Summary: | <www-apps/nextcloud-{20.0.12,21.0.4,21.1.0}: multiple vulnerabilities (CVE-2021-{32800,32801,32802}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | polynomial-c, voyageur, web-apps |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B4 [glsa+] | ||
Package list: |
www-apps/nextcloud-21.0.4
|
Runtime testing required: | --- |
Bug Depends on: | 813426 | ||
Bug Blocks: |
Description
John Helmert III
![]() ![]() ![]() ![]() The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=40fab7f64dd6c406a12acc5bc507ee52d61b7434 commit 40fab7f64dd6c406a12acc5bc507ee52d61b7434 Author: Bernard Cafarelli <voyageur@gentoo.org> AuthorDate: 2021-09-16 08:00:51 +0000 Commit: Bernard Cafarelli <voyageur@gentoo.org> CommitDate: 2021-09-16 08:00:51 +0000 www-apps/nextcloud: drop vulnerable versions for 20.x/22.x Bug: https://bugs.gentoo.org/812443 Package-Manager: Portage-3.0.23, Repoman-3.0.3 Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org> www-apps/nextcloud/Manifest | 3 -- www-apps/nextcloud/nextcloud-20.0.11.ebuild | 43 ----------------------------- www-apps/nextcloud/nextcloud-22.0.0.ebuild | 43 ----------------------------- www-apps/nextcloud/nextcloud-22.1.0.ebuild | 43 ----------------------------- 4 files changed, 132 deletions(-) 21.0.4 is fixes over current stable so we can stabilize it indeed. I cleaned older ebuilds in other versions The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f3de8e3d79f953b6366fc2ae1eed1eab38e95978 commit f3de8e3d79f953b6366fc2ae1eed1eab38e95978 Author: Bernard Cafarelli <voyageur@gentoo.org> AuthorDate: 2021-09-17 11:25:12 +0000 Commit: Bernard Cafarelli <voyageur@gentoo.org> CommitDate: 2021-09-17 11:25:12 +0000 www-apps/nextcloud: drop vulnerable 21.x version Bug: https://bugs.gentoo.org/812443 Package-Manager: Portage-3.0.23, Repoman-3.0.3 Signed-off-by: Bernard Cafarelli <voyageur@gentoo.org> www-apps/nextcloud/Manifest | 1 - www-apps/nextcloud/nextcloud-21.0.3.ebuild | 43 ------------------------------ 2 files changed, 44 deletions(-) Thank you! Unable to check for sanity:
> no match for package: www-apps/nextcloud-21.0.4
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=b56f993e2e4fa0778f67ba7d3b8fbb350d4c7386 commit b56f993e2e4fa0778f67ba7d3b8fbb350d4c7386 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-08-10 22:31:11 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-08-10 22:33:19 +0000 [ GLSA 202208-17 ] Nextcloud: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/797253 Bug: https://bugs.gentoo.org/802096 Bug: https://bugs.gentoo.org/812443 Bug: https://bugs.gentoo.org/820368 Bug: https://bugs.gentoo.org/834803 Bug: https://bugs.gentoo.org/835073 Bug: https://bugs.gentoo.org/848873 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202208-17.xml | 72 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 72 insertions(+) GLSA released, all done! |