Summary: | net-irc/inspircd: InspIRCd 1.0.5 denial of service, InspIRCd 1.0.6 release | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Craig Edwards <brain> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | brain, hansmi, nenolod |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.inspircd.org | ||
Whiteboard: | [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Craig Edwards
2006-07-30 07:40:08 UTC
As proxy-maintainer of the package, I see no problem with bumping the version. 1.0.6 runs fine with my test config, anyhow. Bumped in CVS. Please CC me the next time. (In reply to comment #2) > Bumped in CVS. Please CC me the next time. Err, 1/ It's security's job to CC maintainers 2/ You are not mentioned anywhere in metadata.xml, hard to CC then... 3/ Also, it's security job to resolve security bugs, AFAIK. @Craig: Please, don't security-restrict bugs assigned to bug wranglers, they go to nowhere land if you do it. Leave those checkboxes alone. Thanks. (In reply to comment #3) > 2/ You are not mentioned anywhere in metadata.xml, hard to CC then... <description>Indirectly maintaining through hansmi@gentoo.org</description> I would say that's mentioned enough. > 3/ Also, it's security job to resolve security bugs, AFAIK. Okay, I didn't notice it was assigned to security, because I was pointed to this bug by William Pitcock on IRC. Craig is the upstream dev of inspircd, and I'm in contact with both him and William. Just as an info. Thanks, closing without GLSA since this was never stable. |