A buffer overflow was found in Tinc [1] which was fixed in version 1.0.21. These patches upgrade the tinc package to the fixed version for attitude and trunk.
Signed-off-by: Manuel Munz <freifunk at somakoma dot de> [1] http://sitsec.net/blog/2013/04/22/stack-based-buffer-overflow-in-the-vpn-software-tinc-for-authenticated-peers/ Trunk: Index: feeds/packages/net/tinc/Makefile =================================================================== --- feeds/packages/net/tinc/Makefile (Revision 36396) +++ feeds/packages/net/tinc/Makefile (Arbeitskopie) @@ -8,12 +8,12 @@ include $(TOPDIR)/rules.mk PKG_NAME:=tinc -PKG_VERSION:=1.0.20 +PKG_VERSION:=1.0.21 PKG_RELEASE:=1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz PKG_SOURCE_URL:=http://www.tinc-vpn.org/packages -PKG_MD5SUM:=001277e0ccd7ca29f7fa4039774ad611 +PKG_MD5SUM:=d7bc9ca38672c9da08d74ff2a3e8e36d PKG_INSTALL:=1 Attitude: Index: feeds/packages/net/tinc/Makefile =================================================================== --- feeds/packages/net/tinc/Makefile (Revision 36396) +++ feeds/packages/net/tinc/Makefile (Arbeitskopie) @@ -8,12 +8,12 @@ include $(TOPDIR)/rules.mk PKG_NAME:=tinc -PKG_VERSION:=1.0.19 +PKG_VERSION:=1.0.21 PKG_RELEASE:=1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz PKG_SOURCE_URL:=http://www.tinc-vpn.org/packages -PKG_MD5SUM:=5d97ee0f1ccf8fea5b492f6b54d5ac32 +PKG_MD5SUM:=d7bc9ca38672c9da08d74ff2a3e8e36d PKG_INSTALL:=1
signature.asc
Description: OpenPGP digital signature
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
