nixpkgs/pkgs/servers/corosync
Red Davies 2ddb0c7400 corosync: 2.4.3 -> 2.4.5
Reason0: Changed name metadata to pname and version metadata.
Reason1: Fixes CVE-2018-1084

Corosync is prone to an integer-overflow vulnerability.

Attackers can exploit this issue to execute arbitrary code
in the context of the affected application. Failed exploit
attempts will likely cause a denial-of-service condition.

Fixed in 2.4.4

See issue: 
2020-11-25 17:01:30 -05:00
..
default.nix corosync: 2.4.3 -> 2.4.5 2020-11-25 17:01:30 -05:00