Summary: | <dev-php/PEAR-Archive_Tar-1.4.11: Multiple vulnerabilities (CVE-2020-28949) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | php-bugs |
Priority: | Normal | Keywords: | ALLARCHES |
Version: | unspecified | Flags: | nattka:
sanity-check-
|
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/pear/Archive_Tar/issues/33 | ||
Whiteboard: | B3 [glsa+ cve] | ||
Package list: |
dev-php/PEAR-Archive_Tar-1.4.11 *
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 757246 |
Description
Sam James
2020-11-20 05:04:22 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a8cf5201eed5b8242807379bffa68d9755bd9728 commit a8cf5201eed5b8242807379bffa68d9755bd9728 Author: Brian Evans <grknight@gentoo.org> AuthorDate: 2020-11-20 13:57:05 +0000 Commit: Brian Evans <grknight@gentoo.org> CommitDate: 2020-11-20 13:57:05 +0000 dev-php/PEAR-Archive_Tar: Security bump for 1.4.11 Bug: https://bugs.gentoo.org/755653 Signed-off-by: Brian Evans <grknight@gentoo.org> dev-php/PEAR-Archive_Tar/Manifest | 1 + .../PEAR-Archive_Tar-1.4.11.ebuild | 31 ++++++++++++++++++++++ 2 files changed, 32 insertions(+) Thanks for quick bump! Let us know when it's ready to stable. ping, ready? The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=35a1dd59ffaec64623d0a799248c48e43eab5db7 commit 35a1dd59ffaec64623d0a799248c48e43eab5db7 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-12-06 19:17:19 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-12-06 19:17:19 +0000 dev-php/PEAR-Archive_Tar: security cleanup Bug: https://bugs.gentoo.org/755653 Package-Manager: Portage-3.0.10, Repoman-3.0.2 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-php/PEAR-Archive_Tar/Manifest | 1 - .../PEAR-Archive_Tar-1.4.10.ebuild | 31 ---------------------- 2 files changed, 32 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c95a8e2e2ded25f3539fde41e392a3e780dd874b commit c95a8e2e2ded25f3539fde41e392a3e780dd874b Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-12-06 19:17:00 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-12-06 19:17:00 +0000 dev-php/PEAR-Archive_Tar: x86 stable, applying ALLARCHES policy Bug: https://bugs.gentoo.org/755653 Package-Manager: Portage-3.0.10, Repoman-3.0.2 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-php/PEAR-Archive_Tar/PEAR-Archive_Tar-1.4.11.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) Unable to check for sanity:
> no match for package: dev-php/PEAR-Archive_Tar-1.4.11
This issue was resolved and addressed in GLSA 202101-23 at https://security.gentoo.org/glsa/202101-23 by GLSA coordinator Sam James (sam_c). |