[oe] madwifi_ng: security issue, CVE-2006-6332
lenehan at twibble.org
Sun Dec 17 01:00:55 CET 2006
Anyone using madwifi should upgrade to r1844-20061208 to get the fix for
CVE-2006-6332. From the announcement on madwifi.org:
Release 0.9.2.1 fixes critical security issue
A critical security flaw (CVE-2006-6332) has been discovered which can be
exploited from remote and allows arbitrary code injection. The fix has been
committed to trunk in r1842. In addition, we released v0.9.2.1 (v0.9.2 plus
the fix for the issue), which is available for download from sf.net.
All users should upgrade as soon as possible.
----- Forwarded message from "\"lenehan commit\"" <openembedded-commits at lists.openembedded.org> -----
From: openembedded-commits at lists.openembedded.org ("lenehan commit")
Subject: [oe-commits] org.oe.dev madwifi-ng r1844: Add svn snapshot 1844
which is the same as the 0.9.2.1
Date: Sun, 17 Dec 2006 00:58:12 +0100
madwifi-ng r1844: Add svn snapshot 1844 which is the same as the 0.9.2.1
release. This includes a critical fix for CVE-2006-6332 which is a remotely
exploitable stack-based buffer overflow bug.
Author: lenehan at openembedded.org
----- End forwarded message -----
Jamie Lenehan <lenehan at twibble.org>
More information about the Openembedded-devel