Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 837623 (CVE-2021-31439, CVE-2022-0194, CVE-2022-23121, CVE-2022-23122, CVE-2022-23123, CVE-2022-23124, CVE-2022-23125) - <net-fs/netatalk-3.1.17: multiple vulnerabilities
Summary: <net-fs/netatalk-3.1.17: multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2021-31439, CVE-2022-0194, CVE-2022-23121, CVE-2022-23122, CVE-2022-23123, CVE-2022-23124, CVE-2022-23125
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Security
URL:
Whiteboard: ?? [glsa+]
Keywords:
Depends on: 915632
Blocks:
  Show dependency tree
 
Reported: 2022-04-10 10:17 UTC by Sam James
Modified: 2023-11-01 14:49 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Larry the Git Cow gentoo-dev 2023-10-04 17:03:10 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=53b4d537e4b7ebb3ea8a61abfff6fe52d4eadc99

commit 53b4d537e4b7ebb3ea8a61abfff6fe52d4eadc99
Author:     Hans de Graaff <graaff@gentoo.org>
AuthorDate: 2023-10-04 17:02:00 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2023-10-04 17:03:05 +0000

    net-fs/netatalk: add 3.1.17
    
    Bug: https://bugs.gentoo.org/837623
    Bug: https://bugs.gentoo.org/881259
    Closes: https://bugs.gentoo.org/829098
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 net-fs/netatalk/Manifest                           |   1 +
 .../netatalk-3.1.17-disable-ld-library-path.patch  |  34 ++++
 net-fs/netatalk/files/netatalk-3.1.17-gentoo.patch | 112 ++++++++++++++
 net-fs/netatalk/netatalk-3.1.17.ebuild             | 172 +++++++++++++++++++++
 4 files changed, 319 insertions(+)
Comment 2 Larry the Git Cow gentoo-dev 2023-11-01 14:47:13 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=c9c5667418b482993cc73092e63caaffa8554c8f

commit c9c5667418b482993cc73092e63caaffa8554c8f
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2023-11-01 14:46:24 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2023-11-01 14:46:58 +0000

    [ GLSA 202311-02 ] Netatalk: Multiple Vulnerabilities including root remote code execution
    
    Bug: https://bugs.gentoo.org/837623
    Bug: https://bugs.gentoo.org/881259
    Bug: https://bugs.gentoo.org/915354
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 glsa-202311-02.xml | 52 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 52 insertions(+)