Details at $URL. @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
Patch: https://build.opensuse.org/package/view_file/openSUSE:Maintenance:6722/rzip.openSUSE_Leap_42.1_Update/fill-buffer.patch?rev=159378fc1c4cbb56c295470d7c18a452
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5eb9348bf05fc2aa8bb21426e1446223a10fe5e9 commit 5eb9348bf05fc2aa8bb21426e1446223a10fe5e9 Author: David Seifert <soap@gentoo.org> AuthorDate: 2017-12-29 12:45:49 +0000 Commit: David Seifert <soap@gentoo.org> CommitDate: 2017-12-29 13:16:33 +0000 app-arch/rzip: Revbump for CVE-2017-8364 Bug: https://bugs.gentoo.org/618020 Package-Manager: Portage-2.3.19, Repoman-2.3.6 app-arch/rzip/files/rzip-2.1-CVE-2017-8364.patch | 33 ++++++++++++++++++++++ .../{rzip-2.1-r2.ebuild => rzip-2.1-r3.ebuild} | 5 +++- 2 files changed, 37 insertions(+), 1 deletion(-)}
Patch added and revbumped, no vulernable ebuilds remaining.