Summary: | <sys-apps/busybox-1.20.1: improper sanitization of DHCP options (CVE-2011-2716) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | embedded, vapier |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2012-07-14 00:32:43 UTC
17:58 <@ago> blueness: could I remove <1.20.1 as requested in bug 426504 ? 17:59 <@blueness> ago, i would say yes, but busybox is very much vapier's thing. ping him a few times and if you get no answer, ping me again and i'll look into this more carefully @Mike, what's your mind? (In reply to Agostino Sarubbo from comment #1) feel free to cull old busybox ebuilds all you like Cleanup done, @security go ahead with the glsa. Thanks for your work Added to existing GLSA draft (In reply to Agostino Sarubbo from comment #3) you need to look at unused files in $FILESDIR too. there's a number of patches left behind that are dead now. This issue was resolved and addressed in GLSA 201312-02 at http://security.gentoo.org/glsa/glsa-201312-02.xml by GLSA coordinator Chris Reffett (creffett). |