Summary: | net-analyzer/rtg-0.7.4 has internal copies of gd-1.8.4, cgilib-0.4, zlib-1.1.4 and libpng-1.2.1 | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Diego Elio Pettenò (RETIRED) <flameeyes> |
Component: | New packages | Assignee: | Gentoo Security <security> |
Status: | RESOLVED WONTFIX | ||
Severity: | normal | CC: | esigra, n-roeser, netmon, treecleaner |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 251464 |
Description
Diego Elio Pettenò (RETIRED)
2008-11-21 13:02:03 UTC
package.masked, will be removed in 30 days. bundles *very* outdated versions of gd, zlib and libpng libraries, static links, upstream seems dead, removal in 30 days. bug #247958 and bug #251425 treecleaners removed this since it was long enough and definitely heading out. The libraries were only used to generate the statistics, so input should be considered trusted. It's for the better that the thing is gone, but does not warrant involvement of Security such as a GLSA. |