Summary: | dev-libs/libtomcrypt: Out of bounds read (CVE-2019-17362) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | IN_PROGRESS --- | ||
Severity: | minor | CC: | mgorny, sam |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/libtom/libtomcrypt/issues/507 | ||
Whiteboard: | B3 [upstream/ebuild?] | ||
Package list: | Runtime testing required: | --- |
Description
Sam James
![]() ![]() ![]() ![]() I'll apply the patch later. Ideally, the comments on the test case patch would be resolved first. (In reply to Sam James from comment #1) > I'll apply the patch later. Ideally, the comments on the test case patch > would be resolved first. Look addressed now but can't test atm. I'm not convinced this is actually fixed: https://github.com/libtom/libtomcrypt/issues/561 Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. Package list is empty or all packages have requested keywords. |