Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 936197

Summary: <net-irc/ergo-2.13.1: exploitable deadlock leading to denial of service
Product: Gentoo Security Reporter: Sam James <sam>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: IN_PROGRESS ---    
Severity: normal CC: ajak, sam
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
See Also: https://github.com/ergochat/ergo/issues/2149
Whiteboard: B3 [cleanup glsa?]
Package list:
Runtime testing required: ---
Bug Depends on: 936198    
Bug Blocks:    

Description Sam James archtester Gentoo Infrastructure gentoo-dev Security 2024-07-17 05:36:18 UTC 
See https://github.com/ergochat/ergo/releases/tag/v2.13.1.

"""
Security
    Fixed an exploitable deadlock that could lead to a denial of service (#2149)
"""

-> https://github.com/ergochat/ergo/issues/2149
Comment 1 Larry the Git Cow gentoo-dev 2024-07-17 05:54:15 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7a17ef4dd4007cbea04835f686476be4b740977c

commit 7a17ef4dd4007cbea04835f686476be4b740977c
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2024-07-17 05:35:43 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2024-07-17 05:53:05 +0000

    net-irc/ergo: add 2.13.1
    
    Bug: https://bugs.gentoo.org/936197
    Signed-off-by: Sam James <sam@gentoo.org>

 net-irc/ergo/Manifest           |  1 +
 net-irc/ergo/ergo-2.13.1.ebuild | 78 +++++++++++++++++++++++++++++++++++++++++
 2 files changed, 79 insertions(+)
Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2024-09-22 03:30:36 UTC 
Can we cleanup?