906110 – (CVE-2023-29338) <app-editors/vscode-1.78.1: NTLM hash disclosure vulnerability

Bug 906110 (CVE-2023-29338) - <app-editors/vscode-1.78.1: NTLM hash disclosure vulnerability

Summary: <app-editors/vscode-1.78.1: NTLM hash disclosure vulnerability

Status:	RESOLVED FIXED

Alias:	CVE-2023-29338

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial
Assignee:	Gentoo Security

URL:	https://msrc.microsoft.com/update-gui...
Whiteboard:	~4 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2023-05-11 04:33 UTC by John Helmert III
Modified:	2023-05-23 04:42 UTC (History)
CC List:	3 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description John Helmert III archtester

2023-05-11 04:33:40 UTC

CVE-2023-29338:

Visual Studio Code Information Disclosure Vulnerability

Please cleanup <1.78.1.

Comment 1 Larry the Git Cow gentoo-dev

2023-05-11 18:42:01 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=795f4778268bcc65c84a38b3b8565e4d235c9a97

commit 795f4778268bcc65c84a38b3b8565e4d235c9a97
Author:     Arthur Zamarin <arthurzam@gentoo.org>
AuthorDate: 2023-05-11 18:37:17 +0000
Commit:     Arthur Zamarin <arthurzam@gentoo.org>
CommitDate: 2023-05-11 18:41:56 +0000

    app-editors/vscode: drop 1.77.3, 1.78.0
    
    Bug: https://bugs.gentoo.org/906110
    Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>

 app-editors/vscode/Manifest             |   6 --
 app-editors/vscode/vscode-1.77.3.ebuild | 126 --------------------------------
 app-editors/vscode/vscode-1.78.0.ebuild | 122 -------------------------------
 3 files changed, 254 deletions(-)

Comment 2 John Helmert III archtester

2023-05-23 04:42:00 UTC

Thanks!