media-libs/netpbm-10.26.31: vulnerable via glsa(200510-18) ( ver < 10.29 ), affects ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.31: vulnerable via glsa(200508-04) ( ver < 10.28 ), affects ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.32: vulnerable via glsa(200510-18) ( ver < 10.29 ), affects ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.32: vulnerable via glsa(200508-04) ( ver < 10.28 ), affects ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') Well, these are pretty recent versions but the upstream versioning scheme is retarded :(
it isnt retarded ... it's called maintaining a stable branch
GLSA updated. Sorry for the delay.
This versioning is causing this bug to occur over and over again. media-libs/netpbm-10.26.42: vulnerable via glsa(200510-18) ( ver < 10.29 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.42: vulnerable via glsa(200508-04) ( ver < 10.28 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.43: vulnerable via glsa(200510-18) ( ver < 10.29 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.43: vulnerable via glsa(200508-04) ( ver < 10.28 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.44: vulnerable via glsa(200510-18) ( ver < 10.29 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86') media-libs/netpbm-10.26.44: vulnerable via glsa(200508-04) ( ver < 10.28 && ver not = 10.26.32 && ver not = 10.26.33 ), keywords ('alpha', 'amd64', 'arm', 'hppa', 'ia64', 'mips', 's390', 'sh', 'sparc', 'x86')
GLSAs updated yet again.