644496 – <app-backup/tsm-7.1.8: multiple vulnerabilities (CVE-2017-{10115,10116})

Bug 644496 - <app-backup/tsm-7.1.8: multiple vulnerabilities (CVE-2017-{10115,10116})

Summary: <app-backup/tsm-7.1.8: multiple vulnerabilities (CVE-2017-{10115,10116})

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://www-01.ibm.com/support/docvie...
Whiteboard:	~2 [noglsa cve]
Keywords:

Depends on:
Blocks:

Reported:	2018-01-13 23:48 UTC by Michael Weber (RETIRED)
Modified:	2019-04-04 19:44 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
ebuild for version 7.1.8.3 (tsm-7.1.8.3.ebuild,6.78 KB, text/plain) 2018-06-21 06:49 UTC, Manuel Mommertz	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michael Weber (RETIRED) gentoo-dev

2018-01-13 23:48:49 UTC

There is an security issue documented at 
https://www-01.ibm.com/support/docview.wss?uid=swg22009293

I'm working on an updated ebuild and try to test the application.

Comment 1 Manuel Mommertz 2018-06-21 06:49:34 UTC

Created attachment 536648 [details]
ebuild for version 7.1.8.3

As my institute wants to get rid of old versions I tried to update the ebuild. The result seems to work properly (ebuild installs, tsm-client runs without error).

Comment 2 Aaron Bauman (RETIRED) gentoo-dev

2019-03-24 03:33:24 UTC

@maintainer, please drop the vulnerable.

Comment 3 Yury German Gentoo Infrastructure

2019-03-27 22:57:16 UTC

Maintainer(s), please drop the vulnerable version(s).

Comment 4 Aaron Bauman (RETIRED) gentoo-dev

2019-04-04 19:44:01 UTC

tree is clean