171515 – games-board/teg: DoS

Bug 171515 - games-board/teg: DoS

Summary: games-board/teg: DoS

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High minor (vote)
Assignee:	Gentoo Security

URL:	http://sourceforge.net/project/showfi...
Whiteboard:	B3 [noglsa] Falco
Keywords:

Depends on:
Blocks:

Reported:	2007-03-20 03:08 UTC by William Page
Modified:	2011-10-30 22:39 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description William Page 2007-03-20 03:08:54 UTC

2007-03-14, a new version of teg was released, with many bugfixes, most notably a fix for a remote denial of service vulnerability

Reproducible: Always

Comment 1 Mr. Bones. (RETIRED) gentoo-dev

2007-03-20 04:32:31 UTC

New version in portage.  Old version removed.

Comment 2 Raphael Marichez (Falco) (RETIRED) gentoo-dev

2007-03-20 15:49:20 UTC

I take this bug in the security scope since it seems to be a remote server-side DoS (but not sure).

Actually i don't think that merits a GLSA. And there is very poor information, so i vote noglsa.

Comment 3 Raphael Marichez (Falco) (RETIRED) gentoo-dev

2007-03-20 15:50:15 UTC

and reassigning. Security, please vote.

Comment 4 Matt Drew (RETIRED) gentoo-dev

2007-03-20 15:59:29 UTC

I vote yes - it's a server DoS:

http://sourceforge.net/tracker/index.php?func=detail&aid=1452348&group_id=2459&atid=102459

Comment 5 Pierre-Yves Rofes (RETIRED) gentoo-dev

2007-03-20 17:51:53 UTC

voting no, because it should affect at most 0,01% of Gentoo installs.

Comment 6 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2007-04-18 05:05:42 UTC

Two NO votes -> Closing with NO GLSA.