diff options
author | Repository mirror & CI <repomirrorci@gentoo.org> | 2021-01-26 03:32:57 +0000 |
---|---|---|
committer | Repository mirror & CI <repomirrorci@gentoo.org> | 2021-01-26 03:32:57 +0000 |
commit | 9a395623077893c1f893e7b0ec1d92d5be69133c (patch) | |
tree | 096cb3b773b4281200894b52cf5ee91d19c7d117 /metadata/glsa | |
parent | Merge updates from master (diff) | |
parent | [ GLSA 202101-29 ] Fix version (diff) | |
download | gentoo-9a395623077893c1f893e7b0ec1d92d5be69133c.tar.gz gentoo-9a395623077893c1f893e7b0ec1d92d5be69133c.tar.bz2 gentoo-9a395623077893c1f893e7b0ec1d92d5be69133c.zip |
Merge commit 'c62c6ad356b90a9c035e6ac2c40715c5fb63a836' into master
Diffstat (limited to 'metadata/glsa')
-rw-r--r-- | metadata/glsa/glsa-202101-29.xml | 16 |
1 files changed, 7 insertions, 9 deletions
diff --git a/metadata/glsa/glsa-202101-29.xml b/metadata/glsa/glsa-202101-29.xml index e923601d055f..5f2c0b02b104 100644 --- a/metadata/glsa/glsa-202101-29.xml +++ b/metadata/glsa/glsa-202101-29.xml @@ -7,7 +7,7 @@ </synopsis> <product type="ebuild">openjpeg</product> <announced>2021-01-26</announced> - <revised count="1">2021-01-26</revised> + <revised count="2">2021-01-26</revised> <bug>711260</bug> <bug>718918</bug> <access>remote</access> @@ -15,7 +15,7 @@ <package name="media-libs/openjpeg" auto="yes" arch="*"> <unaffected range="ge" slot="2">2.4.0</unaffected> <vulnerable range="lt" slot="2">2.4.0</vulnerable> - <vulnerable range="lt" slot="1">*</vulnerable> + <vulnerable range="lt" slot="1">1.5.2-r1</vulnerable> </package> </affected> <background> @@ -40,16 +40,14 @@ # emerge --ask --oneshot --verbose ">=media-libs/openjpeg-2.4.0:2" </code> - <p>OpenJPEG 1 has been discontinued and any dependent packages should now - be using OpenJPEG 2 or have dropped support for the library. + <p>Gentoo has discontinued support OpenJPEG 1.x and any dependent packages + should now be using OpenJPEG 2 or have dropped support for the library. + We recommend that users unmerge OpenJPEG 1.x: </p> <code> - # emerge --sync - # emerge --ask --oneshot --verbose --depclean - ">=media-libs/openjpeg:1" + # emerge --unmerge "media-libs/openjpeg:1" </code> - </resolution> <references> <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-21010">CVE-2018-21010</uri> @@ -63,5 +61,5 @@ <uri link="https://nvd.nist.gov/vuln/detail/CVE-2020-27845">CVE-2020-27845</uri> </references> <metadata tag="requester" timestamp="2021-01-25T20:17:39Z">sam_c</metadata> - <metadata tag="submitter" timestamp="2021-01-26T00:15:25Z">sam_c</metadata> + <metadata tag="submitter" timestamp="2021-01-26T02:54:20Z">sam_c</metadata> </glsa> |