i'm pretty sure this doesnt affect anything in the portage tree (outside of libast itself) ... Eterm for sure isnt setid anything ive already added 0.7 to portage Release Notes: -------------- This release also contains a security fix for CVE-2006-0224, a buffer overflow vulnerability discovered by Rosiello Security (www.rosiello.org) which could lead to privilege escalation in setuid/setgid applications using LibAST's configuration engine. This includes any platforms on which Eterm is setuid/setgid (e.g., setgid utmp). Thanks to Angelo Rosiello and his team for discovering this issue and coordinating with me for the fix and release. More details on the vulnerability are available at http://www.rosiello.org/en/read_bugs.php?id=25
arches, pls test and mark stable, thx ... bah, this phrase is getting annoying, i need to find cool alternatives ...
stable on ppc64
ppc stable
Stable on hppa
sparc stable.
stable on x86
amd64 done
Stable on alpha + ia64.
ready for glsa
GLSA 200601-14