[Bloat] New OpenWrt release fixing several dnsmasq CVEs
Toke Høiland-Jørgensen
toke at toke.dk
Fri Jan 22 16:40:04 EST 2021
Daniel Sterling <sterling.daniel at gmail.com> writes:
> On Fri, Jan 22, 2021 at 4:25 PM Jonathan Foulkes <jf at jonathanfoulkes.com> wrote:
>> I did not install .6, I only performed an opkg update of the dnamasq package itself. So kernal is the same in my case.
>
> given you just updated the package -- that's extremely weird.
> userspace update shouldn't be able to lock up the kernel in any
> case..... very bizarre.
Well, it's a daemon with pretty wide permissions to mess with the
system, so it's not impossible (evidently). Still, will be interesting
to see what turns out to be the root cause of this...
-Toke
More information about the Bloat
mailing list