+v2.10.0 +======= + +- Fixed a XML External Entity (XXE) processing vulnerability in PDF XMP metadata + parsing. (Reported by Eric Therond of Sonarsource.) All users should upgrade + to get this security update.
Unable to check for sanity: > no match for package: dev-python/pikepdf-2.10.0
All sanity-check issues have been resolved
amd64 done all arches done
Please cleanup.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=87de46fbf3911c116b8794d6dcc01882ec1ecbe2 commit 87de46fbf3911c116b8794d6dcc01882ec1ecbe2 Author: Michał Górny <mgorny@gentoo.org> AuthorDate: 2021-04-02 17:07:10 +0000 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: 2021-04-02 17:08:07 +0000 dev-python/pikepdf: Remove old Bug: https://bugs.gentoo.org/779475 Signed-off-by: Michał Górny <mgorny@gentoo.org> dev-python/pikepdf/Manifest | 3 -- dev-python/pikepdf/pikepdf-2.7.0.ebuild | 47 --------------------------- dev-python/pikepdf/pikepdf-2.8.0_p2.ebuild | 51 ------------------------------ dev-python/pikepdf/pikepdf-2.9.2.ebuild | 51 ------------------------------ 4 files changed, 152 deletions(-)
Package list is empty or all packages have requested keywords.
I think we can noglsa it and resolve after this 1.5 yr.
Sure, thanks!