ackle 14/12/10 00:46:13 Modified: glsa-201405-23.xml Log: GLSA 201405-23: Updated for backported fix in 1.3.0-r1
Revision Changes Path 1.2 xml/htdocs/security/en/glsa/glsa-201405-23.xml file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/security/en/glsa/glsa-201405-23.xml?rev=1.2&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/security/en/glsa/glsa-201405-23.xml?rev=1.2&content-type=text/plain diff : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/security/en/glsa/glsa-201405-23.xml?r1=1.1&r2=1.2 Index: glsa-201405-23.xml =================================================================== RCS file: /var/cvsroot/gentoo/xml/htdocs/security/en/glsa/glsa-201405-23.xml,v retrieving revision 1.1 retrieving revision 1.2 diff -u -r1.1 -r1.2 --- glsa-201405-23.xml 18 May 2014 17:30:09 -0000 1.1 +++ glsa-201405-23.xml 10 Dec 2014 00:46:13 -0000 1.2 @@ -9,12 +9,14 @@ </synopsis> <product type="ebuild">lib3ds</product> <announced>May 18, 2014</announced> - <revised>May 18, 2014: 1</revised> + <revised>December 10, 2014: 2</revised> <bug>308033</bug> + <bug>519936</bug> <access>remote</access> <affected> <package name="media-libs/lib3ds" auto="yes" arch="*"> <unaffected range="ge">2.0.0_rc1</unaffected> + <unaffected range="rge">1.3.0-r1</unaffected> <vulnerable range="lt">2.0.0_rc1</vulnerable> </package> </affected> @@ -35,13 +37,20 @@ <p>There is no known workaround at this time.</p> </workaround> <resolution> - <p>All lib3ds users should upgrade to the latest version:</p> + <p>All lib3ds 2.0 users should upgrade to the latest version:</p> <code> # emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/lib3ds-2.0.0_rc1" </code> + <p>All lib3ds 1.3 users should upgrade to the latest version:</p> + + <code> + # emerge --sync + # emerge --ask --oneshot --verbose ">=media-libs/lib3ds-1.3.0-r1" + </code> + <p>Packages which depend on this library may need to be recompiled. Tools such as revdep-rebuild may assist in identifying some of these packages. </p> @@ -50,5 +59,5 @@ <uri link="http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0280";>CVE-2010-0280</uri> </references> <metadata tag="requester" timestamp="Mon, 30 Sep 2013 23:22:44 +0000">ackle</metadata> - <metadata tag="submitter" timestamp="Sun, 18 May 2014 17:29:50 +0000">ackle</metadata> + <metadata tag="submitter" timestamp="Wed, 10 Dec 2014 00:42:02 +0000">ackle</metadata> </glsa>
