Comment 1 SpanKY 2007-01-22 18:03:19 UTC

ed-0.4 now in portage

Comment 2 Matthias Geerdsen (RETIRED) 2007-01-22 20:04:24 UTC

thanks vapier....

arches please test sys-apps/ed-0.4 and mark stable if possible

Comment 3 Ulrich Müller 2007-01-22 20:25:48 UTC

Please note that the open_sbuf() security issue mentioned in the CVE was fixed in the Gentoo version of ed more than 2 years ago, see bug #66400, bug #73858, and GLSA 200410-07.

sys-apps/ed-0.2-r6 is definitely _not_ affected by the issue.

Comment 4 Matthias Geerdsen (RETIRED) 2007-01-22 20:34:16 UTC

good catch, that indeed appears to be the case

vapier, could you confirm?

Comment 5 SpanKY 2007-01-23 00:56:47 UTC

that does seem to be the case

Comment 6 Gustavo Zacarias (RETIRED) 2007-01-23 13:17:18 UTC

sparc stable.

Comment 7 Raphael Marichez (Falco) (RETIRED) 2007-01-23 13:53:22 UTC

*** This bug has been marked as a duplicate of bug 66400 ***

Comment 8 Raphael Marichez (Falco) (RETIRED) 2007-01-23 13:56:33 UTC

arches, no need to mark this as stable now, Ulrich is right (comment #3). Thanks to him. Those who have already marked stable, you are free to decide what you prefer to do.

Comment 9 Gustavo Zacarias (RETIRED) 2007-01-23 13:58:56 UTC

We'll just leave it stable and roll back if there's any problem with the newer version.

Comment 10 René Nussbaumer (RETIRED) 2007-01-23 20:50:27 UTC

stable on hppa