Details on request.
Lars will prepare patched ebuilds, though we suspect that the official releases will look a bit different. Ago and jer, will you be available on Thursday for rapid stabilization?
(In reply to Tobias Heinlein from comment #1) > Lars will prepare patched ebuilds, though we suspect that the official > releases will look a bit different. I read about his machine broken. > Ago and jer, will you be available on Thursday for rapid stabilization? Yes, I am
(In reply to Agostino Sarubbo from comment #2) > (In reply to Tobias Heinlein from comment #1) > > Lars will prepare patched ebuilds, though we suspect that the official > > releases will look a bit different. > I read about his machine broken. My dev machine broke but I've set up my notebook as replacement until I got time to fix my dev machine. So I gonna do the bump.
Now public via https://www.openssl.org/news/secadv_20150709.txt
*** Bug 554326 has been marked as a duplicate of this bug. ***
Commit message: Version bump http://sources.gentoo.org/dev-libs/openssl/files/openssl-1.0.1p-parallel-build.patch?rev=1.1 http://sources.gentoo.org/dev-libs/openssl/files/openssl-1.0.2d-parallel-build.patch?rev=1.1 http://sources.gentoo.org/dev-libs/openssl/openssl-1.0.1p.ebuild?rev=1.1 http://sources.gentoo.org/dev-libs/openssl/openssl-1.0.2d.ebuild?rev=1.1
herds really should be cc-ed on these bugs too
Arches, please test and mark stable: =dev-libs/openssl-1.0.1p =dev-libs/openssl-1.0.2d Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc x86"
(In reply to Agostino Sarubbo from comment #8) > Arches, please test and mark stable: > =dev-libs/openssl-1.0.1p > =dev-libs/openssl-1.0.2d > Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc > x86" My mistake, 1.0.2 series is not stable so is enough 1.0.1p Arches, please test and mark stable: =dev-libs/openssl-1.0.1p Target keywords : "alpha amd64 arm hppa ia64 m68k ppc ppc64 s390 sh sparc x86"
amd64 stable
x86 stable
arm stable
Stable for PPC64.
Stable for HPPA.
GLSA draft (e46c5ae2e) is ready for release once stabilization is done
Stable on alpha.
ia64 stable
ppc stable
sparc stable
This issue was resolved and addressed in GLSA 201507-15 at https://security.gentoo.org/glsa/201507-15 by GLSA coordinator Kristian Fiskerstrand (K_F).
Maintainer(s), please drop the vulnerable version(s).
Maintainers, can we please drop the 1.0.2 prior to <1.0.2d
Please drop <1.0.2d (in 1.0.2x). If not cleaned up or appropriate reason given it will be cleaned up in 30 days by security.
Maintainer(s), Thank you for your work.