[LEDE-DEV] CVE-2016-10229 Remote code execution vulnerability in kernel networking subsystem
yanosz
freifunk at yanosz.net
Sun Apr 16 04:41:12 PDT 2017
Hello,
CVE-2016-10229 was patched in android recently. While some distributions
(ie Debian: https://security-tracker.debian.org/tracker/CVE-2016-10229)
are not vulnerable due to having backported parts of the kernel code
before, I wonder about the status in Lede (and OpenWRT).
There are some rumors, that MSG_PEEK might be used in dnsmasq, but I
don't know any details here.
What's the current status in lede?
Thanks,
yanosz
--
For those of you without hope, we have rooms with color TV,
cable and air conditioning
More information about the Lede-dev
mailing list