From ${URL} : There is memory leak at liblas::Open (liblas/liblas.hpp) in libLAS 1.8.1. References: https://github.com/libLAS/libLAS/issues/158 https://bugzilla.redhat.com/show_bug.cgi?id=1652612 https://github.com/libLAS/libLAS/commit/ba7346d349fb00b18d0c12e226ac3090eac25d7b @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=876f39a654bd15c8fe2dbdfcf07bcee2b7d10bf6 commit 876f39a654bd15c8fe2dbdfcf07bcee2b7d10bf6 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2019-05-24 19:09:44 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2019-05-24 19:25:47 +0000 sci-geosciences/liblas: Fix CVE-2018-20540 Bug: https://bugs.gentoo.org/678482 Package-Manager: Portage-2.3.66, Repoman-2.3.12 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> .../liblas/files/liblas-1.8.1-CVE-2018-20540.patch | 55 ++++++++++++++++++++++ sci-geosciences/liblas/liblas-1.8.1-r2.ebuild | 1 + 2 files changed, 56 insertions(+)
Arches, please stabilise.
amd64 stable
ppc stable
ppc64 stable
x86 stable
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c4d375359074fc6b39f5b7a144da34fdda4cd590 commit c4d375359074fc6b39f5b7a144da34fdda4cd590 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2019-06-22 19:03:50 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2019-06-22 19:38:27 +0000 sci-geosciences/liblas: Cleanup vulnerable Bug: https://bugs.gentoo.org/678482 Package-Manager: Portage-2.3.67, Repoman-2.3.15 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> sci-geosciences/liblas/Manifest | 1 - sci-geosciences/liblas/liblas-1.8.1.ebuild | 48 ------------------------------ 2 files changed, 49 deletions(-)