Re: klibc 1.5.20 stable/oldstable update

To: team@security.debian.org
Cc: debian-release@lists.debian.org
Subject: Re: klibc 1.5.20 stable/oldstable update
From: maximilian attems <max@stro.at>
Date: Thu, 19 May 2011 14:49:39 +0000
Message-id: <[🔎] 20110519144939.GS17786@vostochny.stro.at>
In-reply-to: <[🔎] 20110518154150.GN17786@vostochny.stro.at>
References: <[🔎] 20110518154150.GN17786@vostochny.stro.at>

On Wed, May 18, 2011 at 03:41:50PM +0000, maximilian attems wrote:
> 
> 2 commits of klibc 1.5.22 are candidates for stable fixes:
> 
> * [klibc] ipconfig: comment new escape function
>   security fix for CVE-2011-0997 type vulnerability
>   corresponding cve requested but not yet given out.
> http://git.kernel.org/?p=libs/klibc/klibc.git;a=commit;h=46a0f831582629612f0ff9707ad1292887f26bff
> 
> * [klibc] ipconfig: Only peek and discard packets from specified device.
>   This fixes netbooting on boxes with several connected network dev.
>   (the commit is on the largeish size, but got tested together with 1.5.20)
> http://git.kernel.org/?p=libs/klibc/klibc.git;a=commit;h=92823d1a78a8a6f3e7a7cc36f949ca6379c4e77c
> 
> 
> concerning oldstable only the first one should be fixed.
> ipconfig has deeper troubles there.
> 

Please security team could you confirm that aboves can be handled via p-u?

thank you

-- 
maks

Reply to:

Follow-Ups:
- Re: klibc 1.5.20 stable/oldstable update
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

References:
- klibc 1.5.20 stable/oldstable update
  - From: maximilian attems <max@stro.at>

Prev by Date: Bug#622754: Updated list of binNMUs needed for db5.1 transition
Next by Date: Bug#627324: transition: tinyxml 2.6.2
Previous by thread: Re: klibc 1.5.20 stable/oldstable update
Next by thread: Re: klibc 1.5.20 stable/oldstable update
Index(es):
- Date
- Thread