CVE-2020-28935 (https://nvd.nist.gov/vuln/detail/CVE-2020-28935): A symbolic link traversal vulnerability was found in the way nsd and unbound writes its PID file while starting up. A local attacker with access to the nsd or unbound user could set up a link to another file, owned by root, and make unbound overwrite it during its next restart, destroying the original content.
x86 stable
arm done
amd64 done
ppc done
Looking good on ppc64. rdep gnutls fails tests (bug #760899). # cat unbound-758974.report USE tests started on So 20. Dez 23:48:56 CET 2020 FEATURES=' test' USE='' succeeded for =net-dns/unbound-1.13.0 USE='-dnscrypt -ecdsa -ecs -gost -http2 -libressl -python redis static-libs -systemd -threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt -ecdsa ecs gost http2 -libressl -python redis static-libs -systemd -threads' succeeded for =net-dns/unbound-1.13.0 USE='-dnscrypt ecdsa -ecs gost http2 -libressl -python -redis -static-libs systemd -threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt -ecdsa -ecs -gost -http2 -libressl -python -redis static-libs -systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt -ecdsa -ecs -gost -http2 -libressl -python -redis -static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='-dnscrypt ecdsa ecs gost http2 -libressl -python -redis -static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt -ecdsa -ecs gost http2 -libressl -python -redis -static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='-dnscrypt ecdsa ecs -gost -http2 -libressl -python redis -static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt ecdsa -ecs gost http2 -libressl -python -redis static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt -ecdsa -ecs gost http2 -libressl -python -redis static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='-dnscrypt ecdsa ecs -gost -http2 -libressl -python redis static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 USE='dnscrypt ecdsa -ecs gost -http2 -libressl -python redis static-libs systemd threads' succeeded for =net-dns/unbound-1.13.0 revdep tests started on Mo 21. Dez 00:42:22 CET 2020 USE='dane' FEATURES=' test' failed for net-libs/gnutls
ppc64 done all arches done
(In reply to ernsteiswuerfel from comment #5) > Looking good on ppc64. > Thank you!
Please cleanup.
GLSA Vote: No Repository is clean, all done!