Summary: | <www-apps/nextcloud-{20.0.11,21.0.3}: multiple vulnerabilities (CVE-2021-{32678,32679,32680,32688,32703,32705,32725,32726,32734}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | alarig, polynomial-c, voyageur, web-apps |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B4 [glsa+] | ||
Package list: |
www-apps/nextcloud-21.0.3
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 797253 |
Description
John Helmert III
2021-07-14 03:45:38 UTC
Ack on stabilizing 20.0.11 I will clean vulnerable 21.0.2 in the meantime The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b8faf978fbb07ae6047e8d5ad1ed560d4412b665 commit b8faf978fbb07ae6047e8d5ad1ed560d4412b665 Author: Bernard Cafarelli <voyageur@gentoo.org> AuthorDate: 2021-07-20 09:23:19 +0000 Commit: Bernard Cafarelli <voyageur@gentoo.org> CommitDate: 2021-07-20 09:23:19 +0000 www-apps/nextcloud: drop vulnerable 21.0.2 Bug: https://bugs.gentoo.org/802096 Package-Manager: Portage-3.0.20, Repoman-3.0.3 Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org> www-apps/nextcloud/Manifest | 1 - www-apps/nextcloud/nextcloud-21.0.2.ebuild | 43 ------------------------------ 2 files changed, 44 deletions(-) amd64 x86 (ALLARCHES) done all arches done The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=423041208f1e7d95cb4da8b824a0155109a02825 commit 423041208f1e7d95cb4da8b824a0155109a02825 Author: Bernard Cafarelli <voyageur@gentoo.org> AuthorDate: 2021-07-20 19:54:15 +0000 Commit: Bernard Cafarelli <voyageur@gentoo.org> CommitDate: 2021-07-20 19:54:15 +0000 www-apps/nextcloud: drop vulnerable 20.0.10 Bug: https://bugs.gentoo.org/802096 Package-Manager: Portage-3.0.20, Repoman-3.0.3 Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org> www-apps/nextcloud/Manifest | 1 - www-apps/nextcloud/nextcloud-20.0.10.ebuild | 43 ----------------------------- 2 files changed, 44 deletions(-) Thanks! Unable to check for sanity:
> no match for package: www-apps/nextcloud-21.0.3
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=b56f993e2e4fa0778f67ba7d3b8fbb350d4c7386 commit b56f993e2e4fa0778f67ba7d3b8fbb350d4c7386 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-08-10 22:31:11 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-08-10 22:33:19 +0000 [ GLSA 202208-17 ] Nextcloud: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/797253 Bug: https://bugs.gentoo.org/802096 Bug: https://bugs.gentoo.org/812443 Bug: https://bugs.gentoo.org/820368 Bug: https://bugs.gentoo.org/834803 Bug: https://bugs.gentoo.org/835073 Bug: https://bugs.gentoo.org/848873 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202208-17.xml | 72 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 72 insertions(+) GLSA released, all done! |