Sorry, accidently hit the enter key. Index: glsa-200502-05.xml =================================================================== RCS file: /var/cvsroot/gentoo/xml/htdocs/security/en/glsa/glsa-200502-05.xml,v retrieving revision 1.1 diff -u -b -B -r1.1 glsa-200502-05.xml --- glsa-200502-05.xml 3 Feb 2005 00:23:58 -0000 1.1 +++ glsa-200502-05.xml 21 Feb 2005 06:53:26 -0000 @@ -51,7 +51,7 @@ </p> <code> # emerge --sync - # emerge --ask --oneshot --verbose ">=net-nttp/newspost-2.0-r1"</code> + # emerge --ask --oneshot --verbose ">=net-nntp/newspost-2.0-r1"</code> </resolution> <references> <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0101">CAN-2005-0101</uri>
It seems that 2.1.1 was not listed as vulnerable in the GLSA, the resolution section is nevertheless correct. (was bug 78530 btw) XML will be updated, no remailing should be required. versions should probably be... unaffected: *>=net-nttp/newspost-2.0-r1 >=net-nntp/newspost-2.1.1-r1 affected: <net-nntp/newspost-2.1.1-r1
net-nttp -> net-nntp now I got it, thanks Sven :-)
Updated GLSA @@ -11,13 +11,14 @@ </synopsis> <product type="ebuild">newspost</product> <announced>February 03, 2005</announced> - <revised>February 03, 2005: 01</revised> + <revised>February 21, 2005: 02</revised> <bug>78530</bug> <access>remote</access> <affected> <package name="net-nntp/newspost" auto="yes" arch="*"> - <unaffected range="ge">2.0-r1</unaffected> - <vulnerable range="lt">2.0-r1</vulnerable> + <unaffected range="rge">2.0-r1</unaffected> + <unaffected range="ge">2.1.1-r1</unaffected> + <vulnerable range="lt">2.1.1-r1</vulnerable> </package> </affected> <background> @@ -51,7 +52,7 @@ </p> <code> # emerge --sync - # emerge --ask --oneshot --verbose ">=net-nttp/newspost-2.0-r1"</code> + # emerge --ask --oneshot --verbose ">=net-nntp/newspost-2.0-r1"</code> </resolution> <references> <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0101">CAN-2005-0101</uri>