Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

dev-libs/confuse: Add fix for CVE-2022-40320. #30104

Closed
wants to merge 1 commit into from
Closed

dev-libs/confuse: Add fix for CVE-2022-40320. #30104

wants to merge 1 commit into from

Conversation

vaibhav-rustagi
Copy link

The source of libconfuse package didn't make a release since Jun 24, 2020 (https://github.com/libconfuse/libconfuse). Therefore, to fix the CVE add a patch.

Bug: https://bugs.gentoo.org/901089

dev-libs/confuse: Add fix for CVE-2022-40320.
4706857 
The source of libconfuse package didn't make a release since Jun 24,
2020 (https://github.com/libconfuse/libconfuse). Therefore, to fix the
CVE add a patch.

Bug: https://bugs.gentoo.org/901089
Signed-off-by: Vaibhav Rustagi <vaibhavrustagi@google.com>
@gentoo-bot
Copy link

Pull Request assignment

Submitter: @vaibhav-rustagi
Areas affected: ebuilds
Packages affected: dev-libs/confuse

dev-libs/confuse: @gentoo/proxy-maint (maintainer needed)

Linked bugs

Bugs linked: 901089

In order to force reassignment and/or bug reference scan, please append [please reassign] to the pull request title.

Docs: Code of ConductCopyright policy (expl.) ● DevmanualGitHub PRsProxy-maint guide

@gentoo-bot gentoo-bot added maintainer-needed There is at least one affected package with no maintainer. Review it if you can. assigned PR successfully assigned to the package maintainer(s). bug linked Bug/Closes found in footer, and cross-linked with the PR. security PR that needs to be merged promptly as it addresses security issues labels Mar 13, 2023
@gentoo-repo-qa-bot
Copy link
Collaborator

Pull request CI report

Report generated at: 2023-03-13 21:58 UTC
Newest commit scanned: 4706857
Status: ✅ good

There are existing issues already. Please look into the report to make sure none of them affect the packages in question:
https://qa-reports.gentoo.org/output/gentoo-ci/8442cd70ee/output.html

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
assigned PR successfully assigned to the package maintainer(s). bug linked Bug/Closes found in footer, and cross-linked with the PR. maintainer-needed There is at least one affected package with no maintainer. Review it if you can. security PR that needs to be merged promptly as it addresses security issues
Projects
None yet
Milestone
No milestone
3 participants
@vaibhav-rustagi @gentoo-bot @gentoo-repo-qa-bot