Bug 476622

Comment 1 Sergey Popov (RETIRED) 2013-07-12 10:39:03 UTC

Created attachment 353144 [details, diff]
Check-for-NULL-pointers-in-channel.c.patch

Patch from upstream git

Comment 2 Michael Palimaka (kensington) 2013-09-12 09:04:26 UTC

Please CC all package maintainers. I will action this shortly.

Comment 3 Michael Palimaka (kensington) 2013-09-12 09:30:44 UTC

Added 0.5.5 in CVS which contains the fix.

Comment 4 Sergey Popov (RETIRED) 2013-09-12 10:16:48 UTC

(In reply to Michael Palimaka (kensington) from comment #3)
> Added 0.5.5 in CVS which contains the fix.

Good. Is it ready for stabilization? If yes, please CC arches and begin to stabilize it.

Comment 5 Michael Palimaka (kensington) 2013-09-12 10:52:20 UTC

Arch teams, please test and stabilise net-libs/libssh-0.5.5.

Target KEYWORDS="amd64 ppc ppc64 x86".

Comment 6 Agostino Sarubbo 2013-09-12 17:38:58 UTC

ppc stable

Comment 7 Agostino Sarubbo 2013-09-14 08:14:03 UTC

amd64 stable

Comment 8 Agostino Sarubbo 2013-09-14 10:14:01 UTC

x86 stable

Comment 9 Agostino Sarubbo 2013-09-14 10:37:15 UTC

ppc64 stable

Comment 10 Sergey Popov (RETIRED) 2013-09-18 05:02:06 UTC

Thanks for your work.

GLSA vote: no

Comment 11 Johannes Huber (RETIRED) 2013-09-18 05:57:07 UTC

Thanks all. Removing maintainer, nothing to do anymore.

+
+  18 Sep 2013; Johannes Huber <johu@gentoo.org> -libssh-0.5.4.ebuild:
+  Remove vulnerable version wrt bug #476622.
+

Comment 12 Chris Reffett (RETIRED) 2013-09-18 14:03:05 UTC

GLSA vote: no. Closing noglsa.