Date: Tue, 11 Feb 2003 10:27:12 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Peter Pentchev <roam@FreeBSD.org> Cc: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: ports/games/nethack34 Makefile Message-ID: <20030211182712.GB29134@rot13.obsecurity.org> In-Reply-To: <200302111202.h1BC2OB3052663@repoman.freebsd.org> References: <200302111202.h1BC2OB3052663@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--eAbsdosE1cNLO4uF Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Feb 11, 2003 at 04:02:24AM -0800, Peter Pentchev wrote: > roam 2003/02/11 04:02:24 PST >=20 > Modified files: > games/nethack34 Makefile=20 > Log: > Mark FORBIDDEN due to a locally-exploitable buffer overflow, as reported > on BugTraq: > http://online.securityfocus.com/archive/1/311172/2003-02-08/2003-02-14/0 > =20 > I wish people would contact the vendor more often, so patches/updates > are available at the time of the advisory, but oh well... Since this is setgid games (a throwaway gid) this isn't particularly dangerous. Kris --eAbsdosE1cNLO4uF Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+SUCAWry0BWjoQKURAlFqAJ48XE6nopGkyZouhcukIY8Xbu2JeQCglVgR ToRU1+Vre8j5qu0UCO0blIw= =vkw9 -----END PGP SIGNATURE----- --eAbsdosE1cNLO4uF-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030211182712.GB29134>