https://slack.com/release-notes/linux Slack 3.0.5 Bug Fixes An important security update. Security updates are always important. This is one of those.
On the way https://github.com/gentoo/gentoo/pull/7051
Which security bug is fixed? Is it about this one? https://aws.amazon.com/security/security-bulletins/AWS-2018-013/ I assign this to security, for the case that we are talking about a real security problem. Please adjust, if you know more. spiderx can help in the meantime by verifying the ebuild too.
I am not aware any security vulnerabilities details. Slack did not share any details about it, except this: "An important security update. Security updates are always important. This is one of those."
(In reply to Vladimir Pavljuchenkov (SpiderX) from comment #3) > I am not aware any security vulnerabilities details. ... That is no excuse of _not_ taking that serious. @Jonas: IMHO, the assignee could be re-directed to the package-maintainer <maintainer type="person"> <email>spiderx@spiderx.dp.ua</email> <name>Vladimir Pavljuchenkov</name> </maintainer> In between, Slack has moved on to Version 3.1.0, solving a whole bunch of (severe) problems: [ https://slack.com/release-notes/linux ] @Vladimir: As maintainer, please, be so kind to upgrade to 3.1.0 directly. You may as well just "take" the "Assignee:" directly. Thanks a lot!
CONFIRMATION: copy-rename -> emerge succeeds.
Manfred Knick > That is no excuse of _not_ taking that serious. 2018-02-04 22:30:47 UTC - time when this bug was created. 2018-02-04 22:57:09 UTC - time when PR for 3.0.5 was created (https://github.com/gentoo/gentoo/pull/7051) An issue was addressed in a half of hour. I think that I don't need any excuses in this situation. > copy-rename -> emerge succeeds. Thanks. PR is ready.
(In reply to Vladimir Pavljuchenkov (SpiderX) from comment #6) > An issue was addressed in a half of hour. > > I think that I don't need any excuses in this situation. Defenitely not, really! Sorry if my phrasing was a bit awkward: Just wanted to point out that "non-disclosure" =/= "not serious" ;-) > PR is ready. Thank you very much, indeed!
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1485323484724faad35067f91ed36e94e953e83d commit 1485323484724faad35067f91ed36e94e953e83d Author: Vladimir Pavljuchenkov (SpiderX) <spiderx@spiderx.dp.ua> AuthorDate: 2018-03-22 13:22:26 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2018-03-30 18:16:37 +0000 net-im/slack-bin: version bump to 3.1.0 Closes: https://bugs.gentoo.org/646614 Closes: https://github.com/gentoo/gentoo/pull/7549 Package-Manager: Portage-2.3.24, Repoman-2.3.6 net-im/slack-bin/Manifest | 1 + net-im/slack-bin/slack-bin-3.1.0.ebuild | 94 +++++++++++++++++++++++++++++++++ 2 files changed, 95 insertions(+)
