Summary: | <app-arch/cpio-2.12-r1: out-of-bounds write | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | base-system |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://lists.gnu.org/archive/html/bug-cpio/2016-01/msg00002.html | ||
Whiteboard: | B3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2016-01-20 09:35:42 UTC
fixed in 2.12-r1: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5a7c109933aac0f9de580513346ebe94f3acd4f2 should be fine for stable Arches please stabilize mips doesn't have a stable keyword. Stable for HPPA PPC64. amd64 stable arm stable Stable on alpha. x86 stable ppc stable sparc stable ia64 stable Removing unstable arches. @maintainer(s), please clean the vulnerable versions. This has been around for almost 1 year now, can we please clean up. Cleanup PR: https://github.com/gentoo/gentoo/pull/4909 Downgraded due to no PoC for ACE/RCE. GLSA Vote: No Tree is clean. |