CVE-2017-18201 (https://nvd.nist.gov/vuln/detail/CVE-2017-18201): An issue was discovered in GNU libcdio before 2.0.0. There is a double free in get_cdtext_generic() in lib/driver/_cdio_generic.c. CVE-2017-18199 (https://nvd.nist.gov/vuln/detail/CVE-2017-18199): realloc_symlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (NULL Pointer Dereference) via a crafted iso file. CVE-2017-18198 (https://nvd.nist.gov/vuln/detail/CVE-2017-18198): print_iso9660_recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted iso file. @Maintainers versions 2.0.0 and 1.0.0 already in tree. Please call for stabilization when ready. Thank you.
Resetting sanity check; package list is empty or all packages are done.
GLSA Vote: No Cleanup is being done as part of Depending bug. Thank you all for you work. Closing as [noglsa].