Best fix would be unbundling of course, stabilization seems second-best…
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=84265ce42f30769958eea8699e807ed307a2864b commit 84265ce42f30769958eea8699e807ed307a2864b Author: Sebastian Pipping <sping@gentoo.org> AuthorDate: 2024-01-27 18:41:35 +0000 Commit: Sebastian Pipping <sping@gentoo.org> CommitDate: 2024-01-27 18:41:41 +0000 www-client/httrack: Drop vulnerable Bug: https://bugs.gentoo.org/923035 Signed-off-by: Sebastian Pipping <sping@gentoo.org> www-client/httrack/Manifest | 3 -- www-client/httrack/httrack-3.49.2-r2.ebuild | 70 ------------------------ www-client/httrack/httrack-3.49.4-r1.ebuild | 83 ----------------------------- 3 files changed, 156 deletions(-)
Sorry for the confusion, I thought there was a tracker bug for that vulnerability, but that was for some old vulnerability.