Ok so looking at the whois code, there seems to be quite a few ways to overflow it. I've written a little patch which should address this. I'm also removing all the older exploitable versions of whois from the portage tree, and adding my patch. Closes bug 24860

author: Ned Ludd <solar@gentoo.org> 2003-08-11 06:38:59 +0000
committer: Ned Ludd <solar@gentoo.org> 2003-08-11 06:38:59 +0000
commit: 9eef6c1fa95264da5deb227ac333e597e84cc984 (patch)
tree: 0aa149ed0bd102e161178b8d889acfb0c3b5f534 /net-misc/whois/Manifest
parent: Ok so looking at the whois code, there seems to be quite a few ways to overfl... (diff)
download: gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.tar.gz
gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.tar.bz2
gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/net-misc/whois/Manifest b/net-misc/whois/Manifest
index 4c02bf0c2ac6..7a0bd37287fe 100644
--- a/net-misc/whois/Manifest
+++ b/net-misc/whois/Manifest
@@ -1,4 +1,4 @@
-MD5 2c055f614183433072ab30cc38995f8f ChangeLog 3894
-MD5 d4a23ed83f0dbe83ac1089f92efec43e whois-4.6.6-r1.ebuild 1168
+MD5 1c43f5eddd256b74ccc50a771a0229c4 ChangeLog 3894
+MD5 b35811231b642eb74054a27ab425e80a whois-4.6.6-r1.ebuild 1171
 MD5 9d6a7c447cdafb5e2b97f86d5c6e9789 files/digest-whois-4.6.6-r1 62
 MD5 745ef0b207e44192ca5df00b65584328 files/whois-4.6.6-gentoo-security.patch 2871
author	Ned Ludd <solar@gentoo.org>	2003-08-11 06:38:59 +0000
committer	Ned Ludd <solar@gentoo.org>	2003-08-11 06:38:59 +0000
commit	9eef6c1fa95264da5deb227ac333e597e84cc984 (patch)
tree	0aa149ed0bd102e161178b8d889acfb0c3b5f534 /net-misc/whois/Manifest
parent	Ok so looking at the whois code, there seems to be quite a few ways to overfl... (diff)
download	gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.tar.gz gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.tar.bz2 gentoo-2-9eef6c1fa95264da5deb227ac333e597e84cc984.zip