Summary: | <app-text/discount-2.2.4: multiple vulnerabilities (CVE-2018-{11468,11503,11504,12495}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Florian Schuhmacher <mynt1aa> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | proxy-maint, reagentoo, vdupras |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/Orc/discount/issues/189#issuecomment-397541501 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
app-text/discount-2.2.4
|
Runtime testing required: | --- |
Description
Florian Schuhmacher
2018-06-19 13:44:32 UTC
@ maintainer(s): Please bump to >=2.2.4! Dmitry: are you still maintaining this? We expect a much faster response to security bugs. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ed43d9829d0045f50f8eb6c5ca743ec179b56791 commit ed43d9829d0045f50f8eb6c5ca743ec179b56791 Author: Sergey Alirzaev <zl29ah@gmail.com> AuthorDate: 2018-10-01 19:33:31 +0000 Commit: Virgil Dupras <vdupras@gentoo.org> CommitDate: 2018-10-01 19:58:11 +0000 app-text/discount: version bump to 2.2.4 Bug: https://bugs.gentoo.org/658482 Signed-off-by: Sergey Alirzaev <zl29ah@gmail.com> Closes: https://github.com/gentoo/gentoo/pull/10038 Signed-off-by: Virgil Dupras <vdupras@gentoo.org> app-text/discount/Manifest | 1 + app-text/discount/discount-2.2.4.ebuild | 70 +++++++++++++++++++++++++++++++++ 2 files changed, 71 insertions(+) Bumped through https://github.com/gentoo/gentoo/pull/10038 Arches, please stabilize app-text/discount-2.2.4. Thanks! x86 stable Stable on alpha. sparc done. amd64 stable ppc/ppc64 stable The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5b12e15be60744fc77b2911c806f3cc46b866309 commit 5b12e15be60744fc77b2911c806f3cc46b866309 Author: Virgil Dupras <vdupras@gentoo.org> AuthorDate: 2018-10-06 19:16:17 +0000 Commit: Virgil Dupras <vdupras@gentoo.org> CommitDate: 2018-10-06 19:17:20 +0000 app-text/discount: orphan package Current maintainer is unresponsive Bug: https://bugs.gentoo.org/658482 Signed-off-by: Virgil Dupras <vdupras@gentoo.org> Package-Manager: Portage-2.3.50, Repoman-2.3.11 app-text/discount/metadata.xml | 9 +-------- 1 file changed, 1 insertion(+), 8 deletions(-) ia64 stable The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1e8e7ede8accdfc1b0faf0630afab11c9dea201f commit 1e8e7ede8accdfc1b0faf0630afab11c9dea201f Author: Virgil Dupras <vdupras@gentoo.org> AuthorDate: 2018-10-17 17:20:22 +0000 Commit: Virgil Dupras <vdupras@gentoo.org> CommitDate: 2018-10-17 17:20:22 +0000 app-text/discount: remove old and vulnerable We're having to drop arm stable keyword because its stablereq is taking too long. Bug: https://bugs.gentoo.org/658482 Signed-off-by: Virgil Dupras <vdupras@gentoo.org> Package-Manager: Portage-2.3.51, Repoman-2.3.11 app-text/discount/Manifest | 3 -- app-text/discount/discount-2.1.8a-r1.ebuild | 77 ----------------------------- app-text/discount/discount-2.2.2.ebuild | 70 -------------------------- app-text/discount/discount-2.2.3a.ebuild | 70 -------------------------- 4 files changed, 220 deletions(-) |