Summary: | <app-admin/vault-{1.4.7,1.5.5}: Incorrect access control (CVE-2020-25816) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | zmedico |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B3 [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 739264 |
Description
Sam James
2020-10-07 19:15:01 UTC
ping The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c8cc4e84cb5d22c0d1303b4875c620af0a9f99cc commit c8cc4e84cb5d22c0d1303b4875c620af0a9f99cc Author: Zac Medico <zmedico@gentoo.org> AuthorDate: 2020-11-17 05:52:10 +0000 Commit: Zac Medico <zmedico@gentoo.org> CommitDate: 2020-11-17 05:55:27 +0000 app-admin/vault: Bump to version 1.5.5 Bug: https://bugs.gentoo.org/747157 Package-Manager: Portage-3.0.9, Repoman-3.0.2 Signed-off-by: Zac Medico <zmedico@gentoo.org> app-admin/vault/Manifest | 2 + app-admin/vault/vault-1.5.5.ebuild | 78 ++++++++++++++++++++++++++++++++++++++ 2 files changed, 80 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=03b4c32163020e5df5b6f0af4692746d43099953 commit 03b4c32163020e5df5b6f0af4692746d43099953 Author: Zac Medico <zmedico@gentoo.org> AuthorDate: 2020-11-17 05:18:57 +0000 Commit: Zac Medico <zmedico@gentoo.org> CommitDate: 2020-11-17 05:55:26 +0000 app-admin/vault: Bump to version 1.4.7 Bug: https://bugs.gentoo.org/747157 Package-Manager: Portage-3.0.9, Repoman-3.0.2 Signed-off-by: Zac Medico <zmedico@gentoo.org> app-admin/vault/Manifest | 2 + app-admin/vault/vault-1.4.7.ebuild | 77 ++++++++++++++++++++++++++++++++++++++ 2 files changed, 79 insertions(+) ready? Yes, please stabilize. amd64 done all arches done Maintainer, please cleanup. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f0bb5360fbc519550d46587af5217eae2ed514ac commit f0bb5360fbc519550d46587af5217eae2ed514ac Author: Zac Medico <zmedico@gentoo.org> AuthorDate: 2020-12-07 01:33:33 +0000 Commit: Zac Medico <zmedico@gentoo.org> CommitDate: 2020-12-07 01:35:47 +0000 app-admin/vault: Remove vulnerable CVE-2020-25816 Bug: https://bugs.gentoo.org/747157 Package-Manager: Portage-3.0.11, Repoman-3.0.2 Signed-off-by: Zac Medico <zmedico@gentoo.org> app-admin/vault/Manifest | 2 - app-admin/vault/vault-1.4.5.ebuild | 77 -------------------------------------- 2 files changed, 79 deletions(-) Thanks Zac! Unable to check for sanity:
> no match for package: app-admin/vault-1.4.7
GLSA vote: no |