commit | d5abf5ff6188593dfc701decf8d33d38a924b45b | [log] [tgz] |
---|---|---|
author | Peter Korsgaard <peter@korsgaard.com> | Sun Nov 22 16:30:38 2020 +0100 |
committer | Peter Korsgaard <peter@korsgaard.com> | Mon Nov 23 22:36:52 2020 +0100 |
tree | ec645b33d71c673d3c5b13c076104fabf2e6eb6f | |
parent | d5e3e1144e2b1795ab9ca4deb9e25f6f98456232 [diff] |
package/xinetd: add upstream security fix for CVE-2013-4342 xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>