Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 678700

Summary: =net-vpn/tor-0.3.5.8: please rapid stabilize
Product: Gentoo Security Reporter: Anthony Basile <blueness>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal CC: blueness
Priority: Normal Keywords: STABLEREQ
Version: unspecifiedFlags: stable-bot: sanity-check-
Hardware: All   
OS: Linux   
URL: https://gitweb.torproject.org/tor.git/tree/ChangeLog?h=tor-0.3.5.8
Whiteboard:
Package list:
net-vpn/tor-0.3.5.8
 Runtime testing required: ---

Description Anthony Basile gentoo-dev 2019-02-24 17:40:19 UTC 
This version contains "a medium-severity security bug affecting Tor 0.3.2.1-alpha and later."  We should rapid stabilize it.  I have done a preliminary test on amd64 and it looks good.  (Also the tor team has, imho, been 100% reliable on releases!)
Comment 1 Anthony Basile gentoo-dev 2019-02-24 17:41:54 UTC 
@arch teams: KEYWORDS="amd64 arm ~mips ppc ppc64 x86 ~ppc-macos"
Comment 2 Stabilization helper bot gentoo-dev 2019-02-24 18:00:52 UTC 
An automated check of this bug failed - repoman reported dependency errors (7 lines truncated): 

> dependency.bad net-vpn/tor/tor-0.3.5.8.ebuild: DEPEND: ~alpha(default/linux/alpha/17.0) ['app-crypt/libscrypt']
> dependency.bad net-vpn/tor/tor-0.3.5.8.ebuild: RDEPEND: ~alpha(default/linux/alpha/17.0) ['app-crypt/libscrypt']
> dependency.bad net-vpn/tor/tor-0.3.5.8.ebuild: DEPEND: ~alpha(default/linux/alpha/17.0/desktop) ['app-crypt/libscrypt']
Comment 3 Agostino Sarubbo gentoo-dev 2019-02-25 07:52:59 UTC 
already reported in 678586
Comment 4 Anthony Basile gentoo-dev 2019-02-26 14:02:49 UTC 

*** This bug has been marked as a duplicate of bug 678586 ***
Comment 5 Anthony Basile gentoo-dev 2019-02-26 14:05:29 UTC 
(In reply to Agostino Sarubbo from comment #3)
> already reported in 678586

You could have marked this a duplicate.