Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 140484

Summary: app-editors/xemacs security cleanup needed
Product: Gentoo Linux Reporter: Jakub Moc (RETIRED) <jakub>
Component: New packagesAssignee: Gentoo Quality Assurance Team <qa>
Status: RESOLVED FIXED    
Severity: normal CC: chriswhite, graaff, mkennedy, security
Priority: High    
Version: 2006.0   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Jakub Moc (RETIRED) gentoo-dev 2006-07-15 06:56:35 UTC 
app-editors/xemacs-21.4.9: vulnerable via glsa(200502-20) ( ver-rev < 21.4.15-r3 ), affects ('ppc', 'sparc', 'x86')
app-editors/xemacs-21.4.12: vulnerable via glsa(200502-20) ( ver-rev < 21.4.15-r3 ), affects ('alpha', 'amd64', 'ppc', 'sparc', 'x86')
app-editors/xemacs-21.4.15: vulnerable via glsa(200502-20) ( ver-rev < 21.4.15-r3 ), affects ('ppc',)
app-editors/xemacs-21.4.15-r1: vulnerable via glsa(200502-20) ( ver-rev < 21.4.15-r3 ), affects ('alpha', 'amd64', 'ppc', 'ppc64', 'sparc', 'x86')
app-editors/xemacs-21.4.15-r2: vulnerable via glsa(200502-20) ( ver-rev < 21.4.15-r3 ), affects ('alpha', 'amd64', 'ppc', 'ppc64', 'sparc', 'x86')

Assigning to treecleaners, xemacs stuff has been w/o any maintainer for ages.
Comment 1 Alec Warner (RETIRED) archtester gentoo-dev Security 2006-07-15 10:25:45 UTC 
Treecleaners doesn't really do this at present, although we may expand it in the future.  Co-ordinate between qa and security.
Comment 2 Chris White (RETIRED) gentoo-dev 2006-08-05 18:42:34 UTC 
mkennedy,

You seem to have touched this per changelog.  I've got the effected versions queued up for cvs removal, say the word and I'll punt um for good.
Comment 3 Matthew Kennedy (RETIRED) gentoo-dev 2006-08-05 21:14:17 UTC 
ok please go ahead.
Comment 4 Chris White (RETIRED) gentoo-dev 2006-08-05 21:25:13 UTC 
Alright, insecure versions removed.