Summary: | <kde-misc/plasma-nm-0.9.3.6: created OpenVPN connections vulnerable to MITM attack | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Richard Yao (RETIRED) <ryao> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | ||
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Richard Yao (RETIRED)
2014-11-29 03:11:45 UTC
From upstream bug report this is fixed in 0.9.0.12 which is the only version in tree. Remove kde from cc then. (In reply to Johannes Huber from comment #1) > From upstream bug report this is fixed in 0.9.0.12 which is the only version > in tree. Remove kde from cc then. Sorry wrong package + 06 Jun 2015; Michael Palimaka <kensington@gentoo.org> + +plasma-nm-0.9.3.6.ebuild: + Version bump wrt bug #531070. Arches please stabilize =kde-misc/plasma-nm-0.9.3.6 Target: amd64 x86 amd64 stable x86 stable. Maintainer(s), please cleanup. Security, please vote. Thanks all. Cleanup done. Removing maintainer then. + + 18 Jul 2015; Johannes Huber <johu@gentoo.org> + -files/plasma-nm-0.9.3.5-openconnect.patch, -plasma-nm-0.9.3.5.ebuild: + Remove vulnerable version, bug #531070. + Arches and Maintainer(s), Thank you for your work. GLSA Vote: No GLSA Vote: No |