Archives
Archives
| From: | Mick <michaelkintzios@×××××.com> | ||
|---|---|---|---|
| To: | gentoo-user@l.g.o | ||
| Subject: | Re: [gentoo-user] Re: Difficulty fixing GLSA 201512-07 (gstreamer-0.10) | ||
| Date: | Wed, 06 Jan 2016 22:43:13 | ||
| Message-Id: | 1930921.Du3vUoqJVs@dell_xps | ||
| In Reply to: | [gentoo-user] Re: Difficulty fixing GLSA 201512-07 (gstreamer-0.10) by "»Q«" |
||
| 1 | On Wednesday 06 Jan 2016 12:27:30 »Q« wrote: |
| 2 | > On Tue, 5 Jan 2016 08:26:42 -0800 |
| 3 | > |
| 4 | > Grant <emailgrant@×××××.com> wrote: |
| 5 | > > > AFAICT, details of the gstreamer bug itself haven't been made public |
| 6 | > > > yet, and nobody is sure whether the unmaintained 0.10 branch needs a |
| 7 | > > > patch. See <https://bugs.gentoo.org/show_bug.cgi?id=553742#c11> and |
| 8 | > > > the following comment. |
| 9 | > > |
| 10 | > > So everyone is just living with the supposed security vulnerability on |
| 11 | > > their system? |
| 12 | > |
| 13 | > Not everyone. SUSE and Debian seem to have patches for this for 0.10. |
| 14 | > |
| 15 | > <https://www.suse.com/security/cve/CVE-2015-0797.html> |
| 16 | > |
| 17 | > <https://www.debian.org/security/2015/dsa-3225> |
| 18 | |
| 19 | I tried removing 0.10.36-r2, but stopped, because some applications (Opera, |
| 20 | Pidgin, farstream) currently require it. |
| 21 | |
| 22 | -- |
| 23 | Regards, |
| 24 | Mick |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |