Summary: | <net-misc/curl-7.50.3: escape and unescape integer overflows (CVE-2016-7167) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | blueness |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://curl.haxx.se/docs/adv_20160914.html | ||
Whiteboard: | A2 [glsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 590482, 592974 |
Description
Agostino Sarubbo
2016-09-14 09:34:15 UTC
Okay curl-7.50.3 is now in the tree and ready for stabilization: KEYWORDS="alpha amd64 arm hppa ia64 ppc ppc64 sparc x86" Arches, please test and mark stable: =net-misc/curl-7.50.3 Target Keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sparc x86" Thank you! amd64 stable Stable on alpha. Stable for PPC64. Stable for HPPA. arm stable x86 stable sparc stable ppc stable ia64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. (In reply to Agostino Sarubbo from comment #11) > ia64 stable. > > Maintainer(s), please cleanup. > Security, please add it to the existing request, or file a new one. done This issue was resolved and addressed in GLSA 201701-47 at https://security.gentoo.org/glsa/201701-47 by GLSA coordinator Thomas Deutschmann (whissi). |