922875 – net-p2p/qbittorrent-4.6.2-r1, sec-keys/openpgp-keys-qbittorrent-20161227: stablereq

Bug 922875 - net-p2p/qbittorrent-4.6.2-r1, sec-keys/openpgp-keys-qbittorrent-20161227: stablereq

Summary: net-p2p/qbittorrent-4.6.2-r1, sec-keys/openpgp-keys-qbittorrent-20161227: sta...

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Stabilization (show other bugs)
Hardware:	All Linux

Importance:	Normal enhancement (vote)
Assignee:	Eli Schwartz

URL:
Whiteboard:
Keywords:	CC-ARCHES, SECURITY

Depends on:
Blocks:	CVE-2023-30801
	Show dependency tree

Reported:	2024-01-25 00:59 UTC by Eli Schwartz
Modified:	2024-01-25 07:43 UTC (History)
CC List:	2 users (show)

See Also:
Package list:	=net-p2p/qbittorrent-4.6.2-r1 =sec-keys/openpgp-keys-qbittorrent-20161227
Runtime testing required:	---

Flags:	nattka: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Eli Schwartz 2024-01-25 00:59:22 UTC

Please stabilize

Comment 1 Eli Schwartz 2024-01-25 01:01:33 UTC

This is only about 12 days old, but before I realized there was a related sec bug I had cleaned the old 4.6.1 version (which was 2 months old). Sorry about that.

Comment 2 Eli Schwartz 2024-01-25 01:10:43 UTC

Also for context: I'm not aware of any serious issue with 4.6.2, or even 4.6.1, just the sec issue with 4.6.0, so I've opted to ask for stabilizing the earliest version still in the tree which satisfies the security bug.

This gives a whole week of additional testing in ~arch which seems worthwhile, I can just stable .3 on the regular schedule.

Comment 3 Sam James archtester

2024-01-25 04:22:25 UTC

amd64 done

Comment 4 Joonas Niilola gentoo-dev

2024-01-25 07:43:55 UTC

x86 done

all arches done