271194 – media-libs/freetype-1.4_pre20080316-r1 is flagged as vulnerable but has not been updated/masked - 200905-05

Bug 271194 - media-libs/freetype-1.4_pre20080316-r1 is flagged as vulnerable but has not been updated/masked - 200905-05

Summary: media-libs/freetype-1.4_pre20080316-r1 is flagged as vulnerable but has not b...

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	GLSA Errors (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2009-05-25 11:14 UTC by Richard Freeman
Modified:	2009-05-25 20:39 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Richard Freeman gentoo-dev

2009-05-25 11:14:28 UTC

GLSA 200905-05 lists versions less than 2.3.9-r1 as vulnerable, but version 1.4_pre20080316-r1 remains in-tree in a different slot.

I have no idea if this verison is vulnerable or not - I'm guessing it isn't and this is just a GLSA error.  However, either the xml should be fixed or the vulnerable package should be updated (and the xml fixed).

Reproducible: Always

Comment 1 Alex Legler (RETIRED) archtester

2009-05-25 20:39:24 UTC

revision 1.2
date: 2009-05-25 22:33:15 +0200;  author: a3li;  state: Exp;  lines: +2 -1;  commitid: 6af34a1b003b4567;
GLSA 200905-05: Mark <2.0 as unaffected, bug 271194.

Done, thanks.