[Buildroot] [PATCH] package/xinetd: add upstream security fix for CVE-2013-4342

Peter Korsgaard peter at korsgaard.com
Fri Dec 11 10:22:53 UTC 2020


>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > xinetd does not enforce the user and group configuration directives for
 > TCPMUX services, which causes these services to be run as root and makes it
 > easier for remote attackers to gain privileges by leveraging another
 > vulnerability in a service.

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed to 2020.02.x and 2020.08.x, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list