On Wednesday 06 Jan 2016 12:27:30 »Q« wrote: > On Tue, 5 Jan 2016 08:26:42 -0800 > > Grant <[email protected]> wrote: > > > AFAICT, details of the gstreamer bug itself haven't been made public > > > yet, and nobody is sure whether the unmaintained 0.10 branch needs a > > > patch. See <https://bugs.gentoo.org/show_bug.cgi?id=553742#c11> and > > > the following comment. > > > > So everyone is just living with the supposed security vulnerability on > > their system? > > Not everyone. SUSE and Debian seem to have patches for this for 0.10. > > <https://www.suse.com/security/cve/CVE-2015-0797.html> > > <https://www.debian.org/security/2015/dsa-3225>
I tried removing 0.10.36-r2, but stopped, because some applications (Opera, Pidgin, farstream) currently require it. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
