Summary: | <dev-libs/gnulib-2016.12.21.08.39.01: memory corruption flaw in parse_datetime() (CVE-2014-9471) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Thomas Deutschmann (RETIRED) <whissi> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | prefix |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | ~2 [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 600518 |
Description
Thomas Deutschmann (RETIRED)
2016-11-22 22:12:04 UTC
I just pushed out 2016.12.21.08.39.01. @ Maintainer(s): Thanks for the bump. Please also remove the vulnerable versions, i.e. drop =dev-libs/gnulib-2013.10.28.22.33.52 =dev-libs/gnulib-2009.03.03.14.07.45-r1 (or apply a mask indicating a security problem). My bad, should've removed the old versions immediately. Done now. |