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libarchive-devel" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-devel-3.3.3-3.el8_5.i686.rpm" version="3.3.3">
					<filename>libarchive-devel-3.3.3-3.el8_5.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libarchive-devel" release="3.el8_5" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-devel-3.3.3-3.el8_5.x86_64.rpm" version="3.3.3">
					<filename>libarchive-devel-3.3.3-3.el8_5.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1091</id>
		<title>关于 polkit 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:24"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 polkit 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4034" id="CVE-2021-4034" severity="Important" severity_desc="高风险" title="polkit是一个在类 Unix操作系统中控制系统范围权限的组件。通过定义和审核权限规则，实现不同优先级进程间的通讯。
polkit 的 pkexec application存在安全漏洞，攻击者可利用该漏洞通过精心设计环境变量诱导pkexec执行任意代码，成功执行攻击后，如果目标计算机上没有权限的用户拥有管理权限，攻击可能会导致本地权限升级。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4115" id="CVE-2021-4115" severity="Moderate" severity_desc="中风险" title="polkit 存在资源管理错误漏洞，该漏洞源于进程文件描述符耗尽，攻击者利用该漏洞允许非特权用户导致polkit崩溃。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="polkit" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-0.115-13.el8_5.2.x86_64.rpm" version="0.115">
					<filename>polkit-0.115-13.el8_5.2.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="polkit-devel" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-devel-0.115-13.el8_5.2.i686.rpm" version="0.115">
					<filename>polkit-devel-0.115-13.el8_5.2.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="polkit-devel" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-devel-0.115-13.el8_5.2.x86_64.rpm" version="0.115">
					<filename>polkit-devel-0.115-13.el8_5.2.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="polkit-docs" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-docs-0.115-13.el8_5.2.noarch.rpm" version="0.115">
					<filename>polkit-docs-0.115-13.el8_5.2.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="polkit-libs" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-libs-0.115-13.el8_5.2.i686.rpm" version="0.115">
					<filename>polkit-libs-0.115-13.el8_5.2.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="polkit-libs" release="13.el8_5.2" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/polkit-libs-0.115-13.el8_5.2.x86_64.rpm" version="0.115">
					<filename>polkit-libs-0.115-13.el8_5.2.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1095</id>
		<title>关于 tar 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:37"/>
		<updated date="2023-07-03 18:56:43"/>
		<severity>Important</severity>
		<description>关于 tar 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-48303" id="CVE-2022-48303" severity="Moderate" severity_desc="中风险" title="GNU Tar 1.34及之前版本存在安全漏洞，该漏洞源于存在一个单字节越界读取，使用未初始化的内存进行条件跳转，可能导致拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="2" name="tar" release="6.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/tar-1.30-6.el8_7.1.x86_64.rpm" version="1.30">
					<filename>tar-1.30-6.el8_7.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1096</id>
		<title>关于 wavpack 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:40"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Low</severity>
		<description>关于 wavpack 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-44269" id="CVE-2021-44269" severity="Low" severity_desc="低风险" title="WavPack是一套开源的、免费的音频无损压缩软件。WavPack 5.4.0存在缓冲区错误漏洞，该漏洞源于在文件 src/pack_utils.c 的函数 WavpackPackSamples 中越界读取，受污染的变量 cnt 太大，导致指针 sptr 读取超出堆边界。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="wavpack" release="16.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/wavpack-5.1.0-16.el8.i686.rpm" version="5.1.0">
					<filename>wavpack-5.1.0-16.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="wavpack" release="16.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/wavpack-5.1.0-16.el8.x86_64.rpm" version="5.1.0">
					<filename>wavpack-5.1.0-16.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="wavpack-devel" release="16.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/wavpack-devel-5.1.0-16.el8.i686.rpm" version="5.1.0">
					<filename>wavpack-devel-5.1.0-16.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="wavpack-devel" release="16.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/wavpack-devel-5.1.0-16.el8.x86_64.rpm" version="5.1.0">
					<filename>wavpack-devel-5.1.0-16.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1097</id>
		<title>关于 xz 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:43"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 xz 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1271" id="CVE-2022-1271" severity="Important" severity_desc="高风险" title="GNU gzip的zgrep工具存在任意文件写入漏洞，该漏洞源于在处理包含两个或更多换行符的文件名时对文件名验证不足的逻辑缺陷。可能导致远程低权限攻击者利用精心构造的多行文件名，强制zgrep将攻击者选择的内容写入攻击者选定的任意文件。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="xz" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-5.2.4-4.el8_6.x86_64.rpm" version="5.2.4">
					<filename>xz-5.2.4-4.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xz-devel" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-devel-5.2.4-4.el8_6.i686.rpm" version="5.2.4">
					<filename>xz-devel-5.2.4-4.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xz-devel" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-devel-5.2.4-4.el8_6.x86_64.rpm" version="5.2.4">
					<filename>xz-devel-5.2.4-4.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xz-libs" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-libs-5.2.4-4.el8_6.i686.rpm" version="5.2.4">
					<filename>xz-libs-5.2.4-4.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xz-libs" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-libs-5.2.4-4.el8_6.x86_64.rpm" version="5.2.4">
					<filename>xz-libs-5.2.4-4.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xz-lzma-compat" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-lzma-compat-5.2.4-4.el8_6.x86_64.rpm" version="5.2.4">
					<filename>xz-lzma-compat-5.2.4-4.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xz-static" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-static-5.2.4-4.el8_6.i686.rpm" version="5.2.4">
					<filename>xz-static-5.2.4-4.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xz-static" release="4.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xz-static-5.2.4-4.el8_6.x86_64.rpm" version="5.2.4">
					<filename>xz-static-5.2.4-4.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1098</id>
		<title>关于 zlib 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-21 12:51:46"/>
		<updated date="2023-03-27 10:26:23"/>
		<severity>Important</severity>
		<description>关于 zlib 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2018-25032" id="CVE-2018-25032" severity="Important" severity_desc="高风险" title="zlib库在1.2.12版本之前存在内存损坏漏洞，该漏洞发生在数据压缩（deflate）过程中。当输入数据包含大量远距离匹配时，zlib未能正确处理内部数据结构，导致内存越界写入。攻击者可以构造恶意的输入数据，在应用程序调用zlib进行压缩时触发此漏洞，可能造成拒绝服务（程序崩溃）或潜在的任意代码执行风险。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-37434" id="CVE-2022-37434" severity="Critical" severity_desc="严重风险" title="zlib的inflate.c文件中的inflate函数存在堆缓冲区越界读写漏洞，该漏洞源于在处理大型gzip头部额外字段时未正确校验数据长度。仅当应用程序调用inflateGetHeader时，该逻辑缺陷可能导致堆缓冲区越界读取或溢出，进而引发信息泄露或内存破坏。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="zlib" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-1.2.11-19.el8_6.i686.rpm" version="1.2.11">
					<filename>zlib-1.2.11-19.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="zlib" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-1.2.11-19.el8_6.x86_64.rpm" version="1.2.11">
					<filename>zlib-1.2.11-19.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="zlib-devel" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-devel-1.2.11-19.el8_6.i686.rpm" version="1.2.11">
					<filename>zlib-devel-1.2.11-19.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="zlib-devel" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-devel-1.2.11-19.el8_6.x86_64.rpm" version="1.2.11">
					<filename>zlib-devel-1.2.11-19.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="zlib-static" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-static-1.2.11-19.el8_6.i686.rpm" version="1.2.11">
					<filename>zlib-static-1.2.11-19.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="zlib-static" release="19.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/zlib-static-1.2.11-19.el8_6.x86_64.rpm" version="1.2.11">
					<filename>zlib-static-1.2.11-19.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1104</id>
		<title>关于 dbus 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:07"/>
		<updated date="2023-04-03 09:27:43"/>
		<severity>Moderate</severity>
		<description>关于 dbus 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-42010" id="CVE-2022-42010" severity="Moderate" severity_desc="中风险" title="D-Bus组件在处理消息时存在拒绝服务漏洞，该漏洞源于在接收到带有特定无效类型签名的消息时未正确校验，导致dbus-daemon及其他使用libdbus的程序发生崩溃。经过身份验证的攻击者可利用此漏洞发送恶意构造的消息，从而引发目标系统服务不可用。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-42011" id="CVE-2022-42011" severity="Moderate" severity_desc="中风险" title="D-Bus组件存在拒绝服务漏洞，该漏洞源于在处理消息时未正确验证数组长度与元素类型大小的一致性，当接收到数组长度与元素类型大小不一致的消息时，会导致dbus-daemon及其他使用libdbus的程序发生崩溃。攻击者可利用该漏洞对目标系统发起拒绝服务攻击，造成服务不可用。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-42012" id="CVE-2022-42012" severity="Moderate" severity_desc="中风险" title="D-Bus及libdbus库的消息处理功能存在拒绝服务漏洞，该漏洞源于未正确校验带有附加文件描述符的消息格式。已认证的攻击者通过发送格式异常的消息，可触发逻辑缺陷导致dbus-daemon及其他使用libdbus的程序崩溃。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="dbus" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="1" name="dbus-common" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-common-1.12.8-23.el8_7.1.noarch.rpm" version="1.12.8">
					<filename>dbus-common-1.12.8-23.el8_7.1.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-daemon" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-daemon-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-daemon-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="dbus-devel" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-devel-1.12.8-23.el8_7.1.i686.rpm" version="1.12.8">
					<filename>dbus-devel-1.12.8-23.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-devel" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-devel-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-devel-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="dbus-libs" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-libs-1.12.8-23.el8_7.1.i686.rpm" version="1.12.8">
					<filename>dbus-libs-1.12.8-23.el8_7.1.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-libs" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-libs-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-libs-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-tests" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-tests-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-tests-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-tools" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-tools-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-tools-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="dbus-x11" release="23.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dbus-x11-1.12.8-23.el8_7.1.x86_64.rpm" version="1.12.8">
					<filename>dbus-x11-1.12.8-23.el8_7.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1108</id>
		<title>关于 git 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:09"/>
		<updated date="2023-04-03 09:26:47"/>
		<severity>Critical</severity>
		<description>关于 git 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-23521" id="CVE-2022-23521" severity="Critical" severity_desc="严重风险" title="Git是一套免费、开源的分布式版本控制系统。
Git存在输入验证错误漏洞，该漏洞源于当属性名称超过规定大小时会造成整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-41903" id="CVE-2022-41903" severity="Critical" severity_desc="严重风险" title="Git是一套免费、开源的分布式版本控制系统。
Git存在输入验证错误漏洞，该漏洞源于存在整数溢出问题。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="git" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-2.31.1-3.el8_7.x86_64.rpm" version="2.31.1">
					<filename>git-2.31.1-3.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-all" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-all-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-all-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-core" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-core-2.31.1-3.el8_7.x86_64.rpm" version="2.31.1">
					<filename>git-core-2.31.1-3.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-core-doc" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-core-doc-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-core-doc-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-credential-libsecret" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-credential-libsecret-2.31.1-3.el8_7.x86_64.rpm" version="2.31.1">
					<filename>git-credential-libsecret-2.31.1-3.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-daemon" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-daemon-2.31.1-3.el8_7.x86_64.rpm" version="2.31.1">
					<filename>git-daemon-2.31.1-3.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-email" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-email-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-email-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-gui" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-gui-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-gui-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-instaweb" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-instaweb-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-instaweb-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="gitk" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gitk-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>gitk-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-subtree" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-subtree-2.31.1-3.el8_7.x86_64.rpm" version="2.31.1">
					<filename>git-subtree-2.31.1-3.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-svn" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-svn-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>git-svn-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="gitweb" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gitweb-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>gitweb-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="perl-Git" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/perl-Git-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>perl-Git-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="perl-Git-SVN" release="3.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/perl-Git-SVN-2.31.1-3.el8_7.noarch.rpm" version="2.31.1">
					<filename>perl-Git-SVN-2.31.1-3.el8_7.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1124</id>
		<title>关于 nss 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:18"/>
		<updated date="2023-05-22 10:11:42"/>
		<severity>Important</severity>
		<description>关于 nss 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2023-0767" id="CVE-2023-0767" severity="Important" severity_desc="高风险" title="Mozilla Network Security Services（NSS）是美国Mozilla基金会的一个函数库（网络安全服务库）。该产品可跨平台提供SSL、S/MIME和其他Internet安全标准支持。
Mozilla Network Security Services 存在安全漏洞。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="nss" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-devel-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-devel-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-devel-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-devel-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-pkcs11-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-pkcs11-devel-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-pkcs11-devel-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-pkcs11-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-pkcs11-devel-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-pkcs11-devel-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-softokn-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-softokn-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-devel-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-softokn-devel-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-devel-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-softokn-devel-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn-freebl" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-softokn-freebl-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-freebl" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-softokn-freebl-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-softokn-freebl-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-devel-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-softokn-freebl-devel-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-softokn-freebl-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-softokn-freebl-devel-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-softokn-freebl-devel-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-sysinit" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-sysinit-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-sysinit-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-tools" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-tools-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-tools-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-util" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-util-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-util" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-util-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nss-util-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-devel-3.79.0-11.el8_7.i686.rpm" version="3.79.0">
					<filename>nss-util-devel-3.79.0-11.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nss-util-devel" release="11.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nss-util-devel-3.79.0-11.el8_7.x86_64.rpm" version="3.79.0">
					<filename>nss-util-devel-3.79.0-11.el8_7.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1126</id>
		<title>关于 openssl 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:19"/>
		<updated date="2023-05-26 17:20:53"/>
		<severity>Important</severity>
		<description>关于 openssl 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3712" id="CVE-2021-3712" severity="Important" severity_desc="高风险" title="发现openssl假定ASN.1字符串是以NUL终止的。恶意行为者可能会强迫应用程序使用特制的、非NUL终止的字符串来调用openssl函数，以故意命中此错误，这可能会导致应用程序崩溃，导致拒绝服务攻击，或者可能导致内存泄漏。该漏洞的最大威胁是数据机密性和系统可用性。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2023-0286" id="CVE-2023-0286" severity="Important" severity_desc="高风险" title="OpenSSL存在安全漏洞，该漏洞源于内存释放后重用。攻击者利用该漏洞导致程序崩溃，系统拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="openssl" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-1.1.1k-9.el8_7.x86_64.rpm" version="1.1.1k">
					<filename>openssl-1.1.1k-9.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-devel" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-devel-1.1.1k-9.el8_7.i686.rpm" version="1.1.1k">
					<filename>openssl-devel-1.1.1k-9.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-devel" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-devel-1.1.1k-9.el8_7.x86_64.rpm" version="1.1.1k">
					<filename>openssl-devel-1.1.1k-9.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-libs" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-libs-1.1.1k-9.el8_7.i686.rpm" version="1.1.1k">
					<filename>openssl-libs-1.1.1k-9.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-libs" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-libs-1.1.1k-9.el8_7.x86_64.rpm" version="1.1.1k">
					<filename>openssl-libs-1.1.1k-9.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-perl" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-perl-1.1.1k-9.el8_7.x86_64.rpm" version="1.1.1k">
					<filename>openssl-perl-1.1.1k-9.el8_7.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="1" name="openssl-static" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-static-1.1.1k-9.el8_7.i686.rpm" version="1.1.1k">
					<filename>openssl-static-1.1.1k-9.el8_7.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="openssl-static" release="9.el8_7" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/openssl-static-1.1.1k-9.el8_7.x86_64.rpm" version="1.1.1k">
					<filename>openssl-static-1.1.1k-9.el8_7.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1127</id>
		<title>关于 python-setuptools 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:19"/>
		<updated date="2023-04-03 09:22:30"/>
		<severity>Important</severity>
		<description>关于 python-setuptools 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-40897" id="CVE-2022-40897" severity="Moderate" severity_desc="中风险" title="Python Python Packaging Authority (PyPA) setuptools 65.3.0版本及之前版本存在安全漏洞。攻击者利用该漏洞通过特制的HTML包或自定义PackageIndex页面导致拒绝服务。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="platform-python-setuptools" release="6.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/platform-python-setuptools-39.2.0-6.el8_7.1.noarch.rpm" version="39.2.0">
					<filename>platform-python-setuptools-39.2.0-6.el8_7.1.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python2-setuptools" release="6.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python2-setuptools-39.2.0-6.el8_7.1.noarch.rpm" version="39.2.0">
					<filename>python2-setuptools-39.2.0-6.el8_7.1.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-setuptools" release="6.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-setuptools-39.2.0-6.el8_7.1.noarch.rpm" version="39.2.0">
					<filename>python3-setuptools-39.2.0-6.el8_7.1.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-setuptools-wheel" release="6.el8_7.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-setuptools-wheel-39.2.0-6.el8_7.1.noarch.rpm" version="39.2.0">
					<filename>python3-setuptools-wheel-39.2.0-6.el8_7.1.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1131</id>
		<title>关于 xmlrpc-c 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:21"/>
		<updated date="2023-07-03 18:56:35"/>
		<severity>Important</severity>
		<description>关于 xmlrpc-c 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-46143" id="CVE-2021-46143" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat 存在安全漏洞，该漏洞源于在2.4.3之前Expat(又名libexpat)的xmlparse.c中的doProlog，m个groupSize存在一个整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22822" id="CVE-2022-22822" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中的 addBinding 存在整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22823" id="CVE-2022-22823" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中的 build_model 有整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22824" id="CVE-2022-22824" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中的 defineAttribute 有整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22825" id="CVE-2022-22825" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中查找存在整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22826" id="CVE-2022-22826" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中的 nextScaffoldPart 存在整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-22827" id="CVE-2022-22827" severity="Moderate" severity_desc="中风险" title="Expat是一款使用C语言编写的快速流式XML解析器。libexpat是一款使用C语言编写的流式XML解析器。Expat（又名 libexpat）2.4.3 之前的版本中存在安全漏洞，该漏洞源于 xmlparse.c 中的 storeAtts 存在整数溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-25235" id="CVE-2022-25235" severity="Critical" severity_desc="严重风险" title="Expat（也称为libexpat）2.4.5版本之前的xmltok_impl.c文件中缺少对编码的有效验证，例如未检查UTF-8字符在特定上下文中是否合法。攻击者可利用该漏洞通过构造恶意的XML数据触发缓冲区溢出或其他内存异常，从而可能实现远程代码执行。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="xmlrpc-c" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-1.51.0-8.el8.i686.rpm" version="1.51.0">
					<filename>xmlrpc-c-1.51.0-8.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c-apps" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-apps-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-apps-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xmlrpc-c-c++" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-c++-1.51.0-8.el8.i686.rpm" version="1.51.0">
					<filename>xmlrpc-c-c++-1.51.0-8.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c-c++" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-c++-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-c++-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xmlrpc-c-client++" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-client++-1.51.0-8.el8.i686.rpm" version="1.51.0">
					<filename>xmlrpc-c-client++-1.51.0-8.el8.i686.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xmlrpc-c-client" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-client-1.51.0-8.el8.i686.rpm" version="1.51.0">
					<filename>xmlrpc-c-client-1.51.0-8.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c-client++" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-client++-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-client++-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c-client" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-client-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-client-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="xmlrpc-c-devel" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-devel-1.51.0-8.el8.i686.rpm" version="1.51.0">
					<filename>xmlrpc-c-devel-1.51.0-8.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="xmlrpc-c-devel" release="8.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/xmlrpc-c-devel-1.51.0-8.el8.x86_64.rpm" version="1.51.0">
					<filename>xmlrpc-c-devel-1.51.0-8.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1133</id>
		<title>关于 yajl 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 12:50:22"/>
		<updated date="2023-04-03 09:21:16"/>
		<severity>Important</severity>
		<description>关于 yajl 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-24795" id="CVE-2022-24795" severity="Moderate" severity_desc="中风险" title="yajl-ruby 存在安全漏洞，该漏洞源于在处理大于2GB的输入时会导致堆内存损坏。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="yajl" release="11.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/yajl-2.1.0-11.el8.i686.rpm" version="2.1.0">
					<filename>yajl-2.1.0-11.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="yajl" release="11.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/yajl-2.1.0-11.el8.x86_64.rpm" version="2.1.0">
					<filename>yajl-2.1.0-11.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="yajl-devel" release="11.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/yajl-devel-2.1.0-11.el8.i686.rpm" version="2.1.0">
					<filename>yajl-devel-2.1.0-11.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="yajl-devel" release="11.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/yajl-devel-2.1.0-11.el8.x86_64.rpm" version="2.1.0">
					<filename>yajl-devel-2.1.0-11.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202303-1134</id>
		<title>关于 sysstat 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-03-28 20:50:06"/>
		<updated date="2023-04-03 09:21:04"/>
		<severity>Low</severity>
		<description>关于 sysstat 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2019-16167" id="CVE-2019-16167" severity="Low" severity_desc="低风险" title="sysstat是一套适用于Linux平台的系统性能监控工具。sysstat 12.1.6之前版本中的sa_common.c文件的remap_struct()存在输入验证错误漏洞。攻击者可利用该漏洞损坏内存。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="sysstat" release="2.el8_2.1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/sysstat-11.7.3-2.el8_2.1.x86_64.rpm" version="11.7.3">
					<filename>sysstat-11.7.3-2.el8_2.1.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202304-1003</id>
		<title>关于 curl 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 12:50:06"/>
		<updated date="2023-04-10 16:01:42"/>
		<severity>Moderate</severity>
		<description>关于 curl 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2023-23916" id="CVE-2023-23916" severity="Moderate" severity_desc="中风险" title="curl支持链式HTTP压缩算法，这意味着服务器响应可以多次压缩，并且可能使用不同的算法。这个解压缩链中可接受的链接数量是有上限的，但是上限是在每个头的基础上实现的，这使得恶意服务器只需使用许多头就可以插入几乎无限数量的压缩步骤。使用这样的解压缩链可能会导致malloc炸弹，使curl最终花费大量分配的堆内存，或者尝试并返回内存外错误。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="curl" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/curl-7.61.1-25.el8_7.3.x86_64.rpm" version="7.61.1">
					<filename>curl-7.61.1-25.el8_7.3.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="curl-minimal" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/curl-minimal-7.61.1-25.el8_7.3.x86_64.rpm" version="7.61.1">
					<filename>curl-minimal-7.61.1-25.el8_7.3.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libcurl" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-7.61.1-25.el8_7.3.i686.rpm" version="7.61.1">
					<filename>libcurl-7.61.1-25.el8_7.3.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libcurl" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-7.61.1-25.el8_7.3.x86_64.rpm" version="7.61.1">
					<filename>libcurl-7.61.1-25.el8_7.3.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libcurl-devel" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-devel-7.61.1-25.el8_7.3.i686.rpm" version="7.61.1">
					<filename>libcurl-devel-7.61.1-25.el8_7.3.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libcurl-devel" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-devel-7.61.1-25.el8_7.3.x86_64.rpm" version="7.61.1">
					<filename>libcurl-devel-7.61.1-25.el8_7.3.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libcurl-minimal" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-minimal-7.61.1-25.el8_7.3.i686.rpm" version="7.61.1">
					<filename>libcurl-minimal-7.61.1-25.el8_7.3.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libcurl-minimal" release="25.el8_7.3" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libcurl-minimal-7.61.1-25.el8_7.3.x86_64.rpm" version="7.61.1">
					<filename>libcurl-minimal-7.61.1-25.el8_7.3.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202304-1008</id>
		<title>关于 openssh 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 12:50:09"/>
		<updated date="2023-12-04 13:14:26"/>
		<severity>Moderate</severity>
		<description>关于 openssh 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2020-14145" id="CVE-2020-14145" severity="Moderate" severity_desc="中风险" title="OpenSSH 5.7版本至8.3版本的客户端中存在信息泄露漏洞。攻击者可利用该漏洞获取信息。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-41617" id="CVE-2021-41617" severity="Important" severity_desc="高风险" title="OpenSSH（OpenBSD Secure Shell）是Openbsd计划组的一套用于安全访问远程计算机的连接工具。该工具是SSH协议的开源实现，支持对所有的传输进行加密，可有效阻止窃听、连接劫持以及其他网络级的攻击。OpenSSH存在安全漏洞。该漏洞源于允许权限提升，因为补充组未按预期初始化。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="openssh" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-askpass" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-askpass-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-askpass-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-cavs" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-cavs-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-cavs-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-clients" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-clients-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-clients-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-keycat" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-keycat-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-keycat-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-ldap" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-ldap-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-ldap-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="openssh-server" release="13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/openssh-server-8.0p1-13.el8.x86_64.rpm" version="8.0p1">
					<restart_suggested>True</restart_suggested>
					<filename>openssh-server-8.0p1-13.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="pam_ssh_agent_auth" release="7.13.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/pam_ssh_agent_auth-0.10.3-7.13.el8.x86_64.rpm" version="0.10.3">
					<restart_suggested>True</restart_suggested>
					<filename>pam_ssh_agent_auth-0.10.3-7.13.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202305-1001</id>
		<title>关于 vim 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-05-02 12:50:05"/>
		<updated date="2023-05-15 09:50:41"/>
		<severity>Important</severity>
		<description>关于 vim 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3872" id="CVE-2021-3872" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 存在安全漏洞，该漏洞可导致基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-3984" id="CVE-2021-3984" severity="Important" severity_desc="高风险" title="vim组件存在堆缓冲区溢出漏洞，该漏洞源于在处理特定文件时未能正确验证输入数据边界，导致攻击者可以通过构造恶意文件触发堆溢出。攻击者可利用此漏洞实现任意代码执行或造成拒绝服务（程序崩溃）。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4019" id="CVE-2021-4019" severity="Important" severity_desc="高风险" title="vim存在安全漏洞，攻击者可利用该漏洞执行基于堆的缓冲区溢出攻击。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4192" id="CVE-2021-4192" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 8.2存在资源管理错误漏洞，该漏洞源于在 vim 8.2.3931 (commit hash febb78fa1798e0f95983b3f7881419a754886df5) 中发现了一个 use after free 漏洞。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-4193" id="CVE-2021-4193" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 8.2存在缓冲区错误漏洞，该漏洞源于在 vim 8.2.3931 (commit hash febb78fa1798e0f95983b3f7881419a754886df5) 中发现了一个 use after free 漏洞。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0261" id="CVE-2022-0261" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 8.2 之前存在安全漏洞，该漏洞源于vim中基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0318" id="CVE-2022-0318" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 存在缓冲区错误漏洞，该漏洞源于 vim 中基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0359" id="CVE-2022-0359" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 存在安全漏洞，该漏洞源于在8.2之前的vim中基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0361" id="CVE-2022-0361" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 存在安全漏洞，该漏洞源于在8.2之前的vim中基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0392" id="CVE-2022-0392" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 8.2 之前存在缓冲区错误漏洞，该漏洞源于基于堆的缓冲区溢出。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-0413" id="CVE-2022-0413" severity="Moderate" severity_desc="中风险" title="Vim是一款基于UNIX平台的编辑器。vim 存在资源管理错误漏洞，该漏洞源于这个漏洞允许攻击者可利用该漏洞输入一个特别制作的文件，导致崩溃或代码执行。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1154" id="CVE-2022-1154" severity="Low" severity_desc="低风险" title="vim是一款基于UNIX平台的编辑器。vim 8.2.4646 之前版本存在资源管理错误漏洞，该漏洞源于 utf_ptr2char 函数中存在释放后重用漏洞。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1621" id="CVE-2022-1621" severity="Important" severity_desc="高风险" title="Vim是一款跨平台的文本编辑器。Vim 8.2.4919之前版本存在安全漏洞，该漏洞源于vim_strncpy find_word堆缓冲区溢出，从而导致软件崩溃、绕过保护机制、修改内存以及远程执行。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1629" id="CVE-2022-1629" severity="Important" severity_desc="高风险" title="Vim是一款跨平台的文本编辑器。Vim 8.2.4925之前版本存在安全漏洞，该漏洞源于find_next_quote函数的缓冲区过度读取，从而导致软件崩溃、修改内存和远程执行。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1785" id="CVE-2022-1785" severity="Moderate" severity_desc="中风险" title="Vim是一款跨平台的文本编辑器。Vim 8.2.4977 之前版本存在缓冲区错误漏洞，该漏洞源于越界写入。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1897" id="CVE-2022-1897" severity="Moderate" severity_desc="中风险" title="Vim是一款跨平台的文本编辑器。Vim 8.2之前版本存在安全漏洞，该漏洞源于存在越界写入问题。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-1927" id="CVE-2022-1927" severity="Moderate" severity_desc="中风险" title="Vim是一款跨平台的文本编辑器。Vim 8.2之前版本存在安全漏洞，该漏洞源于缓冲区过度读取。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="2" name="vim-common" release="19.el8_6.4" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/vim-common-8.0.1763-19.el8_6.4.x86_64.rpm" version="8.0.1763">
					<filename>vim-common-8.0.1763-19.el8_6.4.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-enhanced" release="19.el8_6.4" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/vim-enhanced-8.0.1763-19.el8_6.4.x86_64.rpm" version="8.0.1763">
					<filename>vim-enhanced-8.0.1763-19.el8_6.4.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="2" name="vim-filesystem" release="19.el8_6.4" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/vim-filesystem-8.0.1763-19.el8_6.4.noarch.rpm" version="8.0.1763">
					<filename>vim-filesystem-8.0.1763-19.el8_6.4.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-minimal" release="19.el8_6.4" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/vim-minimal-8.0.1763-19.el8_6.4.x86_64.rpm" version="8.0.1763">
					<filename>vim-minimal-8.0.1763-19.el8_6.4.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-X11" release="19.el8_6.4" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/vim-X11-8.0.1763-19.el8_6.4.x86_64.rpm" version="8.0.1763">
					<filename>vim-X11-8.0.1763-19.el8_6.4.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202306-1016</id>
		<title>关于 protobuf 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-06-06 12:50:14"/>
		<updated date="2023-06-12 17:17:30"/>
		<severity>Moderate</severity>
		<description>关于 protobuf 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-22570" id="CVE-2021-22570" severity="Moderate" severity_desc="中风险" title="Protocol Buffers组件在解析包含空字符的proto符号时存在空指针解引用漏洞。由于符号被错误解析，在生成错误信息时会调用proto文件名，而此时文件指针为nullptr，从而导致程序崩溃。攻击者可利用此漏洞发起拒绝服务攻击。建议升级到3.15.0或更高版本以修复该问题。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="protobuf" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-compiler" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-compiler-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-compiler-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-compiler" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-compiler-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-compiler-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-devel" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-devel-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-devel-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-devel" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-devel-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-devel-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="protobuf-emacs" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-emacs-3.5.0-15.el8.noarch.rpm" version="3.5.0">
					<filename>protobuf-emacs-3.5.0-15.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="protobuf-emacs-el" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-emacs-el-3.5.0-15.el8.noarch.rpm" version="3.5.0">
					<filename>protobuf-emacs-el-3.5.0-15.el8.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-lite" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-lite-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-lite" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-lite-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-lite-devel" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-devel-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-lite-devel-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-lite-devel" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-devel-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-lite-devel-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-lite-static" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-static-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-lite-static-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-lite-static" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-lite-static-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-lite-static-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="protobuf-static" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-static-3.5.0-15.el8.i686.rpm" version="3.5.0">
					<filename>protobuf-static-3.5.0-15.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="protobuf-static" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-static-3.5.0-15.el8.x86_64.rpm" version="3.5.0">
					<filename>protobuf-static-3.5.0-15.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="protobuf-vim" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/protobuf-vim-3.5.0-15.el8.noarch.rpm" version="3.5.0">
					<filename>protobuf-vim-3.5.0-15.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-protobuf" release="15.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-protobuf-3.5.0-15.el8.noarch.rpm" version="3.5.0">
					<filename>python3-protobuf-3.5.0-15.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202307-1010</id>
		<title>关于 dpdk 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-07-04 20:50:06"/>
		<updated date="2023-07-10 15:58:38"/>
		<severity>Important</severity>
		<description>关于 dpdk 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-2132" id="CVE-2022-2132" severity="Important" severity_desc="高风险" title="DPDK是一款基于Linux平台的数据平面开发套件。该产品支持在多种CPU架构上执行数据包处理。DPDK存在安全漏洞。攻击者利用该漏洞触发拒绝服务攻击。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="dpdk" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dpdk-20.11-3.el8.x86_64.rpm" version="20.11">
					<filename>dpdk-20.11-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="dpdk-devel" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dpdk-devel-20.11-3.el8.x86_64.rpm" version="20.11">
					<filename>dpdk-devel-20.11-3.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="dpdk-doc" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dpdk-doc-20.11-3.el8.noarch.rpm" version="20.11">
					<filename>dpdk-doc-20.11-3.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="dpdk-tools" release="3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/dpdk-tools-20.11-3.el8.x86_64.rpm" version="20.11">
					<filename>dpdk-tools-20.11-3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202310-1049</id>
		<title>关于 ctags 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-10-24 20:50:06"/>
		<updated date="2023-10-30 10:07:54"/>
		<severity>Important</severity>
		<description>关于 ctags 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-4515" id="CVE-2022-4515" severity="Important" severity_desc="高风险" title="Ctags是Sourceforge开源的一个用于从程序源代码树产生索引文件，从而便于文本编辑器来实现快速定位的实用工具。
Ctags 存在安全漏洞，该漏洞源于sort.c中的externalSortTags()以不安全的方式调用system(3)函数。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="ctags" release="23.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/ctags-5.8-23.el8.x86_64.rpm" version="5.8">
					<filename>ctags-5.8-23.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ctags-etags" release="23.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/ctags-etags-5.8-23.el8.x86_64.rpm" version="5.8">
					<filename>ctags-etags-5.8-23.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202310-1050</id>
		<title>关于 git 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-10-24 20:50:07"/>
		<updated date="2023-10-30 10:02:12"/>
		<severity>Important</severity>
		<description>关于 git 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-24765" id="CVE-2022-24765" severity="Important" severity_desc="高风险" title="Git for Windows是Git groups的用于 Windows 的 Git。Git for Windows 存在代码问题漏洞，该漏洞源于在多用户计算机上不受信任的各方对同一硬盘具有写访问权限。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-29187" id="CVE-2022-29187" severity="Important" severity_desc="高风险" title="Github Git是一套免费、开源的分布式版本控制系统。Github Git 存在安全漏洞，该漏洞源于可以绕过安全目录保护，以下产品和版本受到影响：Git 2.37.1、2.36.2、2.35.4、2.34.4、2.33.4、2.32.3、2.31.4 和 2.30.5 之前版本。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-39253" id="CVE-2022-39253" severity="Moderate" severity_desc="中风险" title="Git是一套免费、开源的分布式版本控制系统。Git存在安全漏洞，该漏洞源于Git错误地处理了某些符号链接。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-39260" id="CVE-2022-39260" severity="Important" severity_desc="高风险" title="Git是一套免费、开源的分布式版本控制系统。Git 存在安全漏洞，该漏洞源于Git错误地处理了某些符号链接。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="git" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-2.39.1-1.el8.x86_64.rpm" version="2.39.1">
					<filename>git-2.39.1-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-all" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-all-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-all-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-core" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-core-2.39.1-1.el8.x86_64.rpm" version="2.39.1">
					<filename>git-core-2.39.1-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-core-doc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-core-doc-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-core-doc-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-credential-libsecret" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-credential-libsecret-2.39.1-1.el8.x86_64.rpm" version="2.39.1">
					<filename>git-credential-libsecret-2.39.1-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-daemon" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-daemon-2.39.1-1.el8.x86_64.rpm" version="2.39.1">
					<filename>git-daemon-2.39.1-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-email" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-email-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-email-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-gui" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-gui-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-gui-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-instaweb" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-instaweb-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-instaweb-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="gitk" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gitk-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>gitk-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="git-subtree" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-subtree-2.39.1-1.el8.x86_64.rpm" version="2.39.1">
					<filename>git-subtree-2.39.1-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="git-svn" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/git-svn-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>git-svn-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="gitweb" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/gitweb-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>gitweb-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="perl-Git" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/perl-Git-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>perl-Git-2.39.1-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="perl-Git-SVN" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/perl-Git-SVN-2.39.1-1.el8.noarch.rpm" version="2.39.1">
					<filename>perl-Git-SVN-2.39.1-1.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202310-1051</id>
		<title>关于 libarchive 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-10-24 20:50:08"/>
		<updated date="2023-10-30 10:01:43"/>
		<severity>Moderate</severity>
		<description>关于 libarchive 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2022-36227" id="CVE-2022-36227" severity="Critical" severity_desc="严重风险" title="libarchive 3.6.2之前版本中存在空指针解引用漏洞，该漏洞源于在调用calloc函数后未检查其返回值是否为NULL指针，当calloc分配失败时会返回NULL，进而导致后续对该指针的解引用操作引发程序崩溃。攻击者可利用此漏洞造成目标系统拒绝服务。虽然发现者认为在特定条件下（如NULL等效于0x0地址且特权代码可访问）可能实现任意代码执行，但第三方对此代码执行风险存在争议。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bsdcat" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdcat-3.3.3-5.el8.x86_64.rpm" version="3.3.3">
					<filename>bsdcat-3.3.3-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bsdcpio" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdcpio-3.3.3-5.el8.x86_64.rpm" version="3.3.3">
					<filename>bsdcpio-3.3.3-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="bsdtar" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/bsdtar-3.3.3-5.el8.x86_64.rpm" version="3.3.3">
					<filename>bsdtar-3.3.3-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libarchive" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-3.3.3-5.el8.i686.rpm" version="3.3.3">
					<filename>libarchive-3.3.3-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libarchive" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-3.3.3-5.el8.x86_64.rpm" version="3.3.3">
					<filename>libarchive-3.3.3-5.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libarchive-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-devel-3.3.3-5.el8.i686.rpm" version="3.3.3">
					<filename>libarchive-devel-3.3.3-5.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libarchive-devel" release="5.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libarchive-devel-3.3.3-5.el8.x86_64.rpm" version="3.3.3">
					<filename>libarchive-devel-3.3.3-5.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202310-1052</id>
		<title>关于 libtar 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-10-24 20:50:09"/>
		<updated date="2023-10-30 10:01:25"/>
		<severity>Important</severity>
		<description>关于 libtar 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-33643" id="CVE-2021-33643" severity="Critical" severity_desc="严重风险" title="libtar 库在处理恶意构造的 tar 文件时，若文件头部结构体中的大小字段为 0，可能导致调用 malloc(0) 分配零长度内存，从而引发对变量 gnu_longlink 的越界读取。攻击者可利用该漏洞通过提交特制 tar 文件触发内存访问异常，可能造成信息泄露或拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-33644" id="CVE-2021-33644" severity="Important" severity_desc="高风险" title="libtar 库在处理恶意构造的 tar 文件时存在越界读取漏洞，该漏洞源于当 tar 文件头部结构体中的大小字段为 0 时，会触发对 malloc(0) 的调用，导致变量 gnu_longname 出现越界读取。攻击者可利用此漏洞通过提交特制的 tar 文件来读取内存中敏感信息或造成应用程序崩溃（拒绝服务）。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-33645" id="CVE-2021-33645" severity="Important" severity_desc="高风险" title="libtar库中的th_read()函数在分配内存后未释放变量t-&gt;th_buf.gnu_longlink，可能导致内存泄漏。攻击者可利用该漏洞通过持续操作消耗系统资源，最终引发拒绝服务。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2021-33646" id="CVE-2021-33646" severity="Important" severity_desc="高风险" title="libtar库中的th_read()函数在分配内存后未释放变量t-&gt;th_buf.gnu_longname，可能导致内存泄漏。攻击者可利用该漏洞通过持续操作促使应用程序消耗大量内存资源，最终引发拒绝服务（DoS）。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libtar" release="17.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtar-1.2.20-17.el8.i686.rpm" version="1.2.20">
					<filename>libtar-1.2.20-17.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtar" release="17.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtar-1.2.20-17.el8.x86_64.rpm" version="1.2.20">
					<filename>libtar-1.2.20-17.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libtar-devel" release="17.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtar-devel-1.2.20-17.el8.i686.rpm" version="1.2.20">
					<filename>libtar-devel-1.2.20-17.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtar-devel" release="17.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtar-devel-1.2.20-17.el8.x86_64.rpm" version="1.2.20">
					<filename>libtar-devel-1.2.20-17.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202407-1029</id>
		<title>关于 kernel 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-07-17 19:04:19"/>
		<updated date="2024-07-22 14:57:08"/>
		<severity>Important</severity>
		<description>关于 kernel 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2024-1086" id="CVE-2024-1086" severity="Important" severity_desc="高风险" title="Linux kernel 存在安全漏洞，该漏洞源于netfilter: nf_tables 组件中存在释放后重用，nf_hook_slow() 函数可能会导致双重释放，攻击者利用该漏洞导致本地权限提升。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/bpftool-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.02.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.02.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-core-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-cross-headers" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-doc" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-doc-4.18.0-193.91.1.el8_2.ks8.02.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-doc-4.18.0-193.91.1.el8_2.ks8.02.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-headers-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-ipaclones-internal" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-selftests-internal" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/perf-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="193.91.1.el8_2.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/python3-perf-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.18.0-193.91.1.el8_2.ks8.02.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202410-1045</id>
		<title>关于 cups-filters 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-15 12:50:55"/>
		<updated date="2024-10-22 15:21:37"/>
		<severity>Critical</severity>
		<description>关于 cups-filters 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2024-47076" id="CVE-2024-47076" severity="Important" severity_desc="高风险" title="CUPS 是一个基于标准的开源打印系统，`libcupsfilters` 包含了原 `cups-filters` 软件包中过滤器的代码，作为库函数用于打印机应用程序所需的数据格式转换任务。在 `libcupsfilters` 库中的 `cfGetPrinterAttributes5` 函数未能对从 IPP 服务器返回的 IPP 属性进行清理。当这些未经验证的 IPP 属性被用于生成 PPD 文件等操作时，攻击者可以控制提供给 CUPS 系统其余部分的数据，可能导致信息泄露或进一步的安全风险。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2024-47175" id="CVE-2024-47175" severity="Important" severity_desc="高风险" title="CUPS 是一个基于标准的开源打印系统，其组件 libppd 可用于支持旧版 PPD 文件。libppd 中的函数 ppdCreatePPDFromIPP2 在创建 PPD 缓冲区时未对 IPP 属性进行清理，当与 cfGetPrinterAttributes5 等其他函数结合使用时，可导致用户可控输入，并通过 Foomatic 最终实现代码执行。该漏洞可以作为漏洞利用链的一部分，导致远程代码执行（RCE），详情见 CVE-2024-47176。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2024-47176" id="CVE-2024-47176" severity="Moderate" severity_desc="中风险" title="CUPS是一个基于标准的开源打印系统，其中的cups-browsed组件包含网络打印功能，包括自动发现打印服务和共享打印机。该组件绑定到INADDR_ANY:631端口，导致其信任来自任何来源的数据包，并可能引发Get-Printer-Attributes IPP请求指向攻击者控制的URL。当与其他漏洞（如CVE-2024-47076、CVE-2024-47175和CVE-2024-47177）结合使用时，攻击者可在无需认证的情况下远程执行任意命令。此漏洞尤其危险，因为它可以从公共互联网利用，可能使大量启用CUPS服务的系统面临远程攻击风险。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="cups-filters" release="35.el8_10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/cups-filters-1.20.0-35.el8_10.x86_64.rpm" version="1.20.0">
					<filename>cups-filters-1.20.0-35.el8_10.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cups-filters-devel" release="35.el8_10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/cups-filters-devel-1.20.0-35.el8_10.i686.rpm" version="1.20.0">
					<filename>cups-filters-devel-1.20.0-35.el8_10.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cups-filters-devel" release="35.el8_10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/cups-filters-devel-1.20.0-35.el8_10.x86_64.rpm" version="1.20.0">
					<filename>cups-filters-devel-1.20.0-35.el8_10.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="cups-filters-libs" release="35.el8_10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/cups-filters-libs-1.20.0-35.el8_10.i686.rpm" version="1.20.0">
					<filename>cups-filters-libs-1.20.0-35.el8_10.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="cups-filters-libs" release="35.el8_10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/cups-filters-libs-1.20.0-35.el8_10.x86_64.rpm" version="1.20.0">
					<filename>cups-filters-libs-1.20.0-35.el8_10.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202605-1271</id>
		<title>关于 kernel 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2026-05-19 12:51:07"/>
		<updated date="2026-05-20 12:50:09"/>
		<severity>Important</severity>
		<description>关于 kernel 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2026-31668" id="CVE-2026-31668" severity="Important" severity_desc="高风险" title="Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。
Linux kernel存在安全漏洞，该漏洞源于seg6 lwtunnel中dst_cache在输入和输出路径间共享，可能导致后执行路径盲目重用前一路径的缓存，绕过自身路由查找。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2026-43284" id="CVE-2026-43284" severity="Important" severity_desc="高风险" title=" Linux 内核 xfrm-ESP 页面缓存写入漏洞。在 ESP（IPsec 封装安全载荷）输入路径中，esp_input() 函数在特定分支下绕过了 skb_cow_data() 调用，直接在经 splice 植入的页缓存 frag 上执行原地 AEAD 解密，从而导致页面缓存被修改。攻击者可控制写入位置及写入值（4字节），用于篡改 /usr/bin/su 的页缓存并植入恶意 ELF 代码，最终获得 root 权限。该漏洞需要 CAP_NET_ADMIN 权限（可通过创建用户命名空间获取）。
" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/bpftool-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-abi-whitelists-4.19.91-26.el8.ks8.08.noarch.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.19.91-26.el8.ks8.08.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-core-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-core-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-devel-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-extra-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-internal-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-devel-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-headers-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-extra-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-internal-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-devel-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/perf-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="26.el8.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-perf-4.19.91-26.el8.ks8.08.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.19.91-26.el8.ks8.08.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="security" version="">
		<id>KYSA-202605-1439</id>
		<title>关于 kernel 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2026-05-26 10:43:09"/>
		<updated date="2026-05-28 19:11:37"/>
		<severity>Important</severity>
		<description>关于 kernel 的软件包现在已有更新补丁提供。
您可在CVE详情页查看各个CVE的详细信息与补丁包下载链接。
</description>
		<references>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2026-46300" id="CVE-2026-46300" severity="Important" severity_desc="高风险" title="Fragnesia 是一个 Linux 内核本地权限提升漏洞。该漏洞源于内核在合并 socket 缓冲区时未能正确传播共享分片标记，导致攻击者可将只读文件的页缓存误当作 ESP 密文进行解密。攻击者首先创建用户与网络命名空间，在隔离环境中获取 CAP_NET_ADMIN 权限，然后通过 NETLINK_XFRM 接口安装精心构造的 ESP 安全关联，反复触发对缓存文件页面的受控单字节写入。最终在目标文件头部注入提权代码，从而获得 root 权限。" type="cve"/>
			<reference href="https://support.kylinos.cn/#/security/cveDetail?allTitle=CVE-2026-46333" id="CVE-2026-46333" severity="Important" severity_desc="高风险" title="该漏洞源于Linux内核ptrace访问控制逻辑中的__ptrace_may_access()函数缺陷。这套机制本应限制进程间的相互检视与交互，但内核&quot;dumpability&quot;检查存在的逻辑缺陷会引发危险的竞态条件。" type="cve"/>
		</references>
		<pkglist>
			<collection short="Kylin_Server_Compatible_V10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/bpftool-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-abi-whitelists-4.19.91-26.el8.ks8.10.noarch.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.19.91-26.el8.ks8.10.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-core-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-core-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-devel-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-extra-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-internal-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-devel-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-headers-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-extra-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-internal-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-devel-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/perf-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="26.el8.ks8.10" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-perf-4.19.91-26.el8.ks8.10.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.19.91-26.el8.ks8.10.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1039</id>
		<title>关于 tzdata-2022g-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:04"/>
		<updated date="2023-04-06 17:38:34"/>
		<severity>Normal</severity>
		<description>关于 tzdata-2022g-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1043" id="BUG-202302-1043" title="&lt;p&gt;解决java-1.8.0-openjdk编译缺依赖问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="tzdata" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/tzdata-2022g-1.el8.noarch.rpm" version="2022g">
					<filename>tzdata-2022g-1.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="tzdata-java" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/tzdata-java-2022g-1.el8.noarch.rpm" version="2022g">
					<filename>tzdata-java-2022g-1.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1033</id>
		<title>关于 snort-openappid-2.9.20-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:04"/>
		<updated date="2023-04-06 17:39:54"/>
		<severity>Low</severity>
		<description>关于 snort-openappid-2.9.20-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202210-1028" id="BUG-202210-1028" title="&lt;p&gt;指标要求：&lt;/p&gt;&lt;p&gt;应能够即时地侦测到网络上的端口扫描行为并且立即做出反应。这种反端口扫描应至少具备如下功能：&lt;/p&gt;&lt;p&gt;（1）侦测端口扫描。&lt;br/&gt;（2）初步即时地阻挡攻击机器。&lt;br/&gt;&lt;/p&gt;&lt;p&gt;（3）记录发起扫描的主机信息，包括系统名称、攻击时间、尝试访问的TCP/UDP端口号码等。&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;PortSentry 和 snort 哪个更合适，我们需要尽快评估确认&lt;br/&gt;从需求满足程度、易用性、开源协议、工作量、社区后期维护性等几个方面对比分析，明确需求支持的软件包，并提交入库。&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;输出：评估分析以及自测报告；支持需求的软件包，以及使用说明。&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="snort-openappid" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/snort-openappid-2.9.20-1.el8.x86_64.rpm" version="2.9.20">
					<filename>snort-openappid-2.9.20-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1040</id>
		<title>关于 luajit-2.1.0-0.25beta3.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:04"/>
		<updated date="2023-04-06 17:37:21"/>
		<severity>Low</severity>
		<description>关于 luajit-2.1.0-0.25beta3.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202210-1028" id="BUG-202210-1028" title="&lt;p&gt;指标要求：&lt;/p&gt;&lt;p&gt;应能够即时地侦测到网络上的端口扫描行为并且立即做出反应。这种反端口扫描应至少具备如下功能：&lt;/p&gt;&lt;p&gt;（1）侦测端口扫描。&lt;br/&gt;（2）初步即时地阻挡攻击机器。&lt;br/&gt;&lt;/p&gt;&lt;p&gt;（3）记录发起扫描的主机信息，包括系统名称、攻击时间、尝试访问的TCP/UDP端口号码等。&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;PortSentry 和 snort 哪个更合适，我们需要尽快评估确认&lt;br/&gt;从需求满足程度、易用性、开源协议、工作量、社区后期维护性等几个方面对比分析，明确需求支持的软件包，并提交入库。&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;输出：评估分析以及自测报告；支持需求的软件包，以及使用说明。&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="luajit" release="0.25beta3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/luajit-2.1.0-0.25beta3.el8.i686.rpm" version="2.1.0">
					<filename>luajit-2.1.0-0.25beta3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="luajit" release="0.25beta3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/luajit-2.1.0-0.25beta3.el8.x86_64.rpm" version="2.1.0">
					<filename>luajit-2.1.0-0.25beta3.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="luajit-devel" release="0.25beta3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/luajit-devel-2.1.0-0.25beta3.el8.i686.rpm" version="2.1.0">
					<filename>luajit-devel-2.1.0-0.25beta3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="luajit-devel" release="0.25beta3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/luajit-devel-2.1.0-0.25beta3.el8.x86_64.rpm" version="2.1.0">
					<filename>luajit-devel-2.1.0-0.25beta3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1032</id>
		<title>关于 ecryptfs-utils-111-15.3.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:04"/>
		<updated date="2023-04-06 17:40:06"/>
		<severity>Normal</severity>
		<description>关于 ecryptfs-utils-111-15.3.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202210-1040" id="BUG-202210-1040" title="&lt;p&gt;任务描述&lt;/p&gt;&lt;p&gt;解决系统加密文件系统类型支持问题，新增对文件系统加密的支持功能。&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="ecryptfs-utils" release="15.3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/ecryptfs-utils-111-15.3.el8.i686.rpm" version="111">
					<filename>ecryptfs-utils-111-15.3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ecryptfs-utils" release="15.3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/ecryptfs-utils-111-15.3.el8.x86_64.rpm" version="111">
					<filename>ecryptfs-utils-111-15.3.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="ecryptfs-utils-devel" release="15.3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/ecryptfs-utils-devel-111-15.3.el8.i686.rpm" version="111">
					<filename>ecryptfs-utils-devel-111-15.3.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ecryptfs-utils-devel" release="15.3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/ecryptfs-utils-devel-111-15.3.el8.x86_64.rpm" version="111">
					<filename>ecryptfs-utils-devel-111-15.3.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python2-ecryptfs-utils" release="15.3.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/PowerTools-updates/x86_64/Packages/python2-ecryptfs-utils-111-15.3.el8.x86_64.rpm" version="111">
					<filename>python2-ecryptfs-utils-111-15.3.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1025</id>
		<title>关于 libtalloc-2.3.3-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:41:30"/>
		<severity>Normal</severity>
		<description>关于 libtalloc-2.3.3-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1054" id="BUG-202302-1054" title="&lt;p&gt;libldb软件包编译时缺少依赖libtalloc、libtdb、libtevent，导致编译失败&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libtalloc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtalloc-2.3.3-1.el8.i686.rpm" version="2.3.3">
					<filename>libtalloc-2.3.3-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtalloc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtalloc-2.3.3-1.el8.x86_64.rpm" version="2.3.3">
					<filename>libtalloc-2.3.3-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libtalloc-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtalloc-devel-2.3.3-1.el8.i686.rpm" version="2.3.3">
					<filename>libtalloc-devel-2.3.3-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtalloc-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtalloc-devel-2.3.3-1.el8.x86_64.rpm" version="2.3.3">
					<filename>libtalloc-devel-2.3.3-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="python3-talloc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-talloc-2.3.3-1.el8.i686.rpm" version="2.3.3">
					<filename>python3-talloc-2.3.3-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-talloc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-talloc-2.3.3-1.el8.x86_64.rpm" version="2.3.3">
					<filename>python3-talloc-2.3.3-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="python3-talloc-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-talloc-devel-2.3.3-1.el8.i686.rpm" version="2.3.3">
					<filename>python3-talloc-devel-2.3.3-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-talloc-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-talloc-devel-2.3.3-1.el8.x86_64.rpm" version="2.3.3">
					<filename>python3-talloc-devel-2.3.3-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1008</id>
		<title>关于 libtdb-1.4.6-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:44:04"/>
		<severity>Normal</severity>
		<description>关于 libtdb-1.4.6-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1054" id="BUG-202302-1054" title="&lt;p&gt;libldb软件包编译时缺少依赖libtalloc、libtdb、libtevent，导致编译失败&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libtdb" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtdb-1.4.6-1.el8.i686.rpm" version="1.4.6">
					<filename>libtdb-1.4.6-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtdb" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtdb-1.4.6-1.el8.x86_64.rpm" version="1.4.6">
					<filename>libtdb-1.4.6-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libtdb-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtdb-devel-1.4.6-1.el8.i686.rpm" version="1.4.6">
					<filename>libtdb-devel-1.4.6-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtdb-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtdb-devel-1.4.6-1.el8.x86_64.rpm" version="1.4.6">
					<filename>libtdb-devel-1.4.6-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-tdb" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-tdb-1.4.6-1.el8.x86_64.rpm" version="1.4.6">
					<filename>python3-tdb-1.4.6-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="tdb-tools" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/tdb-tools-1.4.6-1.el8.x86_64.rpm" version="1.4.6">
					<filename>tdb-tools-1.4.6-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1018</id>
		<title>关于 libtevent-0.11.0-0.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:42:28"/>
		<severity>Normal</severity>
		<description>关于 libtevent-0.11.0-0.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1054" id="BUG-202302-1054" title="&lt;p&gt;libldb软件包编译时缺少依赖libtalloc、libtdb、libtevent，导致编译失败&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libtevent" release="0.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtevent-0.11.0-0.el8.i686.rpm" version="0.11.0">
					<filename>libtevent-0.11.0-0.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtevent" release="0.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtevent-0.11.0-0.el8.x86_64.rpm" version="0.11.0">
					<filename>libtevent-0.11.0-0.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libtevent-devel" release="0.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtevent-devel-0.11.0-0.el8.i686.rpm" version="0.11.0">
					<filename>libtevent-devel-0.11.0-0.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtevent-devel" release="0.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libtevent-devel-0.11.0-0.el8.x86_64.rpm" version="0.11.0">
					<filename>libtevent-devel-0.11.0-0.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-tevent" release="0.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-tevent-0.11.0-0.el8.x86_64.rpm" version="0.11.0">
					<filename>python3-tevent-0.11.0-0.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1006</id>
		<title>关于 rpm-4.14.3-13.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:44:18"/>
		<severity>Normal</severity>
		<description>关于 rpm-4.14.3-13.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1055" id="BUG-202302-1055" title="&lt;p&gt;fapolicyd软件包安装时缺少依赖rpm，导致安装失败&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="python3-rpm" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-rpm-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>python3-rpm-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="rpm-apidocs" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-apidocs-4.14.3-13.el8.ks8.01.noarch.rpm" version="4.14.3">
					<filename>rpm-apidocs-4.14.3-13.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-build" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-build-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-build-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="rpm-build-libs" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-build-libs-4.14.3-13.el8.ks8.01.i686.rpm" version="4.14.3">
					<filename>rpm-build-libs-4.14.3-13.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-build-libs" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-build-libs-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-build-libs-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="rpm-cron" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-cron-4.14.3-13.el8.ks8.01.noarch.rpm" version="4.14.3">
					<filename>rpm-cron-4.14.3-13.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="rpm-devel" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-devel-4.14.3-13.el8.ks8.01.i686.rpm" version="4.14.3">
					<filename>rpm-devel-4.14.3-13.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-devel" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-devel-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-devel-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="rpm-libs" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-libs-4.14.3-13.el8.ks8.01.i686.rpm" version="4.14.3">
					<filename>rpm-libs-4.14.3-13.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-libs" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-libs-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-libs-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-fapolicyd" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-fapolicyd-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-fapolicyd-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-ima" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-ima-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-ima-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-prioreset" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-prioreset-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-prioreset-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-selinux" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-selinux-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-selinux-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-syslog" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-syslog-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-syslog-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-plugin-systemd-inhibit" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-plugin-systemd-inhibit-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-plugin-systemd-inhibit-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="rpm-sign" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/rpm-sign-4.14.3-13.el8.ks8.01.x86_64.rpm" version="4.14.3">
					<filename>rpm-sign-4.14.3-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1024</id>
		<title>关于 libevdev-1.10.0-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:41:36"/>
		<severity>Normal</severity>
		<description>关于 libevdev-1.10.0-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1070" id="BUG-202302-1070" title="&lt;p&gt;解决软件包libinput安装时缺少依赖libevdev的问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libevdev" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libevdev-1.10.0-1.el8.i686.rpm" version="1.10.0">
					<filename>libevdev-1.10.0-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libevdev" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libevdev-1.10.0-1.el8.x86_64.rpm" version="1.10.0">
					<filename>libevdev-1.10.0-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libevdev-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libevdev-devel-1.10.0-1.el8.i686.rpm" version="1.10.0">
					<filename>libevdev-devel-1.10.0-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libevdev-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libevdev-devel-1.10.0-1.el8.x86_64.rpm" version="1.10.0">
					<filename>libevdev-devel-1.10.0-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libevdev-utils" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/libevdev-utils-1.10.0-1.el8.x86_64.rpm" version="1.10.0">
					<filename>libevdev-utils-1.10.0-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202312-1106</id>
		<title>关于 abrt-2.10.9-11.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-12-12 20:50:26"/>
		<updated date="2024-01-26 18:47:52"/>
		<severity>Low</severity>
		<description>关于 abrt-2.10.9-11.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202312-1027" id="BUG-202312-1027" title="&lt;p&gt;解决ns8.2软件包安装问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="abrt" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-ccpp" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-ccpp-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-ccpp-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-coredump-helper" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-coredump-helper-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-coredump-helper-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-kerneloops" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-kerneloops-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-kerneloops-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-pstoreoops" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-pstoreoops-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-pstoreoops-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-upload-watch" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-upload-watch-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-upload-watch-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-vmcore" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-vmcore-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-vmcore-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-addon-xorg" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-addon-xorg-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-addon-xorg-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-atomic" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-atomic-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-atomic-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-cli" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-cli-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-cli-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-cli-ng" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-cli-ng-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-cli-ng-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-console-notification" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-console-notification-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-console-notification-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-dbus" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-dbus-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-dbus-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-desktop" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-desktop-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-desktop-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="abrt-devel" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-devel-2.10.9-11.el8.ks8.01.i686.rpm" version="2.10.9">
					<filename>abrt-devel-2.10.9-11.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-devel" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-devel-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-devel-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-gui" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-gui-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-gui-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="abrt-gui-devel" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-gui-devel-2.10.9-11.el8.ks8.01.i686.rpm" version="2.10.9">
					<filename>abrt-gui-devel-2.10.9-11.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-gui-devel" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-gui-devel-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-gui-devel-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="abrt-gui-libs" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-gui-libs-2.10.9-11.el8.ks8.01.i686.rpm" version="2.10.9">
					<filename>abrt-gui-libs-2.10.9-11.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-gui-libs" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-gui-libs-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-gui-libs-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="abrt-libs" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-libs-2.10.9-11.el8.ks8.01.i686.rpm" version="2.10.9">
					<filename>abrt-libs-2.10.9-11.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-libs" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-libs-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-libs-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-plugin-machine-id" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-plugin-machine-id-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-plugin-machine-id-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-plugin-sosreport" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-plugin-sosreport-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-plugin-sosreport-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-retrace-client" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-retrace-client-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-retrace-client-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="abrt-tui" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/abrt-tui-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>abrt-tui-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-abrt" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-abrt-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>python3-abrt-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-abrt-addon" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-abrt-addon-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>python3-abrt-addon-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-abrt-container-addon" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-abrt-container-addon-2.10.9-11.el8.ks8.01.x86_64.rpm" version="2.10.9">
					<filename>python3-abrt-container-addon-2.10.9-11.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-abrt-doc" release="11.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-abrt-doc-2.10.9-11.el8.ks8.01.noarch.rpm" version="2.10.9">
					<filename>python3-abrt-doc-2.10.9-11.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202312-1145</id>
		<title>关于 python-packaging-16.8-9.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-12-12 20:50:28"/>
		<updated date="2024-01-26 18:42:49"/>
		<severity>Low</severity>
		<description>关于 python-packaging-16.8-9.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202312-1027" id="BUG-202312-1027" title="&lt;p&gt;解决ns8.2软件包安装问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="python-packaging-doc" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python-packaging-doc-16.8-9.el8.noarch.rpm" version="16.8">
					<filename>python-packaging-doc-16.8-9.el8.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-packaging" release="9.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-packaging-16.8-9.el8.noarch.rpm" version="16.8">
					<filename>python3-packaging-16.8-9.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202312-1107</id>
		<title>关于 doxygen-1.8.14-12.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-12-12 20:50:26"/>
		<updated date="2024-01-26 18:47:42"/>
		<severity>Low</severity>
		<description>关于 doxygen-1.8.14-12.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202312-1027" id="BUG-202312-1027" title="&lt;p&gt;解决ns8.2软件包安装问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="1" name="doxygen" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/doxygen-1.8.14-12.el8.x86_64.rpm" version="1.8.14">
					<filename>doxygen-1.8.14-12.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="doxygen-doxywizard" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/doxygen-doxywizard-1.8.14-12.el8.x86_64.rpm" version="1.8.14">
					<filename>doxygen-doxywizard-1.8.14-12.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="1" name="doxygen-latex" release="12.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/doxygen-latex-1.8.14-12.el8.x86_64.rpm" version="1.8.14">
					<filename>doxygen-latex-1.8.14-12.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1003</id>
		<title>关于 nspr-4.34.0-3.el8_6.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:44:38"/>
		<severity>Normal</severity>
		<description>关于 nspr-4.34.0-3.el8_6.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202303-1076" id="BUG-202303-1076" title="&lt;p&gt;nss缺少编译依赖导致编译报错&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="nspr" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-4.34.0-3.el8_6.i686.rpm" version="4.34.0">
					<filename>nspr-4.34.0-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nspr" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-4.34.0-3.el8_6.x86_64.rpm" version="4.34.0">
					<filename>nspr-4.34.0-3.el8_6.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="nspr-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-devel-4.34.0-3.el8_6.i686.rpm" version="4.34.0">
					<filename>nspr-devel-4.34.0-3.el8_6.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nspr-devel" release="3.el8_6" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/nspr-devel-4.34.0-3.el8_6.x86_64.rpm" version="4.34.0">
					<filename>nspr-devel-4.34.0-3.el8_6.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202305-1270</id>
		<title>关于 ukui-greeter-1.2.1-48.1.el8.ks8.17.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-05-23 20:50:04"/>
		<updated date="2023-05-29 13:12:43"/>
		<severity>Urgency</severity>
		<description>关于 ukui-greeter-1.2.1-48.1.el8.ks8.17.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202305-1004" id="BUG-202305-1004" title="&lt;p&gt;ukui-greeter包卸载时执行脚本报错&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="ukui-greeter" release="48.1.el8.ks8.17" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ukui-greeter-1.2.1-48.1.el8.ks8.17.x86_64.rpm" version="1.2.1">
					<filename>ukui-greeter-1.2.1-48.1.el8.ks8.17.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202311-1105</id>
		<title>关于 lorax-templates-kylin-8.4-3.el8.ks8.05.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-11-28 20:50:20"/>
		<updated date="2023-11-30 09:59:51"/>
		<severity>Urgency</severity>
		<description>关于 lorax-templates-kylin-8.4-3.el8.ks8.05.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202303-1088" id="BUG-202303-1088" title="&lt;p&gt;lorax-templates-kylin 产品化评估，对包中存在的产品化问题进行修改&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="lorax-templates-kylin" release="3.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/lorax-templates-kylin-8.4-3.el8.ks8.05.noarch.rpm" version="8.4">
					<filename>lorax-templates-kylin-8.4-3.el8.ks8.05.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202306-1053</id>
		<title>关于 copy-jdk-configs-4.0-2.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-06-27 20:50:03"/>
		<updated date="2023-06-29 18:14:04"/>
		<severity>Normal</severity>
		<description>关于 copy-jdk-configs-4.0-2.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202306-1084" id="BUG-202306-1084" title="&lt;p&gt;java-1.8.0-openjdk缺少安装依赖copy-jdk-configs &amp;gt;= 4.0&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="copy-jdk-configs" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/copy-jdk-configs-4.0-2.el8.noarch.rpm" version="4.0">
					<filename>copy-jdk-configs-4.0-2.el8.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202306-1059</id>
		<title>关于 gb-cjk-fonts-1.0.0-1.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-06-27 20:50:03"/>
		<updated date="2023-07-03 19:16:42"/>
		<severity>Normal</severity>
		<description>关于 gb-cjk-fonts-1.0.0-1.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202306-1167" id="BUG-202306-1167" title="&lt;p&gt;需要增加基于GB18030-2022标准的字库安装包&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="gb-cjk-fonts" release="1" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/gb-cjk-fonts-1.0.0-1.noarch.rpm" version="1.0.0">
					<filename>gb-cjk-fonts-1.0.0-1.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202308-1093</id>
		<title>关于 fcitx-4.2.9.7-3.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-08-08 20:50:04"/>
		<updated date="2023-11-03 14:21:59"/>
		<severity>Normal</severity>
		<description>关于 fcitx-4.2.9.7-3.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202307-1091" id="BUG-202307-1091" title="&lt;p&gt;全平台支持gb18030-2022标准内码输入&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="fcitx" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="fcitx-data" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-data-4.2.9.7-3.el8.ks8.01.noarch.rpm" version="4.2.9.7">
					<filename>fcitx-data-4.2.9.7-3.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fcitx-devel" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-devel-4.2.9.7-3.el8.ks8.01.i686.rpm" version="4.2.9.7">
					<filename>fcitx-devel-4.2.9.7-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-devel" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-devel-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-devel-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fcitx-gtk2" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-gtk2-4.2.9.7-3.el8.ks8.01.i686.rpm" version="4.2.9.7">
					<filename>fcitx-gtk2-4.2.9.7-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-gtk2" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-gtk2-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-gtk2-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-gtk3" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-gtk3-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-gtk3-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fcitx-libs" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-libs-4.2.9.7-3.el8.ks8.01.i686.rpm" version="4.2.9.7">
					<filename>fcitx-libs-4.2.9.7-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-libs" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-libs-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-libs-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-pinyin" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-pinyin-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-pinyin-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-qw" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-qw-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-qw-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fcitx-table" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-table-4.2.9.7-3.el8.ks8.01.x86_64.rpm" version="4.2.9.7">
					<filename>fcitx-table-4.2.9.7-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="fcitx-table-chinese" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fcitx-table-chinese-4.2.9.7-3.el8.ks8.01.noarch.rpm" version="4.2.9.7">
					<filename>fcitx-table-chinese-4.2.9.7-3.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202308-1119</id>
		<title>关于 harfbuzz-1.7.5-3.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-08-08 20:50:04"/>
		<updated date="2023-11-03 14:22:49"/>
		<severity>Normal</severity>
		<description>关于 harfbuzz-1.7.5-3.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202307-1091" id="BUG-202307-1091" title="&lt;p&gt;全平台支持gb18030-2022标准内码输入&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="harfbuzz" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-1.7.5-3.el8.ks8.01.i686.rpm" version="1.7.5">
					<filename>harfbuzz-1.7.5-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="harfbuzz" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-1.7.5-3.el8.ks8.01.x86_64.rpm" version="1.7.5">
					<filename>harfbuzz-1.7.5-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="harfbuzz-devel" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-devel-1.7.5-3.el8.ks8.01.i686.rpm" version="1.7.5">
					<filename>harfbuzz-devel-1.7.5-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="harfbuzz-devel" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-devel-1.7.5-3.el8.ks8.01.x86_64.rpm" version="1.7.5">
					<filename>harfbuzz-devel-1.7.5-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="harfbuzz-icu" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-icu-1.7.5-3.el8.ks8.01.i686.rpm" version="1.7.5">
					<filename>harfbuzz-icu-1.7.5-3.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="harfbuzz-icu" release="3.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/harfbuzz-icu-1.7.5-3.el8.ks8.01.x86_64.rpm" version="1.7.5">
					<filename>harfbuzz-icu-1.7.5-3.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202304-1019</id>
		<title>关于 fstrm-0.6.1-2.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-04-04 20:50:03"/>
		<updated date="2023-04-06 17:42:16"/>
		<severity>Normal</severity>
		<description>关于 fstrm-0.6.1-2.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202302-1076" id="BUG-202302-1076" title="&lt;p&gt;解决了bind-9.11.36-5.el8的安装问题 &lt;br/&gt;&lt;/p&gt;&lt;p&gt;解决ruby-2.5.8-120.oe1.src.rpm编译依赖问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="fstrm" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-0.6.1-2.el8.i686.rpm" version="0.6.1">
					<filename>fstrm-0.6.1-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fstrm" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-0.6.1-2.el8.x86_64.rpm" version="0.6.1">
					<filename>fstrm-0.6.1-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fstrm-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-devel-0.6.1-2.el8.i686.rpm" version="0.6.1">
					<filename>fstrm-devel-0.6.1-2.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fstrm-devel" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-devel-0.6.1-2.el8.x86_64.rpm" version="0.6.1">
					<filename>fstrm-devel-0.6.1-2.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="fstrm-doc" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-doc-0.6.1-2.el8.noarch.rpm" version="0.6.1">
					<filename>fstrm-doc-0.6.1-2.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fstrm-utils" release="2.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/fstrm-utils-0.6.1-2.el8.x86_64.rpm" version="0.6.1">
					<filename>fstrm-utils-0.6.1-2.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202310-1037</id>
		<title>关于 javapackages-tools-5.3.0-2.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-10-24 20:50:15"/>
		<updated date="2023-11-14 15:58:01"/>
		<severity>Low</severity>
		<description>关于 javapackages-tools-5.3.0-2.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202310-1136" id="BUG-202310-1136" title="&lt;p&gt;NS8.2 仓库迁移maven-local软件包安装失败&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="ivy-local" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/ivy-local-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>ivy-local-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="javapackages-filesystem" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/javapackages-filesystem-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>javapackages-filesystem-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="javapackages-local" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/javapackages-local-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>javapackages-local-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="javapackages-tools" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/javapackages-tools-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>javapackages-tools-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="maven-local" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/maven-local-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>maven-local-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-javapackages" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/AppStream-updates/x86_64/Packages/python3-javapackages-5.3.0-2.el8.ks8.01.noarch.rpm" version="5.3.0">
					<filename>python3-javapackages-5.3.0-2.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202401-1013</id>
		<title>关于 kylin-activation-1.3.10-5.el8.ks8.30.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-01-02 20:50:35"/>
		<updated date="2024-02-21 12:03:34"/>
		<severity>Normal</severity>
		<description>关于 kylin-activation-1.3.10-5.el8.ks8.30.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202312-1245" id="BUG-202312-1245" title="&lt;p&gt;界面场地授权使用新版场地授权文件激活失败&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="kylin-activation" release="5.el8.ks8.30" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kylin-activation-1.3.10-5.el8.ks8.30.x86_64.rpm" version="1.3.10">
					<filename>kylin-activation-1.3.10-5.el8.ks8.30.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202311-1096</id>
		<title>关于 libkylin-activation-3.0-64.el8.ks8.56.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-11-28 20:50:18"/>
		<updated date="2023-11-30 10:05:34"/>
		<severity>Low</severity>
		<description>关于 libkylin-activation-3.0-64.el8.ks8.56.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202311-1164" id="BUG-202311-1164" title="&lt;p&gt;授权包更新&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="libkylin-activation" release="64.el8.ks8.56" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libkylin-activation-3.0-64.el8.ks8.56.x86_64.rpm" version="3.0">
					<filename>libkylin-activation-3.0-64.el8.ks8.56.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202311-1116</id>
		<title>关于 librockey-1.0-1.11.1.el8.ks8.02.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-11-28 20:50:20"/>
		<updated date="2023-11-30 09:53:30"/>
		<severity>Low</severity>
		<description>关于 librockey-1.0-1.11.1.el8.ks8.02.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202311-1164" id="BUG-202311-1164" title="&lt;p&gt;授权包更新&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="librockey" release="1.11.1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/librockey-1.0-1.11.1.el8.ks8.02.x86_64.rpm" version="1.0">
					<filename>librockey-1.0-1.11.1.el8.ks8.02.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202401-1131</id>
		<title>关于 libreport-2.9.5-10.el8.ks8.06.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-01-30 20:50:38"/>
		<updated date="2024-02-20 12:04:49"/>
		<severity>Normal</severity>
		<description>关于 libreport-2.9.5-10.el8.ks8.06.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202311-1143" id="BUG-202311-1143" title="&lt;p&gt;obsolete libreport-rhel related packages&lt;br/&gt;delete libreport-rhel related packages&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libreport" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-anaconda" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-anaconda-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-anaconda-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-cli" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-cli-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-cli-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-compat" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-compat-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-compat-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libreport-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-devel-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-devel-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-devel-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-devel-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-filesystem" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-filesystem-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-filesystem-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libreport-gtk" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-gtk-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-gtk-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-gtk" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-gtk-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-gtk-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libreport-gtk-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-gtk-devel-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-gtk-devel-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-gtk-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-gtk-devel-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-gtk-devel-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-newt" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-newt-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-newt-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-bugzilla" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-bugzilla-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-bugzilla-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-kerneloops" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-kerneloops-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-kerneloops-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-logger" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-logger-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-logger-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-mailx" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-mailx-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-mailx-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-mantisbt" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-mantisbt-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-mantisbt-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-reportuploader" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-reportuploader-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-reportuploader-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-rhtsupport" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-rhtsupport-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-rhtsupport-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-systemd-journal" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-systemd-journal-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-systemd-journal-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-plugin-ureport" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-plugin-ureport-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-plugin-ureport-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libreport-web" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-web-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-web-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-web" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-web-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-web-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libreport-web-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-web-devel-2.9.5-10.el8.ks8.06.i686.rpm" version="2.9.5">
					<filename>libreport-web-devel-2.9.5-10.el8.ks8.06.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libreport-web-devel" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libreport-web-devel-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>libreport-web-devel-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-libreport" release="10.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-libreport-2.9.5-10.el8.ks8.06.x86_64.rpm" version="2.9.5">
					<filename>python3-libreport-2.9.5-10.el8.ks8.06.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202312-1205</id>
		<title>关于 kylin-computer-viewer-3.9.1s1-1.el8.ks8.06.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2023-12-20 09:58:19"/>
		<updated date="2024-02-21 11:21:12"/>
		<severity>Normal</severity>
		<description>关于 kylin-computer-viewer-3.9.1s1-1.el8.ks8.06.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202312-1146" id="BUG-202312-1146" title="&lt;p&gt;修复电脑属性 激活状态显示错误问题。&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="kylin-computer-viewer" release="1.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kylin-computer-viewer-3.9.1s1-1.el8.ks8.06.x86_64.rpm" version="3.9.1s1">
					<filename>kylin-computer-viewer-3.9.1s1-1.el8.ks8.06.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202409-1139</id>
		<title>关于 phpldapadmin-1.2.6.2-1.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-09-24 12:51:26"/>
		<updated date="2024-09-24 13:44:44"/>
		<severity>Normal</severity>
		<description>关于 phpldapadmin-1.2.6.2-1.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1110" id="BUG-202409-1110" title="&lt;p&gt;[步骤]&lt;/p&gt;&lt;p&gt;安装并进入系统&lt;/p&gt;&lt;p&gt;1. 安装phpldapadmin包&lt;br/&gt;# yum install phpldapadmin&lt;br/&gt;2. 查看台湾旗帜&lt;br/&gt;/usr/share/phpldapadmin/htdocs/images/countries/tw.png&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="phpldapadmin" release="1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/phpldapadmin-1.2.6.2-1.el8.ks8.01.noarch.rpm" version="1.2.6.2">
					<filename>phpldapadmin-1.2.6.2-1.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1008</id>
		<title>关于 opencc-1.0.3-8.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:26"/>
		<updated date="2024-10-08 09:24:41"/>
		<severity>Normal</severity>
		<description>关于 opencc-1.0.3-8.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1115" id="BUG-202409-1115" title="&lt;p&gt;ns8.2 opencc修改MG words&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="opencc" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-1.0.3-8.el8.ks8.01.i686.rpm" version="1.0.3">
					<filename>opencc-1.0.3-8.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="opencc" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-1.0.3-8.el8.ks8.01.x86_64.rpm" version="1.0.3">
					<filename>opencc-1.0.3-8.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="opencc-devel" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-devel-1.0.3-8.el8.ks8.01.i686.rpm" version="1.0.3">
					<filename>opencc-devel-1.0.3-8.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="opencc-devel" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-devel-1.0.3-8.el8.ks8.01.x86_64.rpm" version="1.0.3">
					<filename>opencc-devel-1.0.3-8.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="opencc-doc" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-doc-1.0.3-8.el8.ks8.01.x86_64.rpm" version="1.0.3">
					<filename>opencc-doc-1.0.3-8.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="opencc-tools" release="8.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/opencc-tools-1.0.3-8.el8.ks8.01.x86_64.rpm" version="1.0.3">
					<filename>opencc-tools-1.0.3-8.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202409-1117</id>
		<title>关于 liblouis-2.6.2-21.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-09-24 12:51:25"/>
		<updated date="2024-09-24 13:49:37"/>
		<severity>Low</severity>
		<description>关于 liblouis-2.6.2-21.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1060" id="BUG-202409-1060" title="&lt;p&gt;敏感信息修改&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="liblouis" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-2.6.2-21.el8.ks8.01.i686.rpm" version="2.6.2">
					<filename>liblouis-2.6.2-21.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="liblouis" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-2.6.2-21.el8.ks8.01.x86_64.rpm" version="2.6.2">
					<filename>liblouis-2.6.2-21.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="liblouis-devel" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-devel-2.6.2-21.el8.ks8.01.i686.rpm" version="2.6.2">
					<filename>liblouis-devel-2.6.2-21.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="liblouis-devel" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-devel-2.6.2-21.el8.ks8.01.x86_64.rpm" version="2.6.2">
					<filename>liblouis-devel-2.6.2-21.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="liblouis-doc" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-doc-2.6.2-21.el8.ks8.01.noarch.rpm" version="2.6.2">
					<filename>liblouis-doc-2.6.2-21.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="liblouis-utils" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/liblouis-utils-2.6.2-21.el8.ks8.01.x86_64.rpm" version="2.6.2">
					<filename>liblouis-utils-2.6.2-21.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="python3-louis" release="21.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-louis-2.6.2-21.el8.ks8.01.noarch.rpm" version="2.6.2">
					<filename>python3-louis-2.6.2-21.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202409-1123</id>
		<title>关于 libhangul-0.1.0-16.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-09-24 12:51:25"/>
		<updated date="2024-09-24 13:48:37"/>
		<severity>Low</severity>
		<description>关于 libhangul-0.1.0-16.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1060" id="BUG-202409-1060" title="&lt;p&gt;敏感信息修改&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libhangul" release="16.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libhangul-0.1.0-16.el8.ks8.01.i686.rpm" version="0.1.0">
					<filename>libhangul-0.1.0-16.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libhangul" release="16.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libhangul-0.1.0-16.el8.ks8.01.x86_64.rpm" version="0.1.0">
					<filename>libhangul-0.1.0-16.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libhangul-devel" release="16.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libhangul-devel-0.1.0-16.el8.ks8.01.i686.rpm" version="0.1.0">
					<filename>libhangul-devel-0.1.0-16.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libhangul-devel" release="16.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libhangul-devel-0.1.0-16.el8.ks8.01.x86_64.rpm" version="0.1.0">
					<filename>libhangul-devel-0.1.0-16.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202409-1098</id>
		<title>关于 mobile-broadband-provider-info-20190618-2.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-09-24 12:51:23"/>
		<updated date="2024-09-24 13:52:48"/>
		<severity>Urgency</severity>
		<description>关于 mobile-broadband-provider-info-20190618-2.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1117" id="BUG-202409-1117" title="&lt;p&gt;&lt;span&gt;合规MG信息修改，根据主线修改内容,删除country code 'tw' &lt;br/&gt;&lt;/span&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="mobile-broadband-provider-info" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/mobile-broadband-provider-info-20190618-2.el8.ks8.01.noarch.rpm" version="20190618">
					<filename>mobile-broadband-provider-info-20190618-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="mobile-broadband-provider-info-devel" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/mobile-broadband-provider-info-devel-20190618-2.el8.ks8.01.noarch.rpm" version="20190618">
					<filename>mobile-broadband-provider-info-devel-20190618-2.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202412-1003</id>
		<title>关于 kernel-4.19.91-26.el8.ks8.06.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-12-03 12:51:44"/>
		<updated date="2024-12-09 16:25:46"/>
		<severity>Normal</severity>
		<description>关于 kernel-4.19.91-26.el8.ks8.06.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202411-1295" id="BUG-202411-1295" title="&lt;p&gt;&amp;nbsp; 修复内核在设置了 tcp_thin_linear_timeouts 配置参数时，频繁出现 TCP高频重传问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/bpftool-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-abi-whitelists-4.19.91-26.el8.ks8.06.noarch.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.19.91-26.el8.ks8.06.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-core-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-core-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-devel-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-extra-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-debug-modules-internal-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-devel-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-headers-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-extra-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-modules-internal-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/kernel-tools-libs-devel-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/perf-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="26.el8.ks8.06" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/python3-perf-4.19.91-26.el8.ks8.06.x86_64.rpm" version="4.19.91">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.19.91-26.el8.ks8.06.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1024</id>
		<title>关于 hardinfo-0.5.1-1058.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:27"/>
		<updated date="2024-10-08 09:19:50"/>
		<severity>Urgency</severity>
		<description>关于 hardinfo-0.5.1-1058.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1178" id="BUG-202409-1178" title="&lt;p&gt;无&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="hardinfo" release="1058.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/hardinfo-0.5.1-1058.ks8.01.x86_64.rpm" version="0.5.1">
					<filename>hardinfo-0.5.1-1058.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202406-1026</id>
		<title>关于 mate-indicators-20150918kord0ukui58-10.el8.ks8.03.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-06-11 20:50:52"/>
		<updated date="2024-06-21 10:47:55"/>
		<severity>Normal</severity>
		<description>关于 mate-indicators-20150918kord0ukui58-10.el8.ks8.03.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202406-1105" id="BUG-202406-1105" title="&lt;p&gt;修复重庆西南大学服务器mate-indicators内存泄漏&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="mate-indicators" release="10.el8.ks8.03" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/mate-indicators-20150918kord0ukui58-10.el8.ks8.03.x86_64.rpm" version="20150918kord0ukui58">
					<filename>mate-indicators-20150918kord0ukui58-10.el8.ks8.03.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1040</id>
		<title>关于 iso-codes-3.79-2.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:28"/>
		<updated date="2024-10-08 09:13:12"/>
		<severity>Normal</severity>
		<description>关于 iso-codes-3.79-2.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1128" id="BUG-202409-1128" title="&lt;p&gt;修复iso-codes版本敏感词问题&lt;gr-copy-clipboard&gt;&lt;/gr-copy-clipboard&gt;&lt;/p&gt;&lt;p&gt;&lt;gr-change-actions&gt;&lt;/gr-change-actions&gt;&lt;/p&gt;&lt;p&gt;修复iso-codes版本敏感词问题&lt;br/&gt;&lt;/p&gt;&lt;p&gt;&lt;iron-input&gt;&lt;slot&gt;&lt;/slot&gt;&lt;/iron-input&gt;&lt;gr-button&gt;&lt;paper-button&gt;&lt;slot&gt;&lt;slot&gt;&lt;iron-icon&gt;&lt;g&gt;&lt;path&gt;&lt;/path&gt;&lt;/g&gt;&lt;/iron-icon&gt;&lt;/slot&gt;&lt;/slot&gt;&lt;/paper-button&gt;&lt;/gr-button&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="iso-codes" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/iso-codes-3.79-2.el8.ks8.01.noarch.rpm" version="3.79">
					<filename>iso-codes-3.79-2.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="iso-codes-devel" release="2.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/iso-codes-devel-3.79-2.el8.ks8.01.noarch.rpm" version="3.79">
					<filename>iso-codes-devel-3.79-2.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1029</id>
		<title>关于 libmateweather-1.12.1-1.el8.ks8.02.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:27"/>
		<updated date="2024-10-08 09:19:01"/>
		<severity>Urgency</severity>
		<description>关于 libmateweather-1.12.1-1.el8.ks8.02.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1112" id="BUG-202409-1112" title="&lt;p&gt;[任务#196627]修改敏感字段&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libmateweather" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libmateweather-1.12.1-1.el8.ks8.02.i686.rpm" version="1.12.1">
					<filename>libmateweather-1.12.1-1.el8.ks8.02.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libmateweather" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libmateweather-1.12.1-1.el8.ks8.02.x86_64.rpm" version="1.12.1">
					<filename>libmateweather-1.12.1-1.el8.ks8.02.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="libmateweather-data" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libmateweather-data-1.12.1-1.el8.ks8.02.noarch.rpm" version="1.12.1">
					<filename>libmateweather-data-1.12.1-1.el8.ks8.02.noarch.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libmateweather-devel" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libmateweather-devel-1.12.1-1.el8.ks8.02.i686.rpm" version="1.12.1">
					<filename>libmateweather-devel-1.12.1-1.el8.ks8.02.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libmateweather-devel" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libmateweather-devel-1.12.1-1.el8.ks8.02.x86_64.rpm" version="1.12.1">
					<filename>libmateweather-devel-1.12.1-1.el8.ks8.02.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1044</id>
		<title>关于 network-manager-applet-1.8.22-2.el8.ks8.05.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:28"/>
		<updated date="2024-10-08 09:12:28"/>
		<severity>Normal</severity>
		<description>关于 network-manager-applet-1.8.22-2.el8.ks8.05.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1105" id="BUG-202409-1105" title="&lt;p&gt;[任务#190665]银河麒麟V10兼容版(8.2)合规信息修改&lt;gr-copy-clipboard&gt;&lt;/gr-copy-clipboard&gt;&lt;/p&gt;&lt;p&gt;&lt;p&gt;&lt;gr-change-actions&gt;&lt;/gr-change-actions&gt;&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;/p&gt;&lt;p&gt;&lt;iron-input&gt;&lt;slot&gt;&lt;/slot&gt;&lt;/iron-input&gt;&lt;gr-button&gt;&lt;paper-button&gt;&lt;slot&gt;&lt;slot&gt;&lt;iron-icon&gt;&lt;g&gt;&lt;path&gt;&lt;/path&gt;&lt;/g&gt;&lt;/iron-icon&gt;&lt;/slot&gt;&lt;/slot&gt;&lt;/paper-button&gt;&lt;/gr-button&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libnma" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libnma-1.8.22-2.el8.ks8.05.i686.rpm" version="1.8.22">
					<filename>libnma-1.8.22-2.el8.ks8.05.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libnma" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libnma-1.8.22-2.el8.ks8.05.x86_64.rpm" version="1.8.22">
					<filename>libnma-1.8.22-2.el8.ks8.05.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libnma-devel" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libnma-devel-1.8.22-2.el8.ks8.05.i686.rpm" version="1.8.22">
					<filename>libnma-devel-1.8.22-2.el8.ks8.05.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libnma-devel" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libnma-devel-1.8.22-2.el8.ks8.05.x86_64.rpm" version="1.8.22">
					<filename>libnma-devel-1.8.22-2.el8.ks8.05.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="network-manager-applet" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/network-manager-applet-1.8.22-2.el8.ks8.05.x86_64.rpm" version="1.8.22">
					<filename>network-manager-applet-1.8.22-2.el8.ks8.05.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="nm-connection-editor" release="2.el8.ks8.05" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/nm-connection-editor-1.8.22-2.el8.ks8.05.x86_64.rpm" version="1.8.22">
					<filename>nm-connection-editor-1.8.22-2.el8.ks8.05.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1028</id>
		<title>关于 hunspell-en-0.20140811.1-12.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-01 12:51:27"/>
		<updated date="2024-10-08 09:19:10"/>
		<severity>Urgency</severity>
		<description>关于 hunspell-en-0.20140811.1-12.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1124" id="BUG-202409-1124" title="&lt;p&gt;hunspell-en 存在敏感信息&amp;nbsp;&lt;/p&gt;&lt;p&gt;&lt;i&gt;&lt;/i&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="hunspell-en" release="12.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/hunspell-en-0.20140811.1-12.el8.ks8.01.noarch.rpm" version="0.20140811.1">
					<filename>hunspell-en-0.20140811.1-12.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="hunspell-en-GB" release="12.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/hunspell-en-GB-0.20140811.1-12.el8.ks8.01.noarch.rpm" version="0.20140811.1">
					<filename>hunspell-en-GB-0.20140811.1-12.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="hunspell-en-US" release="12.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/hunspell-en-US-0.20140811.1-12.el8.ks8.01.noarch.rpm" version="0.20140811.1">
					<filename>hunspell-en-US-0.20140811.1-12.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1077</id>
		<title>关于 libtimezonemap-0.4.5.1-4.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-15 12:51:35"/>
		<updated date="2024-10-15 15:30:21"/>
		<severity>Normal</severity>
		<description>关于 libtimezonemap-0.4.5.1-4.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202410-1084" id="BUG-202410-1084" title="&lt;p&gt;修改MG信息&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="libtimezonemap" release="4.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libtimezonemap-0.4.5.1-4.el8.i686.rpm" version="0.4.5.1">
					<filename>libtimezonemap-0.4.5.1-4.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtimezonemap" release="4.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libtimezonemap-0.4.5.1-4.el8.x86_64.rpm" version="0.4.5.1">
					<filename>libtimezonemap-0.4.5.1-4.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libtimezonemap-devel" release="4.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libtimezonemap-devel-0.4.5.1-4.el8.i686.rpm" version="0.4.5.1">
					<filename>libtimezonemap-devel-0.4.5.1-4.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libtimezonemap-devel" release="4.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libtimezonemap-devel-0.4.5.1-4.el8.x86_64.rpm" version="0.4.5.1">
					<filename>libtimezonemap-devel-0.4.5.1-4.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1072</id>
		<title>关于 vim-8.0.1763-13.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-15 12:51:34"/>
		<updated date="2024-10-15 15:31:15"/>
		<severity>Urgency</severity>
		<description>关于 vim-8.0.1763-13.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202410-1084" id="BUG-202410-1084" title="&lt;p&gt;修改MG信息&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="2" name="vim-X11" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/vim-X11-8.0.1763-13.el8.ks8.01.x86_64.rpm" version="8.0.1763">
					<filename>vim-X11-8.0.1763-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-common" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/vim-common-8.0.1763-13.el8.ks8.01.x86_64.rpm" version="8.0.1763">
					<filename>vim-common-8.0.1763-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-enhanced" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/vim-enhanced-8.0.1763-13.el8.ks8.01.x86_64.rpm" version="8.0.1763">
					<filename>vim-enhanced-8.0.1763-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="2" name="vim-filesystem" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/vim-filesystem-8.0.1763-13.el8.ks8.01.noarch.rpm" version="8.0.1763">
					<filename>vim-filesystem-8.0.1763-13.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="2" name="vim-minimal" release="13.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/vim-minimal-8.0.1763-13.el8.ks8.01.x86_64.rpm" version="8.0.1763">
					<filename>vim-minimal-8.0.1763-13.el8.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1064</id>
		<title>关于 google-noto-emoji-fonts-20180508-4.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-15 12:51:34"/>
		<updated date="2024-10-15 15:32:37"/>
		<severity>Urgency</severity>
		<description>关于 google-noto-emoji-fonts-20180508-4.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202410-1084" id="BUG-202410-1084" title="&lt;p&gt;修改MG信息&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="google-noto-emoji-color-fonts" release="4.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/google-noto-emoji-color-fonts-20180508-4.el8.ks8.01.noarch.rpm" version="20180508">
					<filename>google-noto-emoji-color-fonts-20180508-4.el8.ks8.01.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="google-noto-emoji-fonts" release="4.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/google-noto-emoji-fonts-20180508-4.el8.ks8.01.noarch.rpm" version="20180508">
					<filename>google-noto-emoji-fonts-20180508-4.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1130</id>
		<title>关于 fontforge-20170731-14.0.1.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-22 12:51:34"/>
		<updated date="2024-10-22 13:57:02"/>
		<severity>Normal</severity>
		<description>关于 fontforge-20170731-14.0.1.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202410-1083" id="BUG-202410-1083" title="&lt;p&gt;fontforge mg修改&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="fontforge" release="14.0.1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/fontforge-20170731-14.0.1.el8.ks8.01.i686.rpm" version="20170731">
					<filename>fontforge-20170731-14.0.1.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fontforge" release="14.0.1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/fontforge-20170731-14.0.1.el8.ks8.01.x86_64.rpm" version="20170731">
					<filename>fontforge-20170731-14.0.1.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="fontforge-devel" release="14.0.1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/fontforge-devel-20170731-14.0.1.el8.ks8.01.i686.rpm" version="20170731">
					<filename>fontforge-devel-20170731-14.0.1.el8.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="fontforge-devel" release="14.0.1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/fontforge-devel-20170731-14.0.1.el8.ks8.01.x86_64.rpm" version="20170731">
					<filename>fontforge-devel-20170731-14.0.1.el8.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="fontforge-doc" release="14.0.1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/fontforge-doc-20170731-14.0.1.el8.ks8.01.noarch.rpm" version="20170731">
					<filename>fontforge-doc-20170731-14.0.1.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1114</id>
		<title>关于 xkeyboard-config-2.28-1.el8.ks8.02.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-22 12:51:33"/>
		<updated date="2024-10-22 14:02:38"/>
		<severity>Normal</severity>
		<description>关于 xkeyboard-config-2.28-1.el8.ks8.02.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202409-1196" id="BUG-202409-1196" title="&lt;p&gt;【政治敏感性】【ns8.2】繁体安装，键盘配置中去處中華民國台湾语的情況，&lt;a href=&quot;https://server.kylinos.cn:8084/c/xkeyboard-config/+/41792&quot; target=&quot;_blank&quot; style=&quot;font-size: 14px;&quot;&gt;修复gmo文件未生效问题&lt;/a&gt;&lt;/p&gt;&lt;p&gt;&lt;gr-change-actions&gt;&lt;/gr-change-actions&gt;&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;&lt;iron-input&gt;&lt;slot&gt;&lt;/slot&gt;&lt;/iron-input&gt;&lt;gr-button&gt;&lt;paper-button&gt;&lt;slot&gt;&lt;slot&gt;&lt;iron-icon&gt;&lt;g&gt;&lt;path&gt;&lt;/path&gt;&lt;/g&gt;&lt;/iron-icon&gt;&lt;/slot&gt;&lt;/slot&gt;&lt;/paper-button&gt;&lt;/gr-button&gt;&lt;/p&gt;&lt;p&gt;&lt;iron-input&gt;&lt;slot&gt;&lt;/slot&gt;&lt;/iron-input&gt;&lt;gr-button&gt;&lt;paper-button&gt;&lt;slot&gt;&lt;slot&gt;&lt;iron-icon&gt;&lt;g&gt;&lt;path&gt;&lt;/path&gt;&lt;/g&gt;&lt;/iron-icon&gt;&lt;/slot&gt;&lt;/slot&gt;&lt;/paper-button&gt;&lt;/gr-button&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="xkeyboard-config" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/xkeyboard-config-2.28-1.el8.ks8.02.noarch.rpm" version="2.28">
					<filename>xkeyboard-config-2.28-1.el8.ks8.02.noarch.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="xkeyboard-config-devel" release="1.el8.ks8.02" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/xkeyboard-config-devel-2.28-1.el8.ks8.02.noarch.rpm" version="2.28">
					<filename>xkeyboard-config-devel-2.28-1.el8.ks8.02.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202410-1094</id>
		<title>关于 ghostscript-9.27-1.el8.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2024-10-15 12:51:36"/>
		<updated date="2024-10-15 15:26:28"/>
		<severity>Normal</severity>
		<description>关于 ghostscript-9.27-1.el8.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202402-1038" id="BUG-202402-1038" title="&lt;p&gt;修复版本异常 同源238 239&lt;/p&gt;&lt;p&gt;补充python3 安装依赖包python-pm-generators&lt;/p&gt;&lt;p&gt;补充pki-core包编译和安装依赖包jss&lt;br/&gt;&lt;/p&gt;&lt;p&gt;补充ghostscript包安装依赖&lt;br/&gt;&lt;/p&gt;&lt;p&gt;补充v10sp1 mips osc包安装依赖&amp;nbsp;python2-lxml&lt;/p&gt;&lt;p&gt;补充v10sp1 mips架构 fontforge包编译和安装依赖&amp;nbsp;libuninameslist，potrace&lt;br/&gt;&lt;/p&gt;&lt;p&gt;补充v10sp1 loongarch架构&amp;nbsp;fontforge包安装依赖&amp;nbsp;libuninameslist，potrace&lt;/p&gt;&lt;p&gt;补充sp3、sp4 xmlrpc-c包信息，更正sp3，sp4比sp1，2版本低问题&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="ghostscript" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="ghostscript-doc" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-doc-9.27-1.el8.noarch.rpm" version="9.27">
					<filename>ghostscript-doc-9.27-1.el8.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ghostscript-gtk" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-gtk-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-gtk-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ghostscript-tools-dvipdf" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-tools-dvipdf-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-tools-dvipdf-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ghostscript-tools-fonts" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-tools-fonts-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-tools-fonts-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ghostscript-tools-printing" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-tools-printing-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-tools-printing-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="ghostscript-x11" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/ghostscript-x11-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>ghostscript-x11-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libgs" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libgs-9.27-1.el8.i686.rpm" version="9.27">
					<filename>libgs-9.27-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libgs" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libgs-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>libgs-9.27-1.el8.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="libgs-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libgs-devel-9.27-1.el8.i686.rpm" version="9.27">
					<filename>libgs-devel-9.27-1.el8.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="libgs-devel" release="1.el8" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/libgs-devel-9.27-1.el8.x86_64.rpm" version="9.27">
					<filename>libgs-devel-9.27-1.el8.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202510-1064</id>
		<title>关于 djvulibre-3.5.27-12.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2025-10-28 12:50:04"/>
		<updated date="2025-10-28 20:54:32"/>
		<severity>Low</severity>
		<description>关于 djvulibre-3.5.27-12.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202510-1052" id="BUG-202510-1052" title="&lt;p&gt;any2djvu脚本中的外部网站url失效，无法上传文件&lt;br/&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="i686" epoch="0" name="djvulibre" release="12.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/djvulibre-3.5.27-12.ks8.01.i686.rpm" version="3.5.27">
					<filename>djvulibre-3.5.27-12.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="djvulibre" release="12.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/djvulibre-3.5.27-12.ks8.01.x86_64.rpm" version="3.5.27">
					<filename>djvulibre-3.5.27-12.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="i686" epoch="0" name="djvulibre-devel" release="12.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/djvulibre-devel-3.5.27-12.ks8.01.i686.rpm" version="3.5.27">
					<filename>djvulibre-devel-3.5.27-12.ks8.01.i686.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="djvulibre-devel" release="12.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/djvulibre-devel-3.5.27-12.ks8.01.x86_64.rpm" version="3.5.27">
					<filename>djvulibre-devel-3.5.27-12.ks8.01.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="djvulibre-help" release="12.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/djvulibre-help-3.5.27-12.ks8.01.x86_64.rpm" version="3.5.27">
					<filename>djvulibre-help-3.5.27-12.ks8.01.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202605-1050</id>
		<title>关于 gb-cjk-fonts-1.0.0-1.el8.ks8.01.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2026-05-26 12:50:07"/>
		<updated date="2026-05-27 09:19:27"/>
		<severity>Normal</severity>
		<description>关于 gb-cjk-fonts-1.0.0-1.el8.ks8.01.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202605-1105" id="BUG-202605-1105" title="&lt;p&gt;兼容版V10-8.2系统不支持1号修改单&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="noarch" epoch="0" name="gb-cjk-fonts" release="1.el8.ks8.01" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/BaseOS-updates/x86_64/Packages/gb-cjk-fonts-1.0.0-1.el8.ks8.01.noarch.rpm" version="1.0.0">
					<filename>gb-cjk-fonts-1.0.0-1.el8.ks8.01.noarch.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202606-1011</id>
		<title>关于 kernel-4.18.0-193.91.1.el8_2.ks8.07.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2026-06-16 12:50:06"/>
		<updated date="2026-06-29 13:29:31"/>
		<severity>Urgency</severity>
		<description>关于 kernel-4.18.0-193.91.1.el8_2.ks8.07.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202606-1094" id="BUG-202606-1094" title="&lt;p&gt;&lt;span&gt;&lt;span&gt;kernel存在PinTheft提权漏洞&lt;span&gt;QVD-2026-27616&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/bpftool-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.07.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.07.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-core-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-cross-headers" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-doc" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-doc-4.18.0-193.91.1.el8_2.ks8.07.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-doc-4.18.0-193.91.1.el8_2.ks8.07.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-headers-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-ipaclones-internal" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-selftests-internal" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/perf-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="193.91.1.el8_2.ks8.07" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/python3-perf-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.18.0-193.91.1.el8_2.ks8.07.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
	<update from="cve_manager@kylinos.cn" status="stable" type="bugfix" version="">
		<id>KYBA-202606-1010</id>
		<title>关于 kernel-4.18.0-193.91.1.el8_2.ks8.08.src.rpm 的补丁包公告</title>
		<release>Kylin_Server_Compatible_V10</release>
		<issued date="2026-06-16 12:50:05"/>
		<updated date="2026-06-29 13:29:50"/>
		<severity>Urgency</severity>
		<description>关于 kernel-4.18.0-193.91.1.el8_2.ks8.08.src.rpm 的补丁包公告</description>
		<references>
			<reference href="None/fault/detail?no=BUG-202606-1087" id="BUG-202606-1087" title="&lt;p&gt;QVD-2026-29453修复&lt;/p&gt;" type="bug"/>
		</references>
		<pkglist>
			<collection short="kylin_server_compatible_v10">
				<name>银河麒麟高级服务器操作系统（兼容版） V10</name>
				<package arch="x86_64" epoch="0" name="bpftool" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/bpftool-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>bpftool-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-abi-whitelists" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.08.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-abi-whitelists-4.18.0-193.91.1.el8_2.ks8.08.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-core" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-core-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-core-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-cross-headers" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-cross-headers-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-core" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-core-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-devel" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-extra" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-extra-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-debug-modules-internal" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-debug-modules-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-devel" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="noarch" epoch="0" name="kernel-doc" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-doc-4.18.0-193.91.1.el8_2.ks8.08.noarch.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-doc-4.18.0-193.91.1.el8_2.ks8.08.noarch.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-headers" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-headers-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-headers-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-ipaclones-internal" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-ipaclones-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-extra" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-extra-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-modules-internal" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-modules-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-selftests-internal" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-selftests-internal-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="kernel-tools-libs-devel" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>kernel-tools-libs-devel-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="perf" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/perf-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>perf-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
				<package arch="x86_64" epoch="0" name="python3-perf" release="193.91.1.el8_2.ks8.08" src="https://update.cs2c.com.cn/NS/V10/8U2/os/adv/lic/Plus-updates/x86_64/Packages/python3-perf-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm" version="4.18.0">
					<reboot_suggested>True</reboot_suggested>
					<filename>python3-perf-4.18.0-193.91.1.el8_2.ks8.08.x86_64.rpm</filename>
				</package>
			</collection>
		</pkglist>
	</update>
</updates>
