[FS#1038] Upgrade dnsmasq to 2.78 (security fixes for remote code execution)
LEDE Bugs
lede-bugs at lists.infradead.org
Tue Oct 3 10:36:32 PDT 2017
The following task has a new comment added:
FS#1038 - Upgrade dnsmasq to 2.78 (security fixes for remote code execution)
User who did this - Jim Gettys (jgettys)
----------
Here is RedHat's analysis.
https://access.redhat.com/security/vulnerabilities/3199382
This is much more than the usual problem: it has multiple critical problems.
Quote from RH:
"Three of these vulnerabilities (CVE-2017-14491, CVE-2017-14492, and CVE-2017-14493) have been rated as Critical, while the remaining four (CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, and CVE-2017-13704) have been rated as Important. "
----------
More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=1038#comment3537
More information about the lede-bugs
mailing list