[ubuntu/precise-security] quagga 0.99.20.1-0ubuntu0.12.04.5 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Oct 13 12:33:18 UTC 2016
quagga (0.99.20.1-0ubuntu0.12.04.5) precise-security; urgency=medium
* SECURITY UPDATE: insecure directory permissions
- debian/quagga.postinst: set proper directory permissions on
/etc/quagga, /var/log/quagga, /var/run/quagga.
- CVE-2016-4036
* SECURITY UPDATE: denial of service via a large BGP packet
- debian/patches/dump_fix.patch: create multiple MRT records if there
is too much data for a prefix in bgpd/bgp_dump.c.
- debian/patches/stream_set_endp.patch: backport stream_set_endp.
- CVE-2016-4049
Date: 2016-10-12 20:27:14.017645+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/quagga/0.99.20.1-0ubuntu0.12.04.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list