519936 – <media-libs/lib3ds-1.3.0-r1: backported fix for vulnerability in GLSA 201405-23

Bug 519936 - <media-libs/lib3ds-1.3.0-r1: backported fix for vulnerability in GLSA 201405-23

Summary: <media-libs/lib3ds-1.3.0-r1: backported fix for vulnerability in GLSA 201405-23

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	B2 [glsa]
Keywords:

Depends on:
Blocks:

Reported:	2014-08-14 18:30 UTC by Amy Liffey
Modified:	2014-12-10 00:41 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Amy Liffey gentoo-dev

2014-08-14 18:30:11 UTC

"Please adjust GLSA 201405-23 to declare:
<unaffected range="ge">1.3.0-r1</unaffected>
<vulnerable range="lt">1.3.0-r1</vulnerable>"

I used patch which other distributions have too.
https://bugzilla.redhat.com/show_bug.cgi?id=633475#c3
https://build.opensuse.org/package/show/graphics/lib3ds


Thanks

Comment 1 Sean Amoss (RETIRED) gentoo-dev

2014-12-10 00:41:27 UTC

I am pushing the updated GLSA now.

Thank you for the update and I apologize this took so long fix the GLSA.