From: Marc Fournier Date: Wed, 23 Aug 2017 15:10:01 +0000 (+0200) Subject: changelog: close #859494/CVE-2017-7401 X-Git-Tag: collectd-5.7.2-1~3 X-Git-Url: https://git.tokkee.org/?a=commitdiff_plain;h=4daaf239cdbdef8214ac21208cc09049aeef4b48;p=pkg-collectd.git changelog: close #859494/CVE-2017-7401 --- diff --git a/debian/changelog b/debian/changelog index 4a306cc..3ed78e3 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,6 +1,9 @@ collectd (5.7.2-1) UNRELEASED; urgency=medium * New upstream release. + - Fix potential endless-loop in the network plugin, which can be triggered + remotely by sending a crafted UDP packet (Closes: #859494, + CVE-2017-7401). * debian/patches: - drop dpdkstat_goto_label.patch; included upstream. - drop drop_lssl_lcrypto_from_linking.patch; included upstream.