Summary: | dev-db/recutils: memory corruption flaw in parse_datetime() though embedded gnulib (CVE-2014-9471) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Thomas Deutschmann (RETIRED) <whissi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | maintainer-needed, mgorny, treecleaner |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | ~2 [noglsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 600518 |
Description
Thomas Deutschmann (RETIRED)
2016-11-22 22:02:40 UTC
upstream looks dead since 2014 commit ee12e968b20ac1efdef5f66f392ae62b664978d2 Author: Michał Górny <mgorny@gentoo.org> AuthorDate: Mon Aug 14 21:53:12 2017 Commit: Michał Górny <mgorny@gentoo.org> CommitDate: Mon Aug 14 21:59:58 2017 dev-db/recutils: Remove last-rited pkg, #600524 |