Summary: | Security advisory says to upgrade to glibc-2.3.1-r4, can't find in portage | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | FieldySnuts <sgtphou> |
Component: | New packages | Assignee: | Daniel Ahlberg (RETIRED) <aliz> |
Status: | RESOLVED INVALID | ||
Severity: | critical | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
FieldySnuts
2003-03-25 13:38:16 UTC
You will need to install GCC 3 in order to be able to compile any glibc >=2.3. Hm. Okay. Either this means anyone using gcc2 is vulnerable and stuck with it, or there is a seperate way/version for upgrading glibc with gcc2. glibc-2.2.5-r8 has the update...see the changelog entry: *glibc-2.2.5-r8 (21 Mar 2003) 21 Mar 2003; Daniel Ahlberg <aliz@gentoo.org> glibc-2.2.5-r8.ebuild : Security update. Ahh. Okay great, thanks. Worked for me. my mistake. I didn't realize that pre 1.4 versions still used glibc 2.2.5. Versions 2.2.5-r8 and 2.3.1-r4 both contains the security update. |