Summary: | sys-apps/findutils Heap overflow (CVE-2007-2452) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sune Kloppenborg Jeppesen (RETIRED) <jaervosz> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED INVALID | ||
Severity: | critical | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://lists.gnu.org/archive/html/info-gnu/2007-05/msg00012.html | ||
Whiteboard: | A1 [stable] jaervosz | ||
Package list: | Runtime testing required: | --- |
Description
Sune Kloppenborg Jeppesen (RETIRED)
2007-06-01 11:26:44 UTC
Base-system please advise and patch as necessary. findutils-4.2.31 now in the tree Thx Vapier. Arches please test and mark stable. Target keywords are: findutils-4.2.31.ebuild:KEYWORDS="alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86" amd64 done alpha/ia64/x86 stable Stable for HPPA. Marked ppc and ppc64 gentoo isn't actually affected by this issue, nor are most linux distros. from the ebuild: # Don't build or install locate because it conflicts with slocate, # which is a secure version of locate. See bug 18729 sed -i '/^SUBDIRS/s/locate//' Makefile.in Thx Jonathan for clearing that up. Sorry for the noise. |