[LEDE-DEV] Severe dnsmasq vulnerabilities affecting LEDE
Daniel Engberg
daniel.engberg.lists at pyret.net
Tue Oct 3 12:55:35 PDT 2017
In addition to Jo-Philipp Wich's announcement the buildbots in LEDE's
infrastructure are backlogged meaning that the following targets
(including notable mentions) does not have an updated package for
dnsmasq
as time of writing:
arc_arc700
arm_arm926ej-s
arm_cortex-a5
arm_cortex-a53_neon-vfpv4
arm_cortex-a8_vfpv3
arm_cortex-a9
arm_cortex-a9_neon - QCA ARM 11ac capable devices
arm_cortex-a9_vfpv3 - Marvell ARM 11ac capable devices
arm_fa526
arm_mpcore
i386_geode - PC Engines ALIX devices
i386_i486
mips_24kc - Includes the majority of supported MIPS
devices
mips64_octeon - EdgeRouter Lite (not X)
powerpc_464fp
ETA for the following platforms is 12h.
To verify that a new version of dnsmasq is available on your platform
run "opkg update; opkg list dnsmasq" which will show version 2.78-1 once
the package has been updated.
Best regards,
Daniel Engberg
More information about the Lede-dev
mailing list