Bug 569518 (CVE-2015-8659)

Comment 1 SpanKY 2015-12-23 17:11:16 UTC

1.6.0 is already in the tree

Comment 2 Agostino Sarubbo 2015-12-23 19:23:10 UTC

is ready to go to stable?

Comment 3 SpanKY 2015-12-23 19:48:08 UTC

probably.  no one has complained thus far.

Comment 4 Yury German 2015-12-24 00:27:58 UTC

Arches, please test and mark stable:

=net-libs/nghttp2-1.6.0

Target Keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sparc x86"

Thank you!

Comment 5 Agostino Sarubbo 2015-12-24 20:12:07 UTC

amd64 stable

Comment 6 Agostino Sarubbo 2015-12-25 18:22:04 UTC

x86 stable

Comment 7 Jeroen Roovers (RETIRED) 2015-12-26 09:58:07 UTC

Stable for HPPA PPC64.

Comment 8 Agostino Sarubbo 2015-12-26 10:56:48 UTC

ppc stable

Comment 9 Agostino Sarubbo 2016-01-09 07:12:00 UTC

sparc stable

Comment 10 Agostino Sarubbo 2016-01-10 10:42:43 UTC

alpha stable

Comment 11 Agostino Sarubbo 2016-01-11 09:08:45 UTC

ia64 stable

Comment 12 SpanKY 2016-02-03 18:52:09 UTC

all arches done now

Comment 13 Yury German 2016-02-25 07:10:35 UTC

Arches and Maintainer(s), Thank you for your work.

New GLSA Request filed.

Comment 14 GLSAMaker/CVETool Bot 2016-12-04 11:00:57 UTC

This issue was resolved and addressed in
 GLSA 201612-06 at https://security.gentoo.org/glsa/201612-06
by GLSA coordinator Aaron Bauman (b-man).