Summary: | kde-apps/kopete-16.12.2: User Impersonation Vulnerability in Jabber protocol | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Johannes Huber (RETIRED) <johu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | Flags: | stable-bot:
sanity-check+
|
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugs.kde.org/show_bug.cgi?id=376348 | ||
Whiteboard: | B4 [noglsa] | ||
Package list: |
=kde-apps/kopete-16.12.2-r2
|
Runtime testing required: | --- |
Description
Johannes Huber (RETIRED)
2017-02-11 14:16:10 UTC
Fix backported in 16.12.2-r1: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b90cb8d975dfbe549c209198e9e13ae4b6c4d035 Vulnerable version removed https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bb0eeec58bab812e647153b4f3825389e69f6ec6 Thank you for report. Issue does not affect versions that have been in stable, as such does not require stabilisation and GLSA will not be issued. The bug can be closed after CVE is assigned in CVETool and whiteboard contains cve tag 16.12.0 is stable and affected, which means 16.12.2-r1 should get stabilised. Arches please stabilize =kde-apps/kopete-16.12.2-r1. Thanks in advance. Target: amd64 x86 An automated check of this bug failed - the following atom is unknown: kde-apps/kopete-16.12.2-r1 Please verify the atom list. An automated check of this bug failed - the following atom is unknown: kde-apps/kopete-16.12.2-r1 Please verify the atom list. An automated check of this bug succeeded - the previous repoman errors are now resolved. amd64 stable x86 stable. Maintainer(s), please cleanup. Last vulnerable version removed. https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1b8e68319d85f680bdc02706c57c3fc41132609d GLSA Vote: No Repository is clean, all done. |