Summary: | <sys-libs/libseccomp-2.4.0: incorrect generation of syscall argument filters | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | base-system |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.openwall.com/lists/oss-security/2019/03/15/1 | ||
Whiteboard: | A2 [glsa+ cve] | ||
Package list: |
sys-libs/libseccomp-2.4.0
|
Runtime testing required: | --- |
Description
Agostino Sarubbo
2019-03-15 10:38:42 UTC
That version also finally adds hppa support, that had been available in git for a while now. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b406f50c74400237d176cf74f7bc8052963ad999 commit b406f50c74400237d176cf74f7bc8052963ad999 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2019-03-15 11:45:15 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2019-03-15 11:45:56 +0000 sys-libs/libseccomp: Security bump to version 2.4.0 Bug: https://bugs.gentoo.org/680442 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> sys-libs/libseccomp/Manifest | 1 + sys-libs/libseccomp/libseccomp-2.4.0.ebuild | 41 +++++++++++++++++++++++++++++ 2 files changed, 42 insertions(+) @arches: There's one failing test. But as it's the same test that also fails in our current stable version (2.3.3) I didn't investigate any further. Please stabilize anyway as this is no regression. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=55ed6bd1fc8574678420e0e57ac975a83bc817a4 commit 55ed6bd1fc8574678420e0e57ac975a83bc817a4 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2019-03-18 08:16:53 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2019-03-18 08:17:09 +0000 sys-libs/libseccomp: Version 2.4.0 stable for amd64 and x86. Bug: https://bugs.gentoo.org/680442 Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> sys-libs/libseccomp/libseccomp-2.4.0.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) arm stable New GLSA Request filed. You have to create a package list! FFS. ppc/ppc64 stable s390 stable arm64 stable Cleanup done This issue was resolved and addressed in GLSA 201904-18 at https://security.gentoo.org/glsa/201904-18 by GLSA coordinator Aaron Bauman (b-man). |