Summary: | <net-irc/znc-1.9.1: Remote code execution vulnerability in modtcl | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | IN_PROGRESS --- | ||
Severity: | normal | CC: | ajak, satmd, sbraz |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [glsa+ cleanup] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 935428 | ||
Bug Blocks: |
Description
Sam James
2024-07-03 18:10:16 UTC
I've read through the git diff for znc-1.9.0..znc-1.9.1 and compared with the ebuild. It should be safe to just version bump the ebuild to 1.9.1 as-is. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=45b50f01229e0996103e007f68beed45194e6239 commit 45b50f01229e0996103e007f68beed45194e6239 Author: Sam James <sam@gentoo.org> AuthorDate: 2024-07-03 19:30:17 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2024-07-03 19:30:17 +0000 net-irc/znc: add 1.9.1 Bug: https://bugs.gentoo.org/935422 Signed-off-by: Sam James <sam@gentoo.org> net-irc/znc/Manifest | 1 + net-irc/znc/znc-1.9.1.ebuild | 197 +++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 198 insertions(+) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=c26479fb378aedb5634d1fae755c460a1b2da823 commit c26479fb378aedb5634d1fae755c460a1b2da823 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-09-24 05:14:03 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-09-24 05:16:48 +0000 [ GLSA 202409-23 ] ZNC: Remote Code Execution Bug: https://bugs.gentoo.org/935422 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202409-23.xml | 42 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 42 insertions(+) |