Summary: | <media-libs/libraw-0.20.0: Multiple vulnerabilities (CVE-2020-{24889,24890}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | zlogene |
Priority: | Normal | Flags: | nattka:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A2 [glsa+ cve] | ||
Package list: |
media-libs/libraw-0.20.0
|
Runtime testing required: | --- |
Description
Sam James
2020-09-23 03:13:14 UTC
I'm not even sure if 24890 is valid given "This is compiler error[...]" and the same patch gets linked both times. But the first one seems to be, so is it ready to stable if you agree the second one is invalid? Unable to check for sanity:
> no match for package: media-libs/libraw-20.0
arm64 stable sparc stable ppc/ppc64 stable arm done x86 done amd64 done all arches done amd64 done all arches done Please cleanup. Cleaned. |