[collectd-changes] collectd, the system statistics collection daemon: Changes to 'master'
Florian Forster
octo at verplant.org
Sat Jul 23 07:50:34 CEST 2016
src/network.c | 3 +++
1 file changed, 3 insertions(+)
New commits:
commit 290741f2e6de9e9b467463c1f0c6f031c4036428
Merge: e0a35d5 e0e3076
Author: Florian Forster <octo at collectd.org>
Date: Thu Jul 21 07:49:50 2016 +0200
Merge branch 'collectd-5.5'
commit e0e307657d6b751d6beb5afb92c9359a6df7f5e8
Merge: e2b289e b589096
Author: Florian Forster <octo at collectd.org>
Date: Thu Jul 21 07:49:25 2016 +0200
Merge branch 'collectd-5.4' into collectd-5.5
commit b589096f907052b3a4da2b9ccc9b0e2e888dfc18
Author: Florian Forster <octo at collectd.org>
Date: Tue Jul 19 10:00:37 2016 +0200
network plugin: Fix heap overflow in parse_packet().
Emilien Gaspar has identified a heap overflow in parse_packet(), the
function used by the network plugin to parse incoming network packets.
This is a vulnerability in collectd, though the scope is not clear at
this point. At the very least specially crafted network packets can be
used to crash the daemon. We can't rule out a potential remote code
execution though.
Fixes: CVE-2016-6254
More information about the collectd-changes
mailing list