Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability roundup 93: avahi-0.7: 1 advisory [9.1] #99734

Closed
1 task
ckauhaus opened this issue Oct 6, 2020 · 3 comments
Closed
1 task

Vulnerability roundup 93: avahi-0.7: 1 advisory [9.1] #99734

ckauhaus opened this issue Oct 6, 2020 · 3 comments
Assignees
@redvers
Labels
1.severity: security

Comments

@ckauhaus
Copy link
Contributor

ckauhaus commented Oct 6, 2020

search, files

Scanned versions: nixos-20.03: 0d0660f.

Cc @globin
Cc @lovek323
@redvers
Copy link
Member

redvers commented Nov 5, 2020 

patches = [
    ./no-mkdir-localstatedir.patch
    (fetchpatch {
      name ="CVE-2017-6519-CVE-2018-100084.patch";
      url = "https://github.com/lathiat/avahi/commit/e111def44a7df4624a4aa3f85fe98054bffb6b4f.patch";
      sha256 = "06n7b7kz6xcc35c7xjfc1kj3k2llyjgi09nhy0ci32l1bhacjw0q";
    })
  ];

Patches are in place already,

@redvers redvers closed this as completed Nov 5, 2020
@redvers redvers self-assigned this Nov 5, 2020
@ckauhaus
Copy link
Contributor Author

ckauhaus commented Nov 6, 2020

This issue got created while vulnix' patch detection was broken. This has been fixed in the meantime. Sorry for the noise.

@redvers
Copy link
Member

redvers commented Nov 6, 2020

No problemo <3

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@redvers redvers

Labels
1.severity: security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@redvers @ckauhaus