Summary: | <sys-fs/f2fs-tools-1.14.0: Multiple vulnerabilities (CVE-2020-{6104,6105,6106,6107,6108}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | blueness, rem11_1999, zlogene |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [glsa+] | ||
Package list: | Runtime testing required: | --- |
Description
Sam James
2020-10-15 16:08:33 UTC
Not clear if fixed in 1.14. (In reply to Sam James from comment #1) > Not clear if fixed in 1.14. Let's just stabilize 1.14. It has been in the tree forever. KEYWORDS="amd64 arm arm64 ppc ppc64 x86" Unable to check for sanity:
> no match for package: sys-fs/f2fs-tools-1.14
All sanity-check issues have been resolved x86 stable arm64 done arm done ppc/ppc64 stable amd64 stable, though no idea about cleanup then. (In reply to Mikle Kolyada from comment #9) > amd64 stable, though no idea about cleanup then. I've removed 1.13.0 from the tree. The only remaining version is 1.14.0 which is the latest upstream. This issue was resolved and addressed in GLSA 202101-26 at https://security.gentoo.org/glsa/202101-26 by GLSA coordinator Sam James (sam_c). |