Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: "Konstnatin V. Gavrilenko" <mlists@...>
Subject: Re: Days of yore
Date: Tue, 22 May 2007 16:32:59 +0100
the script I use to get email notifications of the affected ebuilds,
that also prepares a shell script that fixes the glsas.

might be useful for someone.


yours,
kos

#!/bin/bash
tmp="/tmp/.glsa-check"
update="/root/run-to-update.sh"
glsa="/usr/portage/metadata/glsa"

if [ -f $tmp ] ; then
 rm -f $tmp
fi

if [ -f $update ] ; then
 rm -f $update
fi

emerge --sync >/dev/null 2>&1
glsa-check -n --list affected 2> /dev/null > $tmp

arr=(`cat $tmp | awk '{print $1}'`)
BUGCOUNT=${#arr[@]}

if [ $BUGCOUNT -gt "0" ] ; then

echo -e '#!/bin/bash' > $update
echo -ne '#relevant as for ' >> $update
echo `date +%D` >> $update

 n=0
 while (($n < $BUGCOUNT)); do

echo "/usr/bin/glsa-check -f" ${arr[$n]} >> $update
cat $glsa/glsa-${arr[$n]}.xml | grep "# emerge"  | grep -v "emerge
--sync" | \
  sed 's/\&quot\;/\"/g' | sed 's/\&gt\;/\>/g' | sed 's/<\/code>//g' >>
$update
echo  >> $update
  let n+=1
 done

echo -e "\nRun $update to update the system" >> $tmp
 cat $tmp | /bin/mail -s GLSA_UNAPPLIED email_address@...
 rm -rf $tmp
fi





Sune Kloppenborg Jeppesen wrote:
> On Monday 16 April 2007 20:31, Sune Kloppenborg Jeppesen wrote:
>> I agree that policy should be updated to reflect this but that got bogged
>> down by other issues last I tried. I'll try again.
> Ohh well, I must have dropped my memory somewhere I forgot:(
> 
> I actually updated the Gentoo Linux Vulnerability Treatment Policy┬╣ last 
> August to reflect that:
> 
> "Kernels
>  Currently kernels are not covered by the GLSA release process. 
> Vulnerabilities must still be reported and will be fixed, but no GLSA will be 
> issued when everything is solved. 
> Note:  This policy should be changed when new tools are added to cover 
> security vulnerabilities affecting the different kernel sources."
> 
> ┬╣ http://www.gentoo.org/security/en/vulnerability-policy.xml
> 

-- 
gentoo-security@g.o mailing list


Replies:
RE: Days of yore
-- Linux Alerts
References:
Days of yore
-- Calum
Re: Days of yore
-- Calum
Re: Days of yore
-- Sune Kloppenborg Jeppesen
Re: Days of yore
-- Sune Kloppenborg Jeppesen
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Days of yore
Next by thread:
RE: Days of yore
Previous by date:
Re: Question about SELinux
Next by date:
RE: Days of yore


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.