Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 46155 - Zebra masked for security vuln
Summary: Zebra masked for security vuln
Status: RESOLVED WONTFIX
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: New packages (show other bugs)
Hardware: All All
: High normal (vote)
Assignee: Amir Guindehi (RETIRED)
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-03-29 12:39 UTC by Mark Farver
Modified: 2004-03-31 00:23 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Mark Farver 2004-03-29 12:39:09 UTC 
net-misc/zebra was masked in package.mask for multiple vulns in .93.  These vulns have been fixed in .94.  A simple copy of net-misc/zebra/zebra-0.93b.ebuild (not -r2) to zebra-0.94.ebuild and inserting the following lines ) from .93r1.ebuild 

---snip---
        for proto in zebra bgpd ospfd ripd; do
                insinto /etc/conf.d
                newins ${FILESDIR}/conf.d/${proto}.confd ${proto}
                exeinto /etc/init.d
                newexe ${FILESDIR}/init.d/${proto}.initd ${proto}
        done
                                                                                
        # second loop for ipv6
        use ipv6 && for proto in ospf6d ripngd; do
                insinto /etc/conf.d
                newins ${FILESDIR}/conf.d/${proto}.confd ${proto}
                exeinto /etc/init.d
                newexe ${FILESDIR}/init.d/${proto}.initd ${proto}
        done
--snip--
Comment 1 solar (RETIRED) gentoo-dev 2004-03-29 13:28:25 UTC 
Mark,
I think the quagga ( http://www.quagga.net/ ) fork a zebra clone but better supported has more known bugs resolved in it over zebra.

ACCEPT_KEYWORDS="~x86" emerge '>=net-misc/quagga-0.96.4-r6' -pv
Comment 2 Amir Guindehi (RETIRED) gentoo-dev 2004-03-29 16:07:52 UTC 
I agree to solar's comment.
Comment 3 solar (RETIRED) gentoo-dev 2004-03-29 16:43:45 UTC 
My comment sounded very choppy.. But you guys get the idea :)
Comment 4 Amir Guindehi (RETIRED) gentoo-dev 2004-03-31 00:23:38 UTC 
Quagga is a good Zebra replacement. 
Quagga gets supported by the community and has numerous fixes which are missing in Zebra.