CVE-2015-5180 DNS resolver NULL pointer dereference with crafted record type Upstream bug: https://sourceware.org/bugzilla/show_bug.cgi?id=18784 Upstream patch: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=fc82b0a2dfe7dbd35671c10510a8da1043d746a5
@ Maintainer(s): The vulnerabilities is fixed in >=sys-libs/glibc-2.25. Please bump the package and tell us if you plan to backport the fix.
this is in the 2.24 ebuild now
commit c46d0e63310fe68ed4bf6a3b0c3fbcc5d4d9918b Author: Matthias Maier <tamiko@gentoo.org> Date: Thu Jun 8 12:14:52 2017 -0500 sys-libs/glibc: bump 2.23 to patchset 8 Package-Manager: Portage-2.3.6, Repoman-2.3.2
This issue was resolved and addressed in GLSA 201706-19 at https://security.gentoo.org/glsa/201706-19 by GLSA coordinator Thomas Deutschmann (whissi).