Summary: | <net-proxy/tinyproxy-1.10.0-r1: non-root can kill arbitrary processes (CVE-2017-11747) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Aleksandr Wagner (Kivak) <alwag> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | bkohler, maintainer-needed |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | C3 [noglsa cve] | ||
Package list: |
=net-proxy/tinyproxy-1.10.0-r1
|
Runtime testing required: | No |
Description
Aleksandr Wagner (Kivak)
2017-07-30 16:46:19 UTC
The patch has been merged in upstream. Please bump. Michael Boyle Gentoo Security Padawan Bumped to 1.10.0 @maintainer, please let us know when you want to stabilize. We can stabilize this any time @arches, please stabilize. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=55f51b2edc8883d92606e94feb667732d14d5dcb commit 55f51b2edc8883d92606e94feb667732d14d5dcb Author: Tobias Klausmann <klausman@gentoo.org> AuthorDate: 2018-11-27 16:00:55 +0000 Commit: Tobias Klausmann <klausman@gentoo.org> CommitDate: 2018-11-27 16:00:55 +0000 net-proxy/tinyproxy-1.10.0-r1: alpha stable Bug: http://bugs.gentoo.org/626628 Signed-off-by: Tobias Klausmann <klausman@gentoo.org> net-proxy/tinyproxy/tinyproxy-1.10.0-r1.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) Stable on alpha. x86 stable ia64 stable ppc stable amd64 stable tree is now clean. |