Summary: | net-www/opera security fix in 7.51 | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Boris <1723542c42148b2fe4af9f7ad1e382b30d4b7fd7> | ||||||||
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||||||
Status: | RESOLVED FIXED | ||||||||||
Severity: | critical | CC: | amd64, lanius, mem7, ppc | ||||||||
Priority: | High | ||||||||||
Version: | unspecified | ||||||||||
Hardware: | All | ||||||||||
OS: | Linux | ||||||||||
URL: | http://www.opera.com/windows/changelogs/751/ | ||||||||||
Whiteboard: | B3 [glsa] | ||||||||||
Package list: | Runtime testing required: | --- | |||||||||
Attachments: |
|
Description
Boris
2004-06-03 04:06:25 UTC
Created attachment 32579 [details, diff]
opera-7.51.ebuild.patch
Created attachment 32580 [details, diff]
opera-7.51.ebuild.spell.patch
added and marked stable on x86 sparc, please mark stable. Created attachment 32584 [details, diff]
opera-7.51.ebuild.patch (makes einfo depend on spell-flag)
I forgot to remove the einfo-message for users that do not install
spell-support.
I changed that in this patch.
Stable on sparc. Not sure this is GLSA worth... security, please vote I vote no on a GLSA. There's no threat to the user's system; the phishing threat is probably not even that great given our audience (of hopefully-sensible users). Regardless, there's no *direct* threat here to systems running the vulnerable version and I haven't seen anyone else release advisories. Opera is probably not used by more than 5% of our users (anyone care to correct me? I know I hate the banner ads) and so the chance of ``exploitation'' is minimal. I second Krispykringle no need for a GLSA. There is no direct threat and the issue is really minor. Remove the old vulnerable ebuilds and be done with it. Closed without GLSA *** Bug 53240 has been marked as a duplicate of this bug. *** |