Unmaintained & Unpatched security flaws
Bug #1271365 reported by
Immatix
This bug report is a duplicate of:
Bug #1174763: Tinc VPN security issue (CVE-2013-1428).
Edit
Remove
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tinc (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Lucid |
New
|
Undecided
|
Unassigned | ||
Precise |
New
|
Undecided
|
Unassigned |
Bug Description
The versions of this package are ridiculously outdated for older versions of Ubuntu, and versions older than 1.0.21 are probably vulnverable to CVE-2013-1428 (http://
I can't see a reason why this package should not be kept up to date, at the very least on the LTS releases. I've managed to successfully compile 1.0.22 on Precise.
To post a comment you must log in.
fix released in trusty and up. affects lucid/precise only.