Summary: | <dev-lang/mono-2.10.9-r2: Web Form Hash Collision Denial of Service Vulnerability (CVE-2012-3543) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | dotnet |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://secunia.com/advisories/50446/ | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 396397, 435202 |
Description
Agostino Sarubbo
2012-09-03 10:32:14 UTC
+*mono-2.10.9-r2 (15 Sep 2012) + + 15 Sep 2012; Pacho Ramos <pacho@gentoo.org> + +files/mono-2.10.9-CVE-2012-3543.patch, + +files/mono-2.10.9-CVE-2012-3543_2.patch, +mono-2.10.9-r2.ebuild, + -mono-2.10.5.ebuild, -mono-2.10.8.ebuild: + Fix CVE-2012-3543, drop old. + Feel free to stabilize it Thanks, Pacho. Arches, please test and mark stable: =dev-lang/mono-2.10.9-r2 amd64 stable x86 done. ppc stable Thanks, everyone. GLSA vote: yes. Yes. Created GLSA request. This issue was resolved and addressed in GLSA 201405-16 at http://security.gentoo.org/glsa/glsa-201405-16.xml by GLSA coordinator Sean Amoss (ackle). |