Hi, i found this vulnerability on security focus. As it looks to me, the version which is marked stable in portage (3.5.5) is infected and the version marked as testing isnt. Reproducible: Always Steps to Reproduce:
Thx for the notification Lars. When searching for duplicate bugs on https://bugs.gentoo.org you might want to prefix your search with ALL like ALL CVE-2007-1564 The reason that we're still on the same version number is that it was fixed with a new revision to 3.5.5 instead. *** This bug has been marked as a duplicate of bug 172527 ***