libcgroup-0.37.1 is out. It is a bugfix release, with just one new experimental feature: python bindings.
Two security bugs were fixed in this release: * CVE-2011-1006: Heap-based buffer overflow by converting list of controllers for given task into an array of strings * CVE-2011-1022: Unchecked origin of NETLINK messages (thanks Nelson Elhage for reporting both these issues) The source code can be downloaded from http://downloads.sourceforge.net/project/libcg/libcgroup/v0.37.1/libcgroup-0.37.1.tar.bz2 Detailed list of all changes (sorted alphabetically by author): Balbir Singh (2): Fix commit 17a40d6 Add bindings for python Ciju Rajan K (1): fixed cgroup_get_cgroup() Ivana Hutarova Varekova (3): add cgsnapshot man page add cgsnapshot blacklist configuration file add cgsnapshot whitelist configuration file James M Leddy (1): Allow commas for cpu sets in cgconfig.conf Jan Safranek (4): BUGFIX: add missing braces Check length of netlink addresses. Fix buffer overflow when processing list of controllers from command line (CVE-2011-1006). Release v0.37.1 Jiri Slaby (11): API: fix mount/namespace error message cgsnapshot: fix strn* lengths config: fix segfault in cgconfigparser update .gitignore's scripts: cgconfig, cleanup docco fixes scripts/init.d: cgconfig, cleanup scripts/init.d: little cleanup cgred.in configure.in: fix autoconf error scripts: set executable the init scripts lex: get rid of two warnings Ken'ichi Ohmichi (1): Make --sticky option effective when setuid(2) and setgid(2) Michal Hrusecky (1): Substitutions in the destinations of the rules Nelson Elhage (2): cgrulesengd: Improve handling of out-of-memory. cgrulesengd: Ignore netlink messages that don't come from the kernel. tachib...@mxm.nes.nec.co.jp (1): cgred.in: fix return value start()/stop() function's ------------------------------------------------------------------------------ Free Software Download: Index, Search & Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev _______________________________________________ Libcg-devel mailing list Libcg-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/libcg-devel
