CVE-2012-4683 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4683): Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4682. CVE-2012-4682 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-4682): Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4683.
These will be fixed in 0.4.8, 0.5.7, 0.6.0.10, 0.6.4 and 0.7.0, currently in RC stages.
Bitcoin 0.7.0 has been released but is not in tree yet. Anybody working on this?
It's in the overlay, and "maintree" branch ready for merging to the official main tree - not sure what the delay is, I'll ping blueness.
(In reply to comment #3) > It's in the overlay, and "maintree" branch ready for merging to the official > main tree - not sure what the delay is, I'll ping blueness. done
Are these ready to go stable?
0.6.4_rc4 (not yet in tree) could probably be stabilized, but isn't officially final yet. 0.7.x has a number of new bugs that would make it non-ideal to stabilize.
In light of bug #462046, isn't this bug obsolete? We should be targetting bitcoind and bitcoin-qt 0.8.1 which I just added to the tree.
(In reply to comment #7) > In light of bug #462046, isn't this bug obsolete? We should be targetting > bitcoind and bitcoin-qt 0.8.1 which I just added to the tree. I'm all for stabilizing 0.8.1 ASAP, but it *was* just released. In the meantime, 0.6.3 is latest stable and still vulnerable to these.
Ping, are we okay to stable something? Pick a version.
0.8.4 was just tagged. I'll try to push an ebuild out tonight.