oss-sec mailing list archives

Re: Fwd: FreeIPMI 1.6.18 Released with security fixes


From: Salvatore Bonaccorso <carnil () debian org>
Date: Wed, 3 Jun 2026 09:30:16 +0200

Hi,

On Tue, Jun 02, 2026 at 05:52:56PM -0700, Alan Coopersmith wrote:
The below notes the new release fixes "exploitable buffer overflows in [...]
ipmi-oem commands".

I don't see a CVE issued for it yet, as CVE-2026-33554 covered a different
set of subcommands fixed in the previous 1.6.17 release.

As a followup: CVE-2026-50031 was assigned for the issue fixed in
1.6.18.

Regards,
Salvatore


Current thread: