tomwij 14/06/08 13:08:59 Modified: ChangeLog package.mask Log: Mask VLC ebuilds that are affected with security bug CVE-2013-6934.
Revision Changes Path 1.9056 profiles/ChangeLog file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/ChangeLog?rev=1.9056&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/ChangeLog?rev=1.9056&content-type=text/plain diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/ChangeLog?r1=1.9055&r2=1.9056 Index: ChangeLog =================================================================== RCS file: /var/cvsroot/gentoo-x86/profiles/ChangeLog,v retrieving revision 1.9055 retrieving revision 1.9056 diff -u -r1.9055 -r1.9056 --- ChangeLog 8 Jun 2014 12:53:55 -0000 1.9055 +++ ChangeLog 8 Jun 2014 13:08:58 -0000 1.9056 @@ -1,11 +1,14 @@ # ChangeLog for profile directory # Copyright 1999-2014 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/profiles/ChangeLog,v 1.9055 2014/06/08 12:53:55 mgorny Exp $ +# $Header: /var/cvsroot/gentoo-x86/profiles/ChangeLog,v 1.9056 2014/06/08 13:08:58 tomwij Exp $ # # This ChangeLog should include records for all changes in profiles directory. # Only typo fixes which don't affect portage/repoman behaviour could be avoided # here. If in doubt put a record here! + 08 Jun 2014; Tom Wijsman <[email protected]> package.mask: + Mask VLC ebuilds that are affected with security bug CVE-2013-6934. + 08 Jun 2014; Michał Górny <[email protected]> package.mask: Mask multilib libsoup & neon. 1.15772 profiles/package.mask file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/package.mask?rev=1.15772&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/package.mask?rev=1.15772&content-type=text/plain diff : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/profiles/package.mask?r1=1.15771&r2=1.15772 Index: package.mask =================================================================== RCS file: /var/cvsroot/gentoo-x86/profiles/package.mask,v retrieving revision 1.15771 retrieving revision 1.15772 diff -u -r1.15771 -r1.15772 --- package.mask 8 Jun 2014 12:53:55 -0000 1.15771 +++ package.mask 8 Jun 2014 13:08:58 -0000 1.15772 @@ -1,5 +1,5 @@ #################################################################### -# $Header: /var/cvsroot/gentoo-x86/profiles/package.mask,v 1.15771 2014/06/08 12:53:55 mgorny Exp $ +# $Header: /var/cvsroot/gentoo-x86/profiles/package.mask,v 1.15772 2014/06/08 13:08:58 tomwij Exp $ # # When you add an entry to the top of this file, add your name, the date, and # an explanation of why something is getting masked. Please be extremely @@ -30,6 +30,18 @@ #--- END OF EXAMPLES --- +# Tom Wijsman <[email protected]> (8 Jun 2014) +# Mask VLC ebuilds that are affected with security bug CVE-2013-6934: +# +# A vulnerability has been discovered in VLC Media Player, which can be +# exploited by malicious people to compromise a user's system. +# +# Some ebuilds also have other buffer and integer overflow security bugs like +# CVE-2013-1954, CVE-2013-3245, CVE-2013-4388 and CVE-2013-6283. +# +# Users should consider to upgrade VLC Media Player to at least version 2.1.2. +<media-video/vlc-2.1.2 + # Tom Wijsman <[email protected]> (6 Jun 2014) # Mask gentoo-sources ebuilds that are affected with security bug CVE-2014-3153. #
