Summary: | <dev-ruby/bson-3.0.4: DoS and possible injection (CVE-2015-4410) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | ruby |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2015/06/06/1 | ||
Whiteboard: | ~3 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2015-06-08 13:03:49 UTC
bson-3.0.4 is now in the tree. There are no stable versions. (In reply to Hans de Graaff from comment #1) > bson-3.0.4 is now in the tree. There are no stable versions. Are the old version affected? If yes you need to cleanup. Please Cleanup: 1.6.2-r1, 1.12.0, 2.3.0 It has been 30 day, please cleanup! ./dev-ruby/mongo/mongo-1.12.0.ebuild:ruby_add_rdepend "~dev-ruby/bson-${PV}" Maintainer(s), Thank you for you for cleanup. Thank you all. Closing as noglsa. |