Summary: | net-p2p/bitcoind, net-p2p/bitcoin-qt: Multiple vulnerabilities (CVE-2012-4684,CVE-2013-{3219,3220,4627}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | blueness, luke-jr+gentoobugs, proxy-maint |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B3 [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 480096 | ||
Bug Blocks: |
Description
GLSAMaker/CVETool Bot
2013-08-30 00:43:54 UTC
I probably could have split that up a bit better. Summary: CVE-2013-4627: <bitcoind-0.8.1. No action needed except maybe a GLSA. CVE-2013-3220: 0.4.9rc2 in tree and nothing else in the 0.4 branch in tree. 0.5.8rc2, 0.7.3rc2 likewise. 0.6.5rc2 needs to be stabilized. CVE-2013-3219: same as 2013-4627. CVE-2012-4684: Affects 0.6.3. 0.6.5rc2 can be stabilized. @maintainers: okay to stabilize 0.6.5rc2? 0.6.5rc2 is too old (it won't work at all); rc4 would, but I don't think I made an ebuild for it yet. Will clean affected versions after the latest goes stable. Closing as noglsa as per comment #1 in bug #484546 |