Summary: | <app-office/libreoffice-7.5.9.2 <app-office/libreoffice-bin-7.6.4.1: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Christopher Fore <csfore> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | ajak, asturm, dilfridge, office |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.libreoffice.org/about-us/security/advisories/cve-2023-6185 | ||
See Also: | https://github.com/gentoo/gentoo/pull/35450 | ||
Whiteboard: | A2 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 919762, 923155 | ||
Bug Blocks: |
Description
Christopher Fore
2023-12-14 16:10:09 UTC
Looks like hppa is the only remaining arch in the stablereq, so with no stable libreoffice on hppa, we should be able to proceed. Oh, actually, we still don't have a fixed -bin... The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=284558217afdaaa3cc08cd0bbe33c48e6dee7362 commit 284558217afdaaa3cc08cd0bbe33c48e6dee7362 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2024-01-07 09:24:50 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2024-01-07 09:28:44 +0000 app-office/libreoffice: drop vulnerable 7.5.6.2, 7.5.8.2, 7.5.8.2-r2 Bug: https://bugs.gentoo.org/919894 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> app-office/libreoffice/Manifest | 4 - ...libreoffice-7.5.8.2-curl-8.3.0-mitigation.patch | 316 ---------- .../files/libreoffice-7.5.8.2-libcmis-0.6.patch | 39 -- app-office/libreoffice/libreoffice-7.5.6.2.ebuild | 661 -------------------- .../libreoffice/libreoffice-7.5.8.2-r2.ebuild | 671 --------------------- app-office/libreoffice/libreoffice-7.5.8.2.ebuild | 664 -------------------- 6 files changed, 2355 deletions(-) Please stabilize -bin-7.6.4.1 when ready. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f1c959b4ec50843bd0d540cefdf8df9667ba86e2 commit f1c959b4ec50843bd0d540cefdf8df9667ba86e2 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2024-02-20 19:20:36 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2024-02-20 20:48:15 +0000 app-office/libreoffice-bin: drop 7.5.6.2-r1, 7.5.8.2 Bug: https://bugs.gentoo.org/919894 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> app-office/libreoffice-bin/Manifest | 24 -- .../libreoffice-bin-7.5.6.2-r1.ebuild | 262 -------------------- .../libreoffice-bin/libreoffice-bin-7.5.8.2.ebuild | 263 --------------------- 3 files changed, 549 deletions(-) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=298891ab7459c571f1ff699a7004c22ee0cb3595 commit 298891ab7459c571f1ff699a7004c22ee0cb3595 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-02-21 16:46:04 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-02-21 16:46:28 +0000 [ GLSA 202402-29 ] LibreOffice: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/919894 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202402-29.xml | 54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 54 insertions(+) |