Summary: | <sys-fs/dosfstools-4.0-r1: multiple vulnerabilities (CVE-{2015-8872,2016-4804}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | base-system |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2016/05/08/2 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2016-05-09 09:45:36 UTC
these are all in the 4.0 release which is already in the tree. should be fine for stable. Since SpanKY is ok with it, can this be stabilized? Bug 574654 would be fixed at the same time. Arches please test and mark stable =sys-fs/dosfstools-r1 with target KEYWORDS: alpha amd64 arm ~arm64 hppa ia64 ~mips ppc ppc64 ~s390 ~sh sparc x86 ~amd64-linux ~arm-linux ~x86-linux Whoops, typo... Arches please test and mark stable =sys-fs/dosfstools-4.0-r1 with target KEYWORDS: alpha amd64 arm ~arm64 hppa ia64 ~mips ppc ppc64 ~s390 ~sh sparc x86 ~amd64-linux ~arm-linux ~x86-linux Stable on alpha amd64 stable Stable for HPPA PPC64. arm stable x86 stable done the rest now Downgraded to B3 as both CVE's identify a DoS. GLSA Vote: No @maintainer(s), please clean the vulnerable version from the tree. Cleanup PR: https://github.com/gentoo/gentoo/pull/3393 Cleaned up via a1df44e19222491817ca271bd98a6ccdcd291b06. |