Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 564400 - <app-misc/tmux-2.1: Out of bounds heap read
Summary: <app-misc/tmux-2.1: Out of bounds heap read
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://raw.githubusercontent.com/tmu...
Whiteboard: B4 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2015-10-29 12:25 UTC by Lars Wendler (Polynomial-C) (RETIRED)
Modified: 2016-06-30 11:12 UTC (History)
4 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Lars Wendler (Polynomial-C) (RETIRED) gentoo-dev 2015-10-29 12:25:23 UTC
See URL for a list of changes.
Comment 1 Hanno Böck gentoo-dev 2015-11-08 19:22:10 UTC
This is actually fixing a security bug, changing category:
https://github.com/tmux/tmux/issues/92
Comment 2 Lars Wendler (Polynomial-C) (RETIRED) gentoo-dev 2015-11-09 09:37:07 UTC
commit a7f01a72d9e16f0cb77a0dd886d8cab5a41fb869
Author: Lars Wendler <polynomial-c@gentoo.org>
Date:   Mon Nov 9 10:33:10 2015

    app-misc/tmux: Security bump to version 2.1 (bug #564400).

    Package-Manager: portage-2.2.24
    Signed-off-by: Lars Wendler <polynomial-c@gentoo.org>



Arches please test and mark stable =app-misc/tmux-2.1 with target KEYWORDS:

alpha amd64 arm ~arm64 hppa ia64 ~mips ppc ppc64 ~s390 ~sh ~sparc x86 ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos
Comment 3 Agostino Sarubbo gentoo-dev 2015-11-10 09:06:30 UTC
amd64 stable
Comment 4 Jeroen Roovers (RETIRED) gentoo-dev 2015-11-11 04:44:02 UTC
Stable for HPPA PPC64.
Comment 5 Agostino Sarubbo gentoo-dev 2015-11-11 09:41:10 UTC
x86 stable
Comment 6 Agostino Sarubbo gentoo-dev 2015-11-12 10:26:05 UTC
ppc stable
Comment 7 Markus Meier gentoo-dev 2015-11-14 19:33:44 UTC
arm stable
Comment 8 Agostino Sarubbo gentoo-dev 2015-11-18 09:33:34 UTC
ia64 stable
Comment 9 Agostino Sarubbo gentoo-dev 2016-01-10 10:41:50 UTC
alpha stable.

Maintainer(s), please cleanup.
Comment 10 Justin Lecher (RETIRED) gentoo-dev 2016-01-10 10:47:52 UTC
commit 6d92bbe44d0a4f19290abcdd63d5a4c9b776ba96
Author: Justin Lecher <jlec@gentoo.org>
Date:   Sun Jan 10 11:47:31 2016 +0100

    app-misc/tmux: Drop versions vulnerable to 'Out of bounds heap read'

    Gentoo-Bug: https://bugs.gentoo.org/show_bug.cgi?id=564400

    Package-Manager: portage-2.2.26
    Signed-off-by: Justin Lecher <jlec@gentoo.org>

    https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6d92bbe44d0a4f19290abcdd63d5a4c9b776ba96
Comment 11 Patrice Clement gentoo-dev 2016-05-20 20:29:20 UTC
ping @security
Comment 12 Aaron Bauman (RETIRED) gentoo-dev 2016-06-30 11:12:24 UTC
GLSA Vote: No