In bug 629466 Jeroen Roovers found that net-dns/libidn is vulnerible to the same CVE that net-dns/libidn2 is.
@Maintainer: Please state when this package is ready for stabilization as the patch has been added.
Needs another libidn commit, it seems.
@arches, please stabilize.
Stable on alpha.
Author: Jeroen Roovers <email@example.com>
Date: Sun Mar 4 14:22:16 2018 +0100
net-dns/libidn: Stable for HPPA too.
ppc64 done. last arch done
@Maintainer please proceed to clean tree from vulnerable versions.
GLSA Vote: No
@maintainer, please clean the vulnerable.