Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 164186

Summary: media-libs/dumb security cleanup needed
Product: Gentoo Linux Reporter: Jakub Moc (RETIRED) <jakub>
Component: New packagesAssignee: Christian Birchinger (RETIRED) <joker>
Status: RESOLVED FIXED    
Severity: normal CC: games, sound
Priority: High    
Version: 2006.1   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 235763    

Description Jakub Moc (RETIRED) gentoo-dev 2007-01-28 10:14:46 UTC 
media-libs/dumb-0.9.2-r2: vulnerable via glsa(200608-14) ( ver-rev < 0.9.3-r1 ), affects ('alpha', 'amd64', 'ia64', 'ppc', 'x86')
media-libs/dumb-0.9.2-r3: vulnerable via glsa(200608-14) ( ver-rev < 0.9.3-r1 ), affects ('alpha', 'amd64', 'ia64', 'ppc', 'x86')
media-libs/dumb-0.9.3: vulnerable via glsa(200608-14) ( ver-rev < 0.9.3-r1 ), affects ('alpha', 'amd64', 'ia64', 'ppc', 'sparc', 'x86')

Please, clean up the above. Thanks. :)
Comment 1 Christian Birchinger (RETIRED) gentoo-dev 2007-01-28 23:57:23 UTC 
games:

"games-strategy/ufo2000" is the only thing still depending on
"<media-libs/dumb-0.9.3-r1". Please either fix this app or mask
it for removal. I have to remove the older vulunerable versions of 
media-libs/dumb.
Comment 2 Mr. Bones. (RETIRED) gentoo-dev 2007-01-29 00:00:34 UTC 
I masked ufo2000 until the next beta is released.
Comment 3 Christian Birchinger (RETIRED) gentoo-dev 2007-01-29 00:08:51 UTC 
Removed all versions below 0.9.3-r1
Comment 4 Daniele C. 2008-08-25 20:51:54 UTC 
now that we have 0.9.3-r1 in portage, can't ufo2000 be unmasked?
Comment 5 Christian Birchinger (RETIRED) gentoo-dev 2008-08-26 11:37:00 UTC 
Not much clue about ufo2000 never used it or even installed it.
I think the problem was that ufo2000 only works with old DUMB versions.