| 1 |
glas-check shows that PHP on one of my servers is vulnerable but in |
| 2 |
examining the GLSA and comparing my version against it I see I am running |
| 3 |
a version that is unaffected by this GLSA - so do I need to tell GLSA to |
| 4 |
ignore that package or is there something else Ive missed? |
| 5 |
|
| 6 |
root# glsa-check -l | egrep '\[N\]' |
| 7 |
[A] means this GLSA was already applied, |
| 8 |
[U] means the system is not affected and |
| 9 |
[N] indicates that the system might be affected. |
| 10 |
|
| 11 |
200705-19 [N] PHP: Multiple vulnerabilities ( dev-lang/php ) |
| 12 |
200708-10 [N] MySQL: Denial of Service and information leakage ( |
| 13 |
dev-db/mysql ) |
| 14 |
|
| 15 |
root # glsa-check -d 200705-19 | grep Unaffected |
| 16 |
Unaffected: >=~4.4.7 >=5.2.2 |
| 17 |
|
| 18 |
root# eix ^php$ |
| 19 |
[I] dev-lang/php |
| 20 |
Available versions: |
| 21 |
(4) 4.4.7 4.4.8_pre20070816 |
| 22 |
(5) [m]5.1.6-r11 [m]5.2.2-r1 [m]5.2.3-r3 [m]5.2.4_pre200708051230-r2 |
| 23 |
Installed versions: 4.4.8_pre20070816(4)(16:56:39 08/28/07) |
| 24 |
Description: The PHP language runtime engine: CLI, CGI and Apache2 SAPIs. |
| 25 |
|
| 26 |
|
| 27 |
Huh? |
| 28 |
|
| 29 |
-- |
| 30 |
A |
| 31 |
-- |
| 32 |
gentoo-user@g.o mailing list |
Archives