Summary: | <app-editors/gedit-{2.22.3-r2,2.24.3} Untrusted search path vulnerability (CVE-2009-0314) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Stefan Behte (RETIRED) <craig> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | gnome |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=481556 | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 256619 | ||
Bug Blocks: | 238650 |
Description
Stefan Behte (RETIRED)
2009-01-30 22:48:11 UTC
I am not sure whether this bug is being tracked upstream. Please see the blocker for details and a patch example. upstream bug: http://bugzilla.gnome.org/show_bug.cgi?id=569214 adapted upstream patch for 2.22.3 and committed as 2.22.3-r2. Sorry for taking so long. For testers, there is a file on the upstream bug to test if the issue is properly resolved. Arches, please test and mark stable: =app-editors/gedit-2.22.3-r1 Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86" OR =app-editors/gedit-2.24.3 Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sh sparc x86" Already stabled : "amd64 ppc ppc64 x86" Missing keywords: "alpha arm hppa ia64 sh sparc" =app-editors/gedit-2.22.3-r1 stable on alpha. ia64/sparc stable Stable for HPPA. GLSA request filed. Oops, looks like we need 2.22.3-r2 (read: revision two) stable. sparc/hppa: Could you pretty please stable the correct ebuild once more? :) On the other arches we have 2.24.3 stable so that shouldn't be a problem there. Sorry for the noise! app-editors/gedit-2.24.3 will go stable for HPPA with the rest of gnome 2.24. Hmm. Oh. GLSA 200903-41 Stable for HPPA. sparc also stable for =app-editors/gedit-2.24.3 arm/sh stable GLSA still unfixed... All affected ebuilds left the tree months ago. There is really no point in fixing this GLSA since the upgrade paths are now all obsolete. Closing. |