Comment 1 Johannes Huber (RETIRED) 2012-03-21 11:29:36 UTC

=dev-libs/libzip-0.10.1 is now in tree.

+  21 Mar 2012; Johannes Huber <johu@gentoo.org> +libzip-0.10.1.ebuild:
+  Version bump. Upstream security bug fix release. Fixes CVE-2012-1162,
+  CVE-2012-1163. Bug #409117.

Comment 2 Tim Sammut (RETIRED) 2012-03-22 13:49:41 UTC

Thanks, much.

Arches, please test and mark stable:
=dev-libs/libzip-0.10.1
Target keywords : "amd64 hppa ppc ppc64 x86"

Comment 3 Agostino Sarubbo 2012-03-23 10:30:10 UTC

amd64 stable

Comment 4 Jeroen Roovers (RETIRED) 2012-03-23 14:38:58 UTC

Stable for HPPA.

Comment 5 Brent Baude (RETIRED) 2012-03-25 14:16:19 UTC

ppc done

Comment 6 Paweł Hajdan, Jr. (RETIRED) 2012-03-27 15:01:29 UTC

x86 stable

Comment 7 Brent Baude (RETIRED) 2012-03-28 20:10:57 UTC

ppc64 done

Comment 8 Sean Amoss (RETIRED) 2012-03-28 20:13:33 UTC

Thanks, everyone. 

Already on existing GLSA request which is ready for review.

Comment 9 Johannes Huber (RETIRED) 2012-03-28 20:19:53 UTC

Thanks all. Affected version removed from tree. Remove kde from cc.

Comment 10 GLSAMaker/CVETool Bot 2012-03-29 11:44:11 UTC

This issue was resolved and addressed in
 GLSA 201203-23 at http://security.gentoo.org/glsa/glsa-201203-23.xml
by GLSA coordinator Sean Amoss (ackle).