Hi For Sid, we plan to release soon version 1.6.8 including bugfix for this bug.
For Buster, i backported bugfix for this bug and two other important security-related bugfixes for 1.6.6, available in oz-deb Git branch: https://gitlab.labs.nic.cz/labs/bird/commits/oz-deb The fixes are: ba870cab310c151ae8827907c604900ff5cd4d11 - Fix this bug (CVE-2019-16159) 37f39789f483afd10bcfadca8b414e951ffb6d22 - Fix bug in privilege revocation causing BIRD in some cases run with more privileges than necessary 2545b91b8b96151b415c4d22b3c4ab3835752540 - Fix bug allowing easily triggerable crash from CLI -- Ondrej 'Santiago' Zajicek (email: santi...@crfreenet.org)
signature.asc
Description: PGP signature
