From secunia advisory at $URL: Description A vulnerability has been reported in Mono, which can be exploited by malicious people to cause a DoS (Denial of Service). For more information see vulnerability #1: https://secunia.com/SA47323/ The vulnerability is reported in version 2.10.x. Other versions may also be affected. Solution Fixed in the Git repository.
Link: https://bugzilla.novell.com/show_bug.cgi?id=739119
+*mono-2.10.9-r2 (15 Sep 2012) + + 15 Sep 2012; Pacho Ramos <pacho@gentoo.org> + +files/mono-2.10.9-CVE-2012-3543.patch, + +files/mono-2.10.9-CVE-2012-3543_2.patch, +mono-2.10.9-r2.ebuild, + -mono-2.10.5.ebuild, -mono-2.10.8.ebuild: + Fix CVE-2012-3543, drop old. + Feel free to stabilize it
Thanks, Pacho. Arches, please test and mark stable: =dev-lang/mono-2.10.9-r2
amd64 stable
x86 done.
ppc stable
Thanks, everyone. GLSA vote: yes.
Yes. Created GLSA request.
This issue was resolved and addressed in GLSA 201405-16 at http://security.gentoo.org/glsa/glsa-201405-16.xml by GLSA coordinator Sean Amoss (ackle).