From ${URL} : Several vulnerabilities doscovered in OpenFire version 3.10.2 to 4.0.1 ### Affected versions * Version >=3.10.2 and <4.0.2 ### Fixes * https://github.com/igniterealtime/Openfire/pull/570 ### Solution Update to version 4.0.2 ### Timeline (dd/mm/yyyy) * 15/10/2014 : Initial discovery * 19/10/2015 : Contact with vendor team * 27/11/2014 : vendor fixes vulnerabilities * 27/11/2014 : vendor releases version 4.0.2, which includes the fixes @maintainer(s): since the fixed package is already in the tree, please let us know if it is ready for the stabilization or not.
=net-im/openfire-4.0.2 is ready to go stable on amd64 x86
@arches, please stabilize: =net-im/openfire-4.0.2
amd64 stable
x86 stable. Maintainer(s), please cleanup. Security, please vote.
Deleted old versions as: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=16984aae49feabbd36822d457f0dab01bc3f6559
GLSA Vote: No
