Summary: | <sys-auth/pam_u2f-1.0.8: multiple vulnerabilities (CVE-2019-{12210,12209}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Göktürk Yüksek <gokturk> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | gokturk, security |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=713332 | ||
Whiteboard: | B4 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Göktürk Yüksek
2019-06-04 23:19:19 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d8a6efc572d98c67ed5e09275de6ee6aa64a4611 commit d8a6efc572d98c67ed5e09275de6ee6aa64a4611 Author: Göktürk Yüksek <gokturk@gentoo.org> AuthorDate: 2019-06-04 23:23:22 +0000 Commit: Göktürk Yüksek <gokturk@gentoo.org> CommitDate: 2019-06-04 23:23:22 +0000 sys-auth/pam_u2f: bump to 1.0.8 #687400 Version 1.0.8 resolves the following CVEs: CVE-2019-12209, CVE-2019-12210. Bug: https://bugs.gentoo.org/687400 Package-Manager: Portage-2.3.66, Repoman-2.3.12 Signed-off-by: Göktürk Yüksek <gokturk@gentoo.org> sys-auth/pam_u2f/Manifest | 1 + sys-auth/pam_u2f/pam_u2f-1.0.8.ebuild | 35 +++++++++++++++++++++++++++++++++++ 2 files changed, 36 insertions(+) @maintainer(s), please let us know if you're ready for stabilisation, or call for it yourself. @maintainer(s), please cleanup GLSA Vote: No Maintainer(s), please drop the vulnerable version(s). The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9151169ec4bd6c849f8f9b01c595e960f2418795 commit 9151169ec4bd6c849f8f9b01c595e960f2418795 Author: Göktürk Yüksek <gokturk@gentoo.org> AuthorDate: 2020-05-06 01:51:26 +0000 Commit: Göktürk Yüksek <gokturk@gentoo.org> CommitDate: 2020-05-06 01:51:48 +0000 sys-auth/pam_u2f: clean vulnerable versions #687400 Bug: https://bugs.gentoo.org/687400 Package-Manager: Portage-2.3.69, Repoman-2.3.14 Signed-off-by: Göktürk Yüksek <gokturk@gentoo.org> sys-auth/pam_u2f/Manifest | 3 --- sys-auth/pam_u2f/pam_u2f-1.0.4-r1.ebuild | 35 -------------------------------- sys-auth/pam_u2f/pam_u2f-1.0.6.ebuild | 35 -------------------------------- sys-auth/pam_u2f/pam_u2f-1.0.7.ebuild | 35 -------------------------------- 4 files changed, 108 deletions(-) Thanks! |