unrealircd 3.2.8.1-2 contains backdoor

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Hi folks,

the unrealircd version in community (3.2.8.1-2) has been flagged as
containing a backdoor which allows an attacker to execute commands with
the privileges of the user running the daemon.

The md5sum in the PKGBUILD (abs) matches the known-bad md5sum from this
announcement:
http://sourceforge.net/mailarchive/message.php?msg_name=4C134F7E.202%40vulnscan.org

I've already filed a bug as FS#19780 to the community project, but
given the severity I thought it would be wise to alert a wider audience.

Greetings,
	Jinks
[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [Share Photos]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]
  Powered by Linux