Bug 146438

Summary:	app-emulation/emul-linux-x86-baselibs: vulnerable version of dev-libs/openssl included
Product:	Gentoo Security	Reporter:	Simon Stelling (RETIRED) <blubb>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED FIXED
Severity:	normal
Priority:	High
Version:	unspecified
Hardware:	All
OS:	Linux
Whiteboard:	B3? [glsa] jaervosz
Package list:		Runtime testing required:	---
Bug Depends on:	146375
Bug Blocks:

Description Simon Stelling (RETIRED) gentoo-dev

2006-09-05 12:43:19 UTC

All versions of app-emulation/emul-x86-linux-baselibs contain vulnerable versions of dev-libs/openssl.

Comment 1 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2006-09-05 21:05:04 UTC

Ok, waiting for fixed ebuild.

Comment 2 Simon Stelling (RETIRED) gentoo-dev

2006-09-06 11:32:58 UTC

app-emulation/emul-linux-x86-baselibs-2.5.2 is in the tree and marked stable

Comment 3 Thierry Carrez (RETIRED) gentoo-dev

2006-09-06 11:42:32 UTC

I'd do a common GLSA with bug 146375

Comment 4 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2006-09-06 13:28:19 UTC

Yes, let's have a common GLSA with bug #146375.

I already added the info to the GLSA draft. Security please review.

Comment 5 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2006-09-07 21:50:23 UTC

GLSA 200609-05

Comment 6 Simon Stelling (RETIRED) gentoo-dev

2006-09-12 11:54:19 UTC

eh, wrong package name ;)