Joined: 12 May 2004
|Posted: Thu Mar 14, 2019 4:26 am Post subject: [ GLSA 201903-11 ] XRootD
|Gentoo Linux Security Advisory
Title: XRootD: Remote code execution (GLSA 201903-11)
A vulnerability was discovered in XRootD which could lead to the
remote execution of code.
A project that aims at giving high performance, scalable, and fault
tolerant access to data repositories of many kinds.
Vulnerable: < 4.8.3
Unaffected: >= 4.8.3
Architectures: All supported architectures
A shell command injection was discovered in XRootD.
A remote attacker could execute arbitrary code.
There is no known workaround at this time.
All XRootD users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=net-libs/xrootd-4.8.3"