Summary: | <app-emulation/emul-linux-x86-baselibs-20080316; <net-nds/openldap-2.3.41 crash, authenticated user, MODRDN operation (CVE-2008-0658) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Matt Fleming (RETIRED) <mjf> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openldap.org/its/index.cgi/Software%20Bugs?id=5358 | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Matt Fleming (RETIRED)
2008-03-18 12:41:37 UTC
Latest baselibs fixes: glib-2.14.3: bug 209293, GLSA 200803-24 libpcre-7.4: bug 209067, GLSA 200803-24 libxml2-2.6.30: bug 202628, GLSA 200801-20 openldap-2.3.41: bug 209677, GLSA 200803-28 cups-1.12.12-r4: bug 211449, bug 212364 dbus-1.0.2-r2: bug 211451 amd64 stable (last arch) Fixed in release snapshot too. security: why is this bug still open? This probably warrants a GLSA, as multiple GLSA-worthy security issues are fixed for 64bit users by this update. This is a B3 bug (see 209677). So a GLSA is not mandatory, and i close that bug due to no activity within a long period of time after having bumped the ebuild. Reopen if you disagree. Sorry, in fact this will be a common glsa with bug 196865 Bug was fixed > 4 years ago and is rated B3. This will not get a GLSA. Closing. |