Summary: | net-ftp/oftpd: denial of service CVE-2006-6767 | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Tavis Ormandy (RETIRED) <taviso> | ||||
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | normal | CC: | eradicator, net-ftp, uberlord | ||||
Priority: | High | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | B3? [glsa] | ||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Tavis Ormandy (RETIRED)
2006-12-26 17:30:32 UTC
Created attachment 104795 [details, diff]
lprt assertion patch
simple patch that ssolves this problem for me.
eradicator: please provide an updated ebuild -r3 added to portage with attached patch. Thanks. Arches: please test and mark stable net-ftp/oftpd-0.3.7-r3 target KEYWORDS="amd64 arm ppc64 sh sparc x86" nothing to do sparc stable. stable on ppc64 x86 stable amd64 stable I vote for a GLSA. tavis votes yes GLSA 200701-09, thanks everybody |