[prev in list] [next in list] [prev in thread] [next in thread]
List: busybox
Subject: Re: [PATCH 0/2] Fix CVE-2022-28391
From: Hauke Mehrtens <hauke () hauke-m ! de>
Date: 2022-12-05 23:26:00
Message-ID: 75e825fa-a3fa-de55-d5d7-c6c926b2ffa7 () hauke-m ! de
[Download RAW message or body]
On 7/19/22 17:53, Radoslav Kolev wrote:
> The following two patches fix CVE-2022-2839 preventing netstat,
> traceroute and nslookup from sending escape sequences to the terminal.
> Note that the problem is only reproducible when using musl libc, but
> not with glibc.
>
> More information can be found at:
> https://gitlab.alpinelinux.org/alpine/aports/-/issues/13661
Hi Denys,
Could you please have a look at these fixes. They should fix some
"security" problems which got a CVE assigned.
Hauke
_______________________________________________
busybox mailing list
busybox@busybox.net
http://lists.busybox.net/mailman/listinfo/busybox
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic