Summary: | <net-analyzer/tcpdump-4.7.4: Multiple vulnerabilities (CVE-2015-{0261,2153,2154,2155}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | netmon |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=553758 | ||
Whiteboard: | B3 [glsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2015-06-20 14:00:58 UTC
Arch teams, please test and mark stable: =net-analyzer/tcpdump-4.7.4 Targeted stable KEYWORDS : alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 =net-libs/libpcap-1.7.3 Targeted stable KEYWORDS : alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 amd64 stable Stable for PPC64. x86 stable (In reply to Mikle Kolyada from comment #4) > x86 stable No. (In reply to Jeroen Roovers from comment #5) > (In reply to Mikle Kolyada from comment #4) > > x86 stable > > No. Dear Jeroen, I appreciate that you double-check after people make commit/stabilize, but would be great if you could be more verbose about what is going wrong. In this case I guess that libpcap was not marked stable for x86, but in general we appreciate more verbosity. Thanks a lot. ppc stable Stable for HPPA. x86 stable arm stable alpha stable And again. (In reply to Jeroen Roovers from comment #12) > And again. wrong. https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/net-analyzer/tcpdump/tcpdump-4.7.4.ebuild?r1=1.7&r2=1.8 (In reply to Mikle Kolyada from comment #13) > (In reply to Jeroen Roovers from comment #12) > > And again. > > wrong. > > https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/net-analyzer/ > tcpdump/tcpdump-4.7.4.ebuild?r1=1.7&r2=1.8 This is why you read the comments and not just the Summary when it comes to security stabilisations. (In reply to Jeroen Roovers from comment #14) > (In reply to Mikle Kolyada from comment #13) > > (In reply to Jeroen Roovers from comment #12) > > > And again. > > > > wrong. > > > > https://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/net-analyzer/ > > tcpdump/tcpdump-4.7.4.ebuild?r1=1.7&r2=1.8 > > This is why you read the comments and not just the Summary when it comes to > security stabilisations. did you mean libcap too? alpha stable sparc stable ia64 stable. Cleanup, please! GLSA vote: yes. Maintainer(s), Thank you for you for cleanup. GLSA Vote: Yes New GLSA Request filed. This issue was resolved and addressed in GLSA 201510-04 at https://security.gentoo.org/glsa/201510-04 by GLSA coordinator Kristian Fiskerstrand (K_F). |