CVE-2015-0235
You’ve probably heard of CVE-2015-0235 already: buffer overflow in glibc gethostbyname() function allows for arbitrary code execution.
Author: Daniil Baturin
Maintenance notification: servers software update
We are updating our servers to mitigate the gethostbyname() glibc vulnerability.
1.1.2 maintenance release
1.1.2 maintenance release is available for download (mirrors are syncing up). You can find the release notes here.
New mirrors in Australia and Canada
Our community members setup two new mirrors, one in Australia maintained by Shane Short and another one in Canada maintained by Jeremy Sayres.
Happy holidays!
I wrote a network-themed version of a classic christmas song for the holiday greeting.
NTP vulnerability update
Squeeze-LTS team imported patches for those vulnerabilities, so it’s probably the best to take the path of least resistance and just use those.
CVE-2014-9295: arbitrary code execution in NTPd
A recently discovered vulnerability in NTPd allows remote code execution.
New mirrors in Poland and the US
Our community members setup two new mirrors. One is in Poland (http://mirror.chmuri.net) maintained by Karol Chmurzyński. Another one is in the USA (http://mirr...
1.1.1 maintenance release
1.1.1 release images are available for download (mirrors are syncing up now).
1.1.1 release candidate
I have prepared a 1.1.1 release candidate image. Please test it and tell us if it works for you so we know if we can call it a release.
