www-servers/monkeyd-0.9.0-r1: vulnerable via glsa(200504-14) ( ver < 0.9.1 ), affects ('amd64', 'ppc', 'sparc', 'x86') www-servers/pound-1.10: vulnerable via glsa(200606-05) ( ver < 2.0.5 ), affects ('alpha', 'amd64', 'hppa', 'mips', 'ppc', 'sparc', 'x86') Please, clean up the above. Thanks.
www-servers/pound is clean - the GLSA is wrong... the vulnerable version is < 1.9.4 (+ some of the 2.0.x releases) as seen in the original bug #118541 thanks anyway
@security: Please, fix GLSA 200606-05...
Fixed for the 1.9.4 series. Due to glsa-check stuff 1.9.5 will have to be added to the GLSA should it ever be released.
1.9.5 is probably not going to happen - 1.10 was a maintenance release (addressing the issue at hand), while development happens on 2.x... thanks
Then I guess this one could be closed as FIXED.
(In reply to comment #5) > Then I guess this one could be closed as FIXED. Still need to punt the vulnerable monkeyd ebuild.
fixed in cvs - thanks