Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 843278 - media-gfx/ditaa: pulls binary jars of vulnerable batik-1.9
Summary: media-gfx/ditaa: pulls binary jars of vulnerable batik-1.9
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Zac Medico
URL:
Whiteboard:
Keywords:
Depends on:
Blocks: CVE-2018-8013, CVE-2019-17566, CVE-2020-11987
  Show dependency tree
 
Reported: 2022-05-08 09:48 UTC by Volkmar W. Pogatzki
Modified: 2022-05-08 18:06 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Volkmar W. Pogatzki 2022-05-08 09:48:49 UTC 
dev-java/batik-1.14 is in the tree and stable.
Comment 1 Larry the Git Cow gentoo-dev 2022-05-08 18:06:13 UTC 
The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=646a38cba8ee59c62879d56fe948b929c19e9c00

commit 646a38cba8ee59c62879d56fe948b929c19e9c00
Author:     Zac Medico <zmedico@gentoo.org>
AuthorDate: 2022-05-08 18:02:36 +0000
Commit:     Zac Medico <zmedico@gentoo.org>
CommitDate: 2022-05-08 18:06:09 +0000

    media-gfx/ditaa: 0.11.0-r1 revbump with batik-1.14
    
    Closes: https://bugs.gentoo.org/843278
    Signed-off-by: Zac Medico <zmedico@gentoo.org>

 media-gfx/ditaa/Manifest                           | 78 ++++++++++---------
 ...{ditaa-0.11.0.ebuild => ditaa-0.11.0-r1.ebuild} | 91 ++++++++++++----------
 .../ditaa/files/ditaa-0.11.0-batik-1.14.patch      | 17 ++++
 3 files changed, 109 insertions(+), 77 deletions(-)