| Summary: | <dev-lang/erlang-26.2.1: Terrapin vulnerability | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Matthew Smith <matthew> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | CONFIRMED --- | ||
| Severity: | normal | CC: | matthew |
| Priority: | Normal | Keywords: | PullRequest |
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://www.erlang.org/patches/otp-26.2.1#ssh-5.1.1 | ||
| See Also: |
https://github.com/gentoo/gentoo/pull/36320 https://github.com/gentoo/gentoo/pull/36538 |
||
| Whiteboard: | B3 [glsa?] | ||
| Package list: | Runtime testing required: | --- | |
| Bug Depends on: | 920683 | ||
| Bug Blocks: | 920280 | ||
|
Description
Matthew Smith
2023-12-25 08:56:50 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=eebdfb3943fe789c6fdaf1e87f2e774d38c70521 commit eebdfb3943fe789c6fdaf1e87f2e774d38c70521 Author: Matthew Smith <matthew@gentoo.org> AuthorDate: 2023-12-25 09:02:55 +0000 Commit: Matthew Smith <matthew@gentoo.org> CommitDate: 2023-12-25 09:03:27 +0000 dev-lang/erlang: add 26.2.1 Bug: https://bugs.gentoo.org/920682 Signed-off-by: Matthew Smith <matthew@gentoo.org> dev-lang/erlang/Manifest | 1 + dev-lang/erlang/erlang-26.2.1.ebuild | 183 +++++++++++++++++++++++++++++++++++ 2 files changed, 184 insertions(+) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e84fe19de28ec79f89bc70312ee277133d540e8e commit e84fe19de28ec79f89bc70312ee277133d540e8e Author: Matthew Smith <matthew@gentoo.org> AuthorDate: 2024-04-19 07:35:18 +0000 Commit: Matthew Smith <matthew@gentoo.org> CommitDate: 2024-04-23 13:10:29 +0000 profiles: mask <dev-lang/erlang-26.2.1 Previous versions contain vulnerabilities. Keep the old versions around for a month to give users more time to update. Bug: https://bugs.gentoo.org/920682 Signed-off-by: Matthew Smith <matthew@gentoo.org> Closes: https://github.com/gentoo/gentoo/pull/36320 Signed-off-by: Matthew Smith <matthew@gentoo.org> profiles/package.mask | 8 ++++++++ 1 file changed, 8 insertions(+) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=83baaf51d64218386514f6b3300f3019009ca4a6 commit 83baaf51d64218386514f6b3300f3019009ca4a6 Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me> AuthorDate: 2024-05-03 23:05:35 +0000 Commit: Matthew Smith <matthew@gentoo.org> CommitDate: 2024-05-04 07:45:15 +0000 profiles/package.mask: Fix over-reaching mask on dev-lang/elixir dev-lang/elixir-1.14.5-r2 is compatible with erlang-26.2 Bug: https://bugs.gentoo.org/920682 Signed-off-by: Haelwenn (lanodan) Monnier <contact@hacktivis.me> Signed-off-by: Matthew Smith <matthew@gentoo.org> profiles/package.mask | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=244daad0e820fa6080cd5c3f72ad4d82f914d861 commit 244daad0e820fa6080cd5c3f72ad4d82f914d861 Author: Arthur Zamarin <arthurzam@gentoo.org> AuthorDate: 2024-05-31 19:04:30 +0000 Commit: Arthur Zamarin <arthurzam@gentoo.org> CommitDate: 2024-05-31 19:05:57 +0000 dev-lang/erlang: drop 25.3, 26.0, 26.1.2, 26.2 Bug: https://bugs.gentoo.org/920682 Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org> dev-lang/erlang/Manifest | 10 -- dev-lang/erlang/erlang-25.3.ebuild | 182 ---------------------------------- dev-lang/erlang/erlang-26.0.ebuild | 182 ---------------------------------- dev-lang/erlang/erlang-26.1.2.ebuild | 182 ---------------------------------- dev-lang/erlang/erlang-26.2.ebuild | 183 ----------------------------------- profiles/package.mask | 7 -- 6 files changed, 746 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f2fb200d41fe5544d50b2a26d95ece85593a2966 commit f2fb200d41fe5544d50b2a26d95ece85593a2966 Author: Arthur Zamarin <arthurzam@gentoo.org> AuthorDate: 2024-05-31 19:03:27 +0000 Commit: Arthur Zamarin <arthurzam@gentoo.org> CommitDate: 2024-05-31 19:05:57 +0000 dev-lang/elixir: drop 1.13.4-r1, 1.14.3-r1 Bug: https://bugs.gentoo.org/920682 Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org> dev-lang/elixir/Manifest | 2 -- dev-lang/elixir/elixir-1.13.4-r1.ebuild | 40 --------------------------------- dev-lang/elixir/elixir-1.14.3-r1.ebuild | 40 --------------------------------- profiles/package.mask | 2 -- 4 files changed, 84 deletions(-) |