Summary: | <sys-apps/systemd-{226-r2,228-r1}: Stack overflow in nss-mymachines (CVE-2015-7510) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | systemd |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1284642 | ||
Whiteboard: | ~2 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2015-11-24 14:20:32 UTC
The commit after merging: https://github.com/systemd/systemd/commit/cb31827d62066a04b02111df3052949fda4b6888 The affected code was introduced in systemd-223, so this does not affect the current stable version (systemd-218-r5). Fixed in 226-r2 and 228-r2 and old ebuilds removed. https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7f59a94c88c938260171d6b5327ea8ae79a032c1 https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=064a64bc25f11be6a38b8b491aa77324f732bd99 (In reply to Mike Gilbert from comment #3) > Fixed in 226-r2 and 228-r2 and old ebuilds removed. Sorry, that should say 228-r1. |