subject:"Bug#826728\: percona\-toolkit\: \(CVE\-2014\-2029\) scripts call back home and leak information"

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-22 Thread Guillem Jover

Hi! On Fri, 2016-11-18 at 17:21:58 +0100, Dario Minnucci wrote: > On 11/04/16 14:38, Guillem Jover wrote: > > ... > > This is the relevant strace part for percona-toolkit 2.2.18-1: > > > > ,--- > > connect(3, {sa_family=AF_INET, sin_port=htons(443), > > sin_addr=inet_addr("74.121.199.234")},

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-18 Thread Dario Minnucci

Hi guys, On 11/04/16 14:38, Guillem Jover wrote: > ... > This is the relevant strace part for percona-toolkit 2.2.18-1: > > ,--- > connect(3, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("74.121.199.234")}, 16) = 0 > `--- > > Where 74.121.199.234 is www.percona.com. > I've

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-15 Thread Michael Prokop

* Dario Minnucci [Fri Nov 04, 2016 at 04:50:13PM +0100]: > Sorry for the delay on this one. > I was discussing this issue with upstream and I think we have a solution to > disable 'version-check' > for all tools in a single configuration file. > I'm contacting upstream again and I let you know

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-04 Thread Dario Minnucci

Hi guys, Sorry for the delay on this one. I was discussing this issue with upstream and I think we have a solution to disable 'version-check' for all tools in a single configuration file. I'm contacting upstream again and I let you know the procedure to follow in order to fix this bug. > >

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-04 Thread Guillem Jover

Hi! On Thu, 2016-11-03 at 13:51:40 -0400, Sandro Tosi wrote: > On Wed, 8 Jun 2016 14:21:14 +0200 Guillem Jover wrote: > > This package contains many scripts which call back home to check for > > a new upstream versions. In addition they also report back things such > > as

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-11-03 Thread Sandro Tosi

On Wed, 8 Jun 2016 14:21:14 +0200 Guillem Jover wrote: > This package contains many scripts which call back home to check for > a new upstream versions. In addition they also report back things such > as hostname and port and similar. It seems this was previously disabled > or

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

2016-06-08 Thread Guillem Jover

Package: percona-toolkit Version: 2.2.11-1~dfsg1 Severity: grave Tags: security Hi! This package contains many scripts which call back home to check for a new upstream versions. In addition they also report back things such as hostname and port and similar. It seems this was previously disabled

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

Bug#826728: percona-toolkit: (CVE-2014-2029) scripts call back home and leak information

7 matches

Site Navigation

Mail list logo

Footer information