A vulnerability has been discovered in the 3.0.x branch of ratbox which affects the '/links' module. The vulnerability enables a user to trigger an event that can cause the IRCD to crash. This issue has been corrected in the ircd-ratbox-3.0.6 release. All IRCD admins running previous versions are advised to upgrade immediately. As a temporary work-around, the m_links.so module can be unloaded until the upgrade takes place.
Responsible Changed From-To: freebsd-ports-bugs->nemoliu I'll take it.
miwi 2010-01-28 21:27:34 UTC FreeBSD ports repository Modified files: irc/ircd-ratbox-devel Makefile distinfo Removed files: irc/ircd-ratbox-devel/files patch-libratbox_src_commio.c Log: - Update to 3.0.6 PR: 143241 Submitted by: moggie <moggie@elasticmind.net> (maintainer) With hat: secteam Security: http://www.vuxml.org/freebsd/192609c8-0c51-11df-82a0-00248c9b4be7.html Revision Changes Path 1.25 +1 -2 ports/irc/ircd-ratbox-devel/Makefile 1.19 +3 -3 ports/irc/ircd-ratbox-devel/distinfo 1.2 +0 -11 ports/irc/ircd-ratbox-devel/files/patch-libratbox_src_commio.c (dead) _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed documented and updated with my secteam hat on.