Version 0.2.16 has a straightforward DoS vulnerability when compiled with shared memory support. The vulnerability is fixed in 0.2.16a. No other versions are affected. Reproducible: Always
+*umurmur-0.2.16a (20 Jun 2015) + + 20 Jun 2015; Lars Wendler <polynomial-c@gentoo.org> -umurmur-0.2.14.ebuild, + -umurmur-0.2.15.ebuild, +umurmur-0.2.16a.ebuild: + Security bump (bug #552652). Removed old. + Arches please test and mark stable =media-sound/umurmur-0.2.16a with target KEYWORDS: amd64 ~arm x86
amd64 stable
x86 stable. Maintainer(s), please cleanup. Security, please vote.
Thanks for your work, guys. Cleanup is done GLSA vote: no
Arches and Maintainer(s), Thank you for your work. GLSA Vote: No Thank you all. Closing as noglsa.