From: | Mick <michaelkintzios@×××××.com> | ||
---|---|---|---|
To: | gentoo-user@l.g.o | ||
Subject: | Re: [gentoo-user] Re: Difficulty fixing GLSA 201512-07 (gstreamer-0.10) | ||
Date: | Wed, 06 Jan 2016 22:43:13 | ||
Message-Id: | 1930921.Du3vUoqJVs@dell_xps | ||
In Reply to: | [gentoo-user] Re: Difficulty fixing GLSA 201512-07 (gstreamer-0.10) by "»Q«" |
1 | On Wednesday 06 Jan 2016 12:27:30 »Q« wrote: |
2 | > On Tue, 5 Jan 2016 08:26:42 -0800 |
3 | > |
4 | > Grant <emailgrant@×××××.com> wrote: |
5 | > > > AFAICT, details of the gstreamer bug itself haven't been made public |
6 | > > > yet, and nobody is sure whether the unmaintained 0.10 branch needs a |
7 | > > > patch. See <https://bugs.gentoo.org/show_bug.cgi?id=553742#c11> and |
8 | > > > the following comment. |
9 | > > |
10 | > > So everyone is just living with the supposed security vulnerability on |
11 | > > their system? |
12 | > |
13 | > Not everyone. SUSE and Debian seem to have patches for this for 0.10. |
14 | > |
15 | > <https://www.suse.com/security/cve/CVE-2015-0797.html> |
16 | > |
17 | > <https://www.debian.org/security/2015/dsa-3225> |
18 | |
19 | I tried removing 0.10.36-r2, but stopped, because some applications (Opera, |
20 | Pidgin, farstream) currently require it. |
21 | |
22 | -- |
23 | Regards, |
24 | Mick |
File name | MIME type |
---|---|
signature.asc | application/pgp-signature |