[quagga-dev 10889] Re: Backport of Quagga CVE-2013-2236 for 0.99.20.1 and 0.99.21-4

Christian Hammers ch at debian.org
Thu Oct 31 09:20:30 GMT 2013


Hello
 
I'd like to backport this security patch to the Quagga packages in
the Debian stable distribution (quagga-0.99.21-4) and maybe also to
the one before with quagga-0.99.20.1.
 
Would it be enough to apply the following patch that was linked at
the nist.gov CVE page?
 
http://git.savannah.gnu.org/gitweb/?p=quagga.git;a=commitdiff;h=3f872fe60463a931c5c766dbf8c36870c0023e88
 
Best regards

-christian-




More information about the Quagga-dev mailing list