A vulnerability was found in tftp-hpa, which leads to remote execution of arbitrary code.
|Package||net-ftp/tftp-hpa on all architectures|
|Affected versions||< 5.1|
|Unaffected versions||>= 5.1|
tftp-hpa is the port of the OpenBSD TFTP server.
A vulnerability has been discovered in tftp-hpa. Please review the CVE identifier referenced below for details.
The vulnerability might allow remote attackers to execute arbitrary code.
There is no known workaround at this time.
All tftp-hpa users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-ftp/tftp-hpa-5.1"
June 21, 2012
June 21, 2012: draft