First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 56016
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Tuan Van (RETIRED) <langthang@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 56016 depends on: Show dependency tree
Bug 56016 blocks:
Votes: 0    Show votes for this bug    Vote for this bug

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2004-07-03 20:52 0000 
net-mail would like to remove dev-libs/cyrus-sasl-2.1.17 from portage. Please
stable .18 on your arch a soon as you can. Thanks.

------- Comment #1 From Cory Visi (RETIRED) 2004-07-06 21:15:00 0000 ------- 
Sorry to do this over guys, but there was a security fix and I brought in the
old pam_mysql-friendly authentication method so everyone can upgrade. This is
pretty important. Please mark it stable if you can.

This is now: dev-libs/cyrus-sasl-2.1.18-r1

Tuan, can you test this, too?

------- Comment #2 From Tuan Van (RETIRED) 2004-07-06 21:37:20 0000 ------- 
Cory, if this is security related, IMO we need to re-assign this bug to
security@g.o with all the info.

------- Comment #3 From Kurt Lieber 2004-07-07 02:15:54 0000 ------- 
re-assigning to security.  Cory -- many thanks for getting this patched so
quickly.

------- Comment #4 From Kurt Lieber 2004-07-07 02:25:39 0000 ------- 
assigning A0 rating, pending further disclosure of information about the
vulnerability

------- Comment #5 From Kurt Lieber 2004-07-07 02:27:54 0000 ------- 
need x86 and ppc marked stable before we can issue a GLSA.  Current keywords on
2.1.18 are:

cyrus-sasl-2.1.18.ebuild:KEYWORDS="~x86 ~ppc sparc ~mips ~alpha arm hppa amd64
~ia64 s390 ppc64"

------- Comment #6 From Aron Griffis (RETIRED) 2004-07-07 09:23:48 0000 ------- 
marked stable on alpha and ia64

------- Comment #7 From Tuan Van (RETIRED) 2004-07-07 10:15:56 0000 ------- 
tested on x86. maked stable.

------- Comment #8 From Tuan Van (RETIRED) 2004-07-07 10:19:56 0000 ------- 
CC arches have stable keywords in previous versions.

------- Comment #9 From Tuan Van (RETIRED) 2004-07-07 11:22:15 0000 ------- 
stabled on amd64, remove CC

------- Comment #10 From Thierry Carrez (RETIRED) 2004-07-07 13:57:27 0000 ------- 
Still missing arm hppa mips ppc ppc64 s390 and sparc stable on 2.1.18-r1.

------- Comment #11 From Christian Birchinger 2004-07-07 15:33:09 0000 ------- 
stable on sparc

------- Comment #12 From Wolfram Schlich 2004-07-07 15:48:54 0000 ------- 
please see #56389 - there are problems with cyrus-sasl-2.1.18-r1

------- Comment #13 From Wolfram Schlich 2004-07-07 16:09:25 0000 ------- 
does anybody know why there was this change in /etc/sasl2/smtpd.conf
--8<--
-pwcheck_method: saslauthd
-mech_list: plain login
+pwcheck_method:pam
--8<--
? This way Postfix doesn't use the saslauthd anymore, which I think is bad.

------- Comment #14 From Tuan Van (RETIRED) 2004-07-07 16:28:16 0000 ------- 
@comment #13: that file is owned by postfix. Please file a seperate bug.
Thanks.

------- Comment #15 From Cory Visi (RETIRED) 2004-07-07 19:15:07 0000 ------- 
Ok, I got rid of that bug. We're up to -r2. Shouldn't create any other
stability problems though.

------- Comment #16 From Wolfram Schlich 2004-07-08 00:53:26 0000 ------- 
the problem with -r1 that should have been fixed in -r2 still persists.
see bug #56389.

------- Comment #17 From Thierry Carrez (RETIRED) 2004-07-20 05:33:09 0000 ------- 
ppc: GLSA is blocked waiting for your keyword. Please mark
dev-libs/cyrus-sasl-2.1.18-r2 stable.

------- Comment #18 From Daniel Ostrow 2004-07-20 18:56:30 0000 ------- 
Stable on PPC. Very sorry for the delay.

------- Comment #19 From Thierry Carrez (RETIRED) 2004-07-21 01:11:24 0000 ------- 
Ready for a GLSA
arm, hppa, mips, ppc64, s390 : rememebr to mark stable to benefit from the GLSA

------- Comment #20 From SpanKY 2004-08-02 04:43:08 0000 ------- 
added arm/hppa to stable

------- Comment #21 From Pieter Van den Abeele 2004-08-12 12:20:09 0000 ------- 
removed ppc from glsa

------- Comment #22 From Tom Gall 2004-08-14 12:27:04 0000 ------- 
removing ppc64 from bug, package marked stable

------- Comment #23 From Joshua Kinard 2004-09-20 12:34:48 0000 ------- 
mips stable.

------- Comment #24 From SpanKY 2004-09-21 16:38:52 0000 ------- 
s390 stable z0r

------- Comment #25 From Thierry Carrez (RETIRED) 2004-10-07 08:51:09 0000 ------- 
GLSA 200410-05, at least
First Last Prev Next    No search results available      Search page      Enter new bug