CVE-2022-36129: HashiCorp Vault and Vault Enterprise through 2022-07-17 have Incorrect Access Control. Please stabilize 1.10.4 and cleanup <1.11.1.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f49ca9e8d94a5035adece042318d75d0cae50929 commit f49ca9e8d94a5035adece042318d75d0cae50929 Author: Zac Medico <zmedico@gentoo.org> AuthorDate: 2022-07-29 21:04:11 +0000 Commit: Zac Medico <zmedico@gentoo.org> CommitDate: 2022-07-29 21:04:55 +0000 app-admin/vault: drop 1.10.3, 1.10.4, 1.11.0 Bug: https://bugs.gentoo.org/861812 Signed-off-by: Zac Medico <zmedico@gentoo.org> app-admin/vault/Manifest | 6 --- app-admin/vault/vault-1.10.3.ebuild | 85 ------------------------------------ app-admin/vault/vault-1.10.4.ebuild | 85 ------------------------------------ app-admin/vault/vault-1.11.0.ebuild | 86 ------------------------------------- 4 files changed, 262 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3d5e5d6ad7f9c2ce28ff30d1c45736204a6a36fd commit 3d5e5d6ad7f9c2ce28ff30d1c45736204a6a36fd Author: Zac Medico <zmedico@gentoo.org> AuthorDate: 2022-07-29 21:02:37 +0000 Commit: Zac Medico <zmedico@gentoo.org> CommitDate: 2022-07-29 21:04:54 +0000 app-admin/vault: stabilize 1.10.5 for amd64 Bug: https://bugs.gentoo.org/861812 Signed-off-by: Zac Medico <zmedico@gentoo.org> app-admin/vault/vault-1.10.5.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
Thanks, Zac!