Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 759175

Summary: <dev-libs/libressl-{3.1.5, 3.2.3}: Denial of service in X509 parser (CVE-2020-1971)
Product: Gentoo Security Reporter: Stefan Strogin <steils>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED WONTFIX    
Severity: minor CC: libressl
Priority: Normal Keywords: PMASKED
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B3 [glsa? cleanup]
Package list:
Runtime testing required: Yes
Bug Depends on:    
Bug Blocks: 759370    

Description Stefan Strogin gentoo-dev 2020-12-09 04:50:24 UTC 
Here is a security fix release: https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.1.5-relnotes.txt

Please stabilize.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2020-12-10 21:42:11 UTC 
x86 stable
Comment 2 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-12-11 20:20:59 UTC 
arm64 done
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-12-11 20:46:50 UTC 
arm done
Comment 4 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-12-31 04:15:40 UTC 
amd64 done
Comment 5 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-12-31 04:24:41 UTC 
ppc64 done
Comment 6 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-12-31 04:24:49 UTC 
ppc done
Comment 7 Rolf Eike Beer archtester 2020-12-31 12:48:03 UTC 
sparc stable
Comment 8 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2020-12-31 18:02:29 UTC 
Please cleanup.