Summary: | <net-misc/iputils-20100418: Denial of Service Vulnerability in ping (CVE-2010-2529) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tim Sammut (RETIRED) <underling> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A3 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Tim Sammut (RETIRED)
2010-08-12 19:23:37 UTC
added the patch with iputils-20100418 Arches, please test and mark stable: =net-misc/iputils-20100418 Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc x86" x86 stable amd64 done Stable for HPPA PPC. CVE-2010-2529 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2529): Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a denial of service (hang) via a crafted echo response. alpha/arm/ia64/m68k/s390/sh/sparc stable ppc64 done GLSA request filed. close, not in portage anymore. This issue was resolved and addressed in GLSA 201412-08 at http://security.gentoo.org/glsa/glsa-201412-08.xml by GLSA coordinator Sean Amoss (ackle). |