Description: "Potential exploit in the OCB2 encryption" https://github.com/mumble-voip/mumble/pull/4227 Fixed in 1.3.1, not included in rc1.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e94d04bc2b125cecd0611e9cebc4746071e04b67 commit e94d04bc2b125cecd0611e9cebc4746071e04b67 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-06-15 09:56:27 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-06-15 09:56:42 +0000 media-sound/murmur: Security bump to version 1.3.1 Bug: https://bugs.gentoo.org/727598 Package-Manager: Portage-2.3.101, Repoman-2.3.22 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> media-sound/murmur/Manifest | 2 +- media-sound/murmur/{murmur-1.3.1_rc1.ebuild => murmur-1.3.1.ebuild} | 0 2 files changed, 1 insertion(+), 1 deletion(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=afc960cb03b862c89be6840332deee8059dc3f5d commit afc960cb03b862c89be6840332deee8059dc3f5d Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-06-15 09:54:00 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-06-15 09:56:42 +0000 media-sound/mumble: Security bump to version 1.3.1 Bug: https://bugs.gentoo.org/727598 Package-Manager: Portage-2.3.101, Repoman-2.3.22 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> media-sound/mumble/Manifest | 2 +- .../mumble/files/mumble-1.3.1_rc1-qt-5.15.patch | 28 ---------------------- ...mumble-1.3.1_rc1.ebuild => mumble-1.3.1.ebuild} | 2 -- 3 files changed, 1 insertion(+), 31 deletions(-)
This has been stabled in the past, just not for a while, back when Qt 4 was around. The Qt 5 version was only a snapshot before now and didn't get stabled.
x86 stable
amd64 stable. Maintainer(s), please cleanup. Security, please vote.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=efdd2417271d7444170db0b9ac7b44a619d7016a commit efdd2417271d7444170db0b9ac7b44a619d7016a Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-06-25 14:02:58 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-06-25 14:03:07 +0000 media-sound/murmur: Security cleanup Bug: https://bugs.gentoo.org/727598 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> media-sound/murmur/Manifest | 1 - media-sound/murmur/murmur-1.3.0.ebuild | 154 --------------------------------- 2 files changed, 155 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8fbd8da7678a281279f19b91bd36a63593bc858a commit 8fbd8da7678a281279f19b91bd36a63593bc858a Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2020-06-25 14:02:13 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2020-06-25 14:03:07 +0000 media-sound/mumble: Security cleanup Bug: https://bugs.gentoo.org/727598 Package-Manager: Portage-2.3.103, Repoman-2.3.23 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> media-sound/mumble/Manifest | 1 - media-sound/mumble/mumble-1.3.0.ebuild | 160 --------------------------------- 2 files changed, 161 deletions(-)
Unable to check for sanity: > no match for package: media-sound/mumble-1.3.1