271694 – =app-admin/denyhosts-2.6 removal for GLSA 200710-14

Bug 271694 - =app-admin/denyhosts-2.6 removal for GLSA 200710-14

Summary: =app-admin/denyhosts-2.6 removal for GLSA 200710-14

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High enhancement (vote)
Assignee:	Thomas Anderson (tanderson) (RETIRED)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:	glsa-removal
	Show dependency tree

Reported:	2009-05-29 13:36 UTC by Robert Buchholz (RETIRED)
Modified:	2009-07-28 14:33 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Buchholz (RETIRED) gentoo-dev

2009-05-29 13:36:16 UTC

Please remove the following ebuilds as they are vulnerable to GLSA 200710-14
( http://www.gentoo.org/security/en/glsa/glsa-200710-14.xml ) :

=app-admin/denyhosts-2.6


Note that other (unstable) atoms might be missing from this list that are
vulnerable to the same GLSA. Please remove those as well.

Comment 1 Michael Palimaka (kensington) gentoo-dev

2009-06-15 14:50:29 UTC

(In reply to comment #0)
> Note that other (unstable) atoms might be missing from this list that are
> vulnerable to the same GLSA. Please remove those as well.

There currently are only two atoms of denyhosts in the tree, 2.6 and 2.6-r1. The only difference between the two is that the latter has an additional keyword and the security patch. Also having been stable for over a year, I personally see no good reason why the vulnerable ebuild is still around.

Comment 2 Jeremy Olexa (darkside) (RETIRED) archtester

2009-07-28 14:33:45 UTC

2 months with no maintainer comment, removed.