Bug 89579 - dev-util/cvs Multiple DoS issues
Bug#: 89579 Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: All Status: RESOLVED Severity: minor Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: jaervosz@gentoo.org
Component: Vulnerabilities
URL: 
Summary: dev-util/cvs Multiple DoS issues
Keywords:  
Status Whiteboard: B3 [glsa] jaervosz
Opened: 2005-04-18 14:12 0000
Description:   Opened: 2005-04-18 14:12 0000 
CVS Changelog entries for 2005-03-17 some of the initial issues reported are
not fixed in kclockwork patch but in the public CVS tree:

https://ccvs.cvshome.org/source/browse/ccvs/src/ChangeLog?rev=1.3170&content-type=text/vnd.viewcvs-markup

Another issue:

https://ccvs.cvshome.org/issues/show_bug.cgi?id=224

------- Comment #1 From Sune Kloppenborg Jeppesen 2005-04-18 14:12:57 0000 ------- 
Pylon please advise.

------- Comment #2 From Sune Kloppenborg Jeppesen 2005-04-19 12:38:04 0000 ------- 
1.11.20 is released. Pylon please bump.

------- Comment #3 From Lars Weiler (RETIRED) 2005-04-19 16:22:58 0000 ------- 
I added cvs-1.11.20 and cvs-1.12.12 into portage.  Arches should test and make
cvs-1.11.20 stable.

cvs-1.11.20:
current KEYWORDS="~x86 ~ppc ~sparc ~mips ~alpha ~arm ~hppa ~amd64 ~ia64 ~ppc64
~s390"
target  KEYWORDS="x86 ppc sparc mips alpha arm hppa amd64 ia64 ppc64 s390"


cvs-1.12.12:
current KEYWORDS="~x86 ~ppc ~sparc ~mips ~alpha ~arm ~hppa ~amd64 ~ia64 ~ppc64
~s390"
target nothing to be done here

------- Comment #4 From Luke Macken (RETIRED) 2005-04-19 17:32:30 0000 ------- 
arches, please mark cvs-1.11.20 stable.

------- Comment #5 From Gustavo Zacarias (RETIRED) 2005-04-19 18:01:14 0000 ------- 
sparc stable.

------- Comment #6 From Markus Rothe 2005-04-19 23:42:01 0000 ------- 
stable on ppc64

------- Comment #7 From Lars Weiler (RETIRED) 2005-04-20 00:38:24 0000 ------- 
Stable on ppc and x86.

------- Comment #8 From Simon Stelling (RETIRED) 2005-04-20 09:47:52 0000 ------- 
amd64 done

------- Comment #9 From Guy Martin 2005-04-20 13:06:08 0000 ------- 
Stable on hppa.

------- Comment #10 From Bryan Østergaard (RETIRED) 2005-04-20 14:46:32 0000 ------- 
Stable on alpha + ia64.

------- Comment #11 From Sune Kloppenborg Jeppesen 2005-04-22 04:51:17 0000 ------- 
Resolved with GLSA 200504-16 Update

arm, mips, s390 remember to mark stable to benifit from the GLSA Update.

------- Comment #12 From Joshua Kinard 2005-06-29 19:18:01 0000 ------- 
cvs-1.11.20 stable on mips.