From 769e3ca9454f9e3ee9773cf44bd2a5074bd3af71 Mon Sep 17 00:00:00 2001 From: David Michael Date: Wed, 17 Apr 2019 20:55:08 +0000 Subject: [PATCH] bump(metadata/glsa): sync with upstream --- .../portage-stable/metadata/glsa/Manifest | 30 +++++----- .../metadata/glsa/Manifest.files.gz | Bin 441389 -> 441860 bytes .../metadata/glsa/glsa-201904-17.xml | 55 ++++++++++++++++++ .../metadata/glsa/glsa-201904-18.xml | 44 ++++++++++++++ .../metadata/glsa/glsa-201904-19.xml | 48 +++++++++++++++ .../metadata/glsa/timestamp.chk | 2 +- .../metadata/glsa/timestamp.commit | 2 +- 7 files changed, 164 insertions(+), 17 deletions(-) create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-17.xml create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-18.xml create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-19.xml diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest index d81eff2c93..f1e0751125 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest @@ -1,23 +1,23 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 -MANIFEST Manifest.files.gz 441389 BLAKE2B 093e93262bf483b8a2bcc307a67ed12b9a008b091206b3199a591d3750f160ecd8d405fa2d589c50e6bc2325d61eb79b1d8446527955e000c6a79db6428aa4c4 SHA512 94781b7611851868089b1a2920af50bbaa946ae05421f4009d9efb8e3c447cfa812f2ffd4557a4e7723d44d2c3de8d5f75a986179eb0599749c45f97424f8f9a -TIMESTAMP 2019-04-15T22:38:45Z +MANIFEST Manifest.files.gz 441860 BLAKE2B 42660ae46077e4a9e7437540059276e5d8c03bba0cbf41ae4d1528525d01c1f1aa20986d326ca29f6b004f9ed6d1432a8d0d2105937171bf162dea272120291b SHA512 1f444ca7421a7efb1ae619b481942be43c32f3ca1b877de6feb5d595fd24bd2f5594ee8a4f3f194f5a5b6f9006b608396118df784309aa0cc2de9b3e6a17424a +TIMESTAMP 2019-04-17T20:08:50Z -----BEGIN PGP SIGNATURE----- -iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAly1B/VfFIAAAAAALgAo +iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAly3h9JfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEUx RDZBQkI2M0JGQ0ZCNEJBMDJGREYxQ0VDNTkwRUVBQzkxODkyNTAACgkQ7FkO6skY -klCTTQ/+LoyNjk0WaohJfdGwelXIvxc8PK+Es4GejfugAVE8Kw4j5avBTRncesRy -0K66JbwrVDHapotEGCgebVXlF/aorinnWl/9fImUIgcQ7carpH8w8OZYSFmT6ZLI -Wz2VKDJUS/3bhHw4no+MwXYKkG/z4q+EEo29aXVtDs7tWh8I+XNn3Bc5pf7eOyWv -Wlf1FqK84D/qoRJJO8P5azocqAQ+B0H0U3J6JkWcms4ks/czq+xTqLMki7o8/J2O -8IeJLOK5kDyYG8wMOLhX2Btnth+2stQDv+vcA+UFcAWkuyPv5VpR7rZizZONz4I8 -AcGfd598jYoU1WBvxZ+xDpDe6ryG80RvztSVF3l80t78MoR30vXhLuHHYh3rR9cX -Uey+Mdx9wpz7sg3B+kRpvRDxpQ++u6uzhC5hTgmRazVWcJYx27yC7DCMHWWvtto3 -h7aF4gX3e62pUno2pkQAWvjjwEi5elXNeFNE2gK0+jl6msCthv0C5eMEmmjX26m3 -wIWdTifPdJt3ACOO4E9MGLm5qn1uMuSVtujiqrwuB+tUF9H5m4unZHKXwatNKr7M -lOw3p7j57k0UXu8GyH1lzyxin9ThsA8zTFCeJaoRGmxM1kmNgRV8eGTkllt2xvqZ -+KPpPIoy9Lo/txXM0B1lYoL7B64KWj383VOcx8Eaplc0pgUlti4= -=Zh34 +klCosw/+Jsxx5eQYhfqE+nllUNMvYqnA4JGQvF4sx9iE4taLkgObjgtPJtplUmFY +we74NGpt6LzSHq2RBCw8A6Dmely8aHrIR8qI0WX+LzsPfTKBTiMRUFEkP1kbG5SA +MgRROa7kwt8BIMgHbBVjg09ZTZ3TDme7HDitK/a+jtpCaqOtHsGJTVrrzcRyyGj4 +zR//jMy6QFU5z6pQAqcUF8qVy0fAQhGx3Q5vO5/FOFt/vo1VC1fsTRnFPi09wv4s +/hr22RIL/l//CVDCTargPtnXGQGkIualx6ANdvkU5OUsxyppLgMHnt10cJQ21hCS +CWwQOpql6rXJ1t5ziQwzNaQUzjoVGf3yEu09hUjPkuJCMVszI/6xwDec35iRi/19 +9nfVvwlFC3RRCxWTN4928WOSTgCMF9gKQzs1kVuvsENDXq7u9LvXhXdfgg5LK53R +m7LAEPez2Fs++LMp9S7q/ldjM6bksdoN+dMiT9jVYf3mNxR4SRoLaghJ9JTr61Ne +d5XnILqhUz6vIRSqFjZnoF3FVlNK3uubRoh8QUWwHoKCFqMzNeGlpP/6c2YbyQB7 +mfSlVfQN4EuKzDHBv+PAja1oqfTRd8kKfRWpPdFZN4HHeQvRdE3uLyVQMm/BOw2x +uyn2vCYItXQv+Tq3kZ8o9IlsvbczE9Xna0BlRqMEa/6RCUYIrH8= +=6T8P -----END PGP SIGNATURE----- diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz index 6400182233420009c5a982ceb318ab08320ed028..8a1a92e731237f70059a7d9d76c3757284189daa 100644 GIT binary patch delta 4972 zcmV-y6O-(%_!@-#8i0fWgaU*Egam{Iv<9`Re`k^-Tdo|@`Co-rAdr{+0t7)53D6F1 zLqZ=yK>~j5A3BHGL_ifasKG)$DHSz1r0~kdzQ|iq;??aF7sNE8im}<59Y{5x&tBAHz!}Pj5D7`L)4;4Rt^k|t% ze++1;b1DGb^y>?N(V&70pCE!A9c0NLR_pr}gRApG5FK?RawKFHRi!outZl&=L&gabqTBfn?GxTNa`P_z| zK(v>ONRc zInD*xyPVS^x&TD1)L0oOptVdoir$#I)RT>$PpkFAq%5zT=&W?p7@6z0luM-oqf}`6 z7YI;DY8tpnWtnEr4u}A4&BieXDXw2HORE==8Zr zXL@bx$-)L-PV#}|UOWgOEp;(LerTsvD@7g2_RyV9d9fID&XeCJQ_QJp5co-cgoRM`eis5)3F)9wB(zO04k;|DWx)SL^!~qrbh7 z<@2$79yLn5HQ~*a{_2ZXe~CVJ=YATY&Xs=#ewhw@Zd*HBQfhLl7@;JJp(AK&;pbA2 zA?t%;N6ODkdL&nY#w3K@mcjbqym}A{7&~Un`ZV1IxpKvMbpXGQePDg$m_-2*BMYdZh!CH5QWkzb%;Q>(zf`eBY_=JM^L&xTuNhx#U z6}PwoHnlg);>$1F3By|LfDF|z?rnCwl+!$ubEd@hEnRzTMGexO%?Xv)w3GpyU4ZZM zY?VI{+|UeH!OW-Gf5+gkUhFfe|ML0pR|!uIU~)>BHuRJ)DBVQ19bckUcXP_N8UhcH zSjZLAxEb_XP0{DJwu((|Nj zwOV2OPHR-hb!kcK`no51fu-bJ1p!q<8C$J1DXwcH%Mq4pe*tqS>fzI-6EF(UtS?!C z;#0lP$YX^lii*8(hVfLTM8-(8v(}L%j8G_b-5wR(NGIoV8>(G z#42!0$xVaI`BZ8m$31)xKUmB4HMgEckX>4I67FwieJ;xTndoeGj#u(DNuU9E2> zC0G81<@J3Wf46#UT#ZZCc_zOdT^P+r5l0e7qFyK^vf?`R`Q|)H*)m{$FlPy#jQ(>bbr=*KZ-LuaZV zWj`onl5^IStfR0K$;)RGTz#`CFJ5>OTqII%TUYF2SOrA~g^acXI z?hke1FOxFAa^jkrqVQ2CnSvcXyirv4lxf|`NFV7V`;?SKKgy|UwBd)kEaaOQ_atqR z`cNoIuDTNz+_Yl=0KZ;dhwM}Gy^fu#AZ@1}pGqBu{#~up?lk}{lI|^@xjAGxQnk-D znoe`me-hP{Kam{H-7*nDu%SS0Y?8a5Z4?CxY8&)9Lm(aHByE6QDMsXn`25@ z{*bnYLl$#gGMDr-&pC266f!uZ`H@M8Ng6#Ue`g)|)vB%aU-b1_vZ`I(n6^;!rC*jM1n6k1fw7d_K~^%z>H_8QpY~w>7ZpG8 zOY(8GSF|np>1?HMblTrm%U7NV;?x(Db6n1-k6F9YaPk6Rz~$s%3~fR6ULSUDbX{63 zf9VO-@b$fOImtN$&0AwgXH%&vFK19CK}202<~d2^&#f6&U1T!=!}S~G2_I8V!^X#l zZ@HSq-C<)a4qNtbMVG|Ewp$|6s1_PpPLkFsDZvR*Q&vz|VJrDuWV@)+HC2!P#FUBv zjo~bsu9ICU5F#WY^8QQjG{1ab-w?zNe|C;h1LK>~end=9H~< zJS(4x>f zFrxF*?1e{p+svCc~O zC{i?Dudf_|B0W1%tB(s~B>*o44BJ)3~4CzVVY{`XqPRz-d1YZs^*EN+ABGN`ne?BK?kA=N_Q2-cm zM3!be#^@J+OT}PC6CX{Dr!G9Ba$VQBR6u_;!zmi4apP!=SC6eiDb^ZX(zB9Y%klpeC`jc^;1=sSKLwvm!Y%<7JtadnENd; z`xvA`i}{ZT6o6%2TFWxL2hD7K*V9jvKXI7<;^+h4wWp9X5YkP;s7ek0c5KQHpA+zM z&&ap&p+u?6ydSEs$0Ioa(f~pY*qV|eKH9L3QEP1n(4&r+ieWsrPt#q8oIPQ$Oo=tM z^gGU>HfgEI&5K%iP%3@8iGSZOWI4TQ=^ipawr`IQG~B0)gng5tRdWOU)*=yEyHF_r z+5Qxn-NEx}CwXm?0%8nzY!m;r&9#=uSwe>_DphX?)SczKio9?;8N=Cum48=@TTIp7 zvP_z%Qg0njtxi3dodjJQ#5)}@4zQ_wonU852J?2K*rRYokA%5>jel<-H5m2q@w2j{ zapw;Hu3A@v1zVg362YbVbezwJ)%u=K?D0)KqmC+XCQsj|Tt><`hCigjI2U$LEcHY6&)C}vCLOjT*8bttZHIjTrA(WBiu04^U%J8f5 zag49btnx~(o8WD0TYod9OpuEE6?UZ@lcTw zVS;pBCyS~$Ol6hje6-0&Q+wy`Kb@`q(>r~eTuDy!0&p(HCO5^u*xy=(6ip~@5=M!q zU2Uwy39yM|S2wM=DPD@pobvzV(5SaT6~bXOLodFDN-;rchJPjZ7tqw}YIjo~_@Vaf zFZZLV29@2P+u49-3>`|pP+BLo17rYuP)LFLC~0c(*al`Nh7>}d4wl_EF?Qm>=z=VJ zITj8;@P+9*MTDy8M6V;jLj?|s_>X7nyQ&6;zq*0akE1V!k|+qjtBMskRM8UBvA@o4 z=AgA@OI#L;QGZgU{A%L)IMmS8e^YsIy?(V2X;TrvuAmMDFUUM@moR=mK%R)B(wB3o z4jldD#9P;wLs6W|X@$xrkZ$deoer;34tH`HXPWz&v}p$elUaOR42uYNIn~)qltecv zCV)X?YsJ;iVaG|y3?LxZJP~BeErylBDIA6f`+3zw><4_0J zw%g_7_pSDlLIl~dpQ@qz6}1a>1~^M?JjDLxFoia%mo76yCC_1*!{;G{kQ@{w^uFdt zUp~i0br#9ollP8ISTl+9vdZW_kR9b2*07ZB3V%e@vM0Z(5`3BkR0q|V&xh3{l5iH<;jC(%Qv3;ndF%-^DW9Oc>snSBl0whJt6Y7UO#uic?fWZ9`235(Y3vAWyZiGcY@ zoqt=SnxyDNH0ScS@}a!!4j0I)qP)!6feh8904x+|_DgfHS4L68cg~`@s?XT+A%HsY zRAYMio+4fhL-=x^mTbqK=A}yGyyd20rsIE=>?L!Jz<2$%FQ0#3$lBWr8Bj0BKpttT zwx{0jZhj0;**4FB6%vMJ)>$=u&kEq?zJEKl_PjYq>Rz)+VE36wSs+-IYcyz|>bNb{ z4SabAi-@MkToSWK)Q9KwLPoX{tYspuB9~Xb30}9}VrOBUh<)2kvvo@Z23NBn%g~DrFs!xGuNd!^6RJ%Dnqr zghVZL0Vxz5PbFtOdLD5PlKxWd<>y23D|1upUy`m;7nfrHw+NNWk=*<^V1G`|1*QfP zSqDfxO#@6NqrfVv{>$bk-Cf6Gy*W*%^UGOl;;+FkQb!tFHJoG)0P^pt-FGn%fN@s>{SU_XIx|jcOmL0C?tuH`^{x z)cAEQSxW|dHLyD{J1OT$fqxqm+&PDG8nL{vy!{7lMl#oyEalU4e>#{`Iel;Mba00h zU44#pfY_!-+GgFsP646OcetU;Ue$|@i_jlK=N?etHw}B$ji1p$(Yc$sx%7ps`(d?y z=6v36qLqSr(@JGL0l?f6IZ(H6Sp^hjRH7>>GFCX>Wv0zqH;Xi7(|@%+)InHQfRNS~ zYR8PK)BU<;P(wvU1XP8z`Ks+`^PRVjt=0c~wscgNz${sU1N2F!REjIiL!SukPx-ZBb`Lei|3T8cxI_- zQc*z5YV-%^XvujRY28nD^*L;XI3@L2N=>-hc4xa(TfDlnWq-O6Qb=to6IsNUw9u8! zccd_VyoosBr$YuT!DD5qyx%K)b(u{>m4+2(pJ^BYy1o1$Z% zUHZ<_L9eJu$#0Zz>Ne!azZdrm>|s+%Qp(}vi#9Lw<;_XVqdwP0;9iQ9+|y3zaEhIs z;&dhZvNsib)I%89sTbAXs2m9!c36kZ9f3m8)#HmZ+tlUZs5#|NTILe%=7(}|4pQB+ qHT8<<@o)e3umAoZ|M@Tf^ylCInE&|m{Ff2D1{4S`3DLC~%M1X{?5U*y delta 4512 zcmV;R5nt|v{2HzJ8i0fWgaU*Egam{Iv<9`Rf9H}TORgNz`CElnAdtaNkP8q5O(Z}& zU__A6gV2zG*ZYUgVSO^8&K~sOqHf(xe%#HR?q;@?OWcl;?U7Y&aYCK8BcO&U`nGZN zUX^A7is+j7HF5_=k<65OGtc|bqdRJoViHqjtIrmkRJV#~YipQZmj~4AQut8u<42E{ zf2qWPmO4WL;8VZ802mD_xbO)g*wI0j{9(1eUop5kF9gv*N5Qe|XmftHC_KP;q&r0- zr1C`TbJ#TrqG(4;BrYI+wji*!84^nXWKHJ_m`OV48) zege^6E+W-75dJ~#I%gT4TNgp=99x*he^&f?>biLb-M^FQYZOemPf%~qDFm$b!Op9`EMZJI~tpn?&f7J$In8cLe0MY`aYPMKa2sO_R_e-zx6 z;u`ZB_8mnX?|a^1stl6hCGS(j#nF_`!Uugu7nnQDR#hD72RqGl-+6w*YCjRK1#y5onMb$`7>rrKg z8Mt0pEF8ztB!&KMScyjZiEe6{KyzBJ2 zNN0L&>&e0fUrzFY9WP9jNr@UAUI_KHnW~Z1_)5aek6}R89 zwojaH=YtZf6|Y%?voMM~s&FtX@$*m{1ct#C*Rr#$LtoP<(OC7vYJGQ7e}=bepbgC6 ztM39@)Qx1@m3E@{ZvNDRAi{?8socbA8$-4}A3-@Dr1Ro0uV>3zG|~{;98|o&>-swI z7QzlQpnAlQ(-W$TK@5sg9KYxkDBm;-BrKj~>zr0SZkwt(s!D325}FxO?iaiX)CeDEBya%x4l~5uNdv^ zg)EQ9>Uq>C@z#VlL;ckkt^N{y?8bf?f#=$P27Z|id~RDiOHyibsu-apilHNDYT@Tn zkRj`XVnxc&OnM|&fyQhIyQRVU;Jj)O3K%U8I~F0s@(&k5(EdYoZu4(@rR1dcPFKt z6R)_%6|ktiyDYx^vYjxj)e1;g4ddQs$4fcQk(@Inwr}a$V=HQq?krBIyr!iL;Oqi? zmuIW|f#AAkxC&-If2VZ}4(r7}llm{84}X>L)Bq-@glR!f`GV3+WZUs2+Ujmj*;Yf~ z0TK(jVj4GtUaKkk+;*x0Kw}$(&Dx6FKhTd-%axuCKX$6*U0X>$F`k+a(P23yye99a5))q!L!P>aVNy z-AT!ne_?rje;@m;9vfHVvgqlhf_-dJAHLq<=*s~>}< z;{w1*NTDh-0GMjN924Pk-y9flDn9{P67y86nS8aE1M_6dRh4ztL*aCeYU}!OOuL~o z>_^!Th)iADLJn^@aGQV=-nwp~UQ74 X-5JFnefPb28FL`p7;dCDD&ERE;+Lz{^6uiE&TT z7O8cGlI&G?!h)N2bO7Mj%WJp$lzgvarz%L>smG^MhoOI0YgoMopheQXW|`ru>QIaPF3g2!ag-YU62h_p^JC}Vb=kS3pLx!atD%s=VVfVBgqWn!e}i(?fnTlKTKiSc;NKo0!m{{*L3#&p zE0Q0M8l4g;DLZ!*s(ABOhGbQ%x-o5`=1adUDFob>5r+~~Tr ze^}B1)bRDaaXHC31kGDxNM}=Fm6tQ9HbF#PALf`O^5@nJt1hw`fZ_U$@`R6RPs7H? zhi|!>#ob|JEDl@tZ$+2H!M58*qFyB$T27MIp_Jf+s3|Kbtgw}QF0x%z=^ECfKQUAh zpwXR0({-{b1ww=*MBaa?o#vPC>l=c&f5FaCwcKgb-rUj|k6?S+MS2ttzDhC|2W%)w zsP|TgW<9tDk<^^A<(Z55Smq1B+~g#&Aw_O3I$m;7dz<#U-0~W z^JyvtD*57^9e2_Jc#dgnr&2=%f5^vXaE&fiR<%b2_*C}@CqZC$Y-p8z-)g7vuW72H z3q!IHrck5PZLBBYy4oYEUhVc&>YRa``iIr}X4R#39_j2w zz=+OIvm>&3P{31%vJQ{oW0Xebb1I&bU_DN66rT+pu2&7D>g*kLe&pAcf4DumSZAes z6e;Sj*H?}}u{}FUs{q@JWJXLWpkj9FJS?_pOssZ?29cmR$E&!GZI=o`L4X-%u+r1f;}u?c~NdUgYX?q@V^hM^`p~#zALkUg;WSsHB08N&cfg(ndOr; zV%ULgN-$f(`s6;u(;`z)e}jJ5m`>KbIWdDT3BK%Pu4^hKM5K*Ue?BK?kA=N_Q2-cm zM3!be#^_i7mWsiOCO(=PPhEI=<+`qZset}yhEp_7={Wz;>JD(*aKIxWgBSKLwvm!Y%<7Jt~0G51?y z_Ay9>7V{qwC;-cvZ7s|29yGJ{T~9wv{={Mai=z*G*Pg3 zdq%#E4<$-n=KWB8Js!ypkOmNHz;-Gr;-d}g7`4`R06pr6sTjs{`!wBj$k`M2%9O~d zZNK9jYLk|Vy?Id!52(_on}7KILYC8;mhNHa$M)^tz>j(2Uh-FEp9Qa z{mgdKJQcomIJG+UV0IF8Z4mEtKtI5y_Ui;IQ+6svDk)X=( zi}^UlS7uguCD+~HZGUN7Go?(Biu)B<*=xNMt=os2-GNvu1iLg&^?go|WxwTci1v73 zWJH)?yRMT(RUD?W%5py1!fyo9l#zGQlLIcnp!-Tf!T>}3!zU3%W9h#J8@ui zLAHB277jr0h3Oh1LREC4*Ad{M0tY1iCE6olVZ#R?p%D1~(F zud$msXl;2WE`JMTlvHVdHSxS3YG~@esXVw|zgmc#QxU+Xpbmr=WFEIm7{4DNPsCB_ z%ehnsj(&3Dt?SF7D9+`yLS++3w^qo8!>iEYMlRz_b3c|VE_2#x>GLr3SK6w=W_1e)PtarV#={ka zFxv|rRaY}v)z|B*bGrE?d=CwhnEJl8sb}K%x~H0sGV> z)A^6>Xn%e7KE-=lP&5ZvgKmuFRBn#^3iaSul*^ht$>jr<|J53K)0bDs#pgdIh?M&{ z)WNmvcKP^ytG%QUL3Zq?YUqAN?LwUa&bBrlV*hfOLQmLBvok{_&o0g3^AJKv4hj-_ zU-P3cpW~uBi)8M}d&MTKnZ$WnWpp3Nj`DOlEPvEpfrwi6p#!tR|6! zOX*sZtfRB%Md9kYb4PcoWji5U?GWrHQz>C(q(k1L@$HAz`q2P?Q?-78o?343JMyf` zg09pAqTElShfWvzX-zwSi|%pIwFxr&8n!(zu(YW;IEue^g+7sGr)nfD+G&l|-PTS7 z%zsbn+#1y+MJJ*;m%q#hdf6N~Ks!IV_AZOM~bFfwhso^_k(OlJMZ21rX z4;*StFW*zdi=hi&?jdD6_B1anjq{dI4Kp48t7I=b*9d&qU+ePu_l4|ydm#hrgC#wY!-g!&A1+Ghl^;A~{8)`{4+%{0#@rSg_JxHjPB zQg<1HQZWF!Lv_=LV1PpJluYV?; zBp4W55|*RxsMSHn26*Skx5B)I4u)Eo2GA!)OCcot;^Q5A0|LKw7UBYQbtr9tP)Xp9 z&TA{Y6Qj^qR4=Gn$^{Vr?zGa8el9aPE!RO~Cd?fr>;c|jP{jRQ`ne8z*u&!jqU(~@&fiHSuL>x@PF197J8vXT~HZ2+A==0rm{c<7T4qJ!)lcu=JW1X zZ5jC1iqO=!)Dt$}OegpaoI2UVo!vW95y0!<9;%N{D6?U>xK%0Zh{ScdtsWi@rbF}Y zu?UG;=mJt898V=@JbE5+50d^;=gZFr@@wa&*1sfOr7kYT{%;W~%#qyuIDcSH&IP6h z5?KRCJ*NhkN=AWIRQ!0e=)Cw~MtD7Z7aavHI`u)OsLZALQJmMrDdb9)+?Q#pNa?{sj7 z6kUCebb#2RN7`oH!Ab$4(RaA6%U;!sjf>D8L+2h);5T(^)h9orgQ9acbNA90vhLsh y?O*@>KmPMy{^`%Z|1tmZ=lJ7)|M~u}|NiiY|MSNmfB*Au{|C_lG6jW?#|!{M*x=v* diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-17.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-17.xml new file mode 100644 index 0000000000..16ee810064 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-17.xml @@ -0,0 +1,55 @@ + + + + Patch: Multiple vulnerabilities + Multiple vulnerabilities have been found in Patch, the worst of + which could result in the execution of arbitrary code. + + patch + 2019-04-17 + 2019-04-17 + 647792 + 647794 + 652710 + remote + + + 2.7.6-r3 + 2.7.6-r3 + + + +

Patch takes a patch file containing a difference listing produced by the + diff program and applies those differences to one or more original files, + producing patched versions. +

+ + +

Multiple vulnerabilities have been discovered in Patch. Please review + the CVE identifiers referenced below for details. +

+ + +

Please review the referenced CVE identifiers for details.

+ + +

There is no known workaround at this time.

+ + +

All Patch users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=sys-devel/patch-2.7.6-r3" + + + + + CVE-2018-1000156 + + CVE-2018-6951 + CVE-2018-6952 + + b-man + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-18.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-18.xml new file mode 100644 index 0000000000..3c23d4bace --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-18.xml @@ -0,0 +1,44 @@ + + + + libseccomp: Privilege escalation + A vulnerability in libseccomp allows for privilege escalation. + libseccomp + 2019-04-17 + 2019-04-17 + 680442 + remote + + + 2.4.0 + 2.4.0 + + + +

A library that provides an easy to use, platform independent, interface + to the Linux Kernel’s syscall filtering mechanism. +

+ + +

Please review the CVE identifier referenced below for details.

+ + +

Please review the referenced CVE identifier for details.

+ + +

There is no known workaround at this time.

+ + +

All libseccomp users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=sys-libs/libseccomp-2.4.0" + + + + CVE-2019-9893 + + BlueKnight + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-19.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-19.xml new file mode 100644 index 0000000000..71f6cdb43a --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-19.xml @@ -0,0 +1,48 @@ + + + + Dovecot: Multiple vulnerabilities + Multiple vulnerabilities have been found in Dovecot, the worst of + which could result in root privilege escalation. + + dovecot + 2019-04-17 + 2019-04-17 + 677350 + 681922 + remote + + + 2.3.5.1 + 2.3.5.1 + + + +

Dovecot is an open source IMAP and POP3 email server.

+ + +

Multiple vulnerabilities have been discovered in Dovecot. Please review + the CVE identifiers referenced below for details. +

+ + +

Please review the referenced CVE identifiers for details

+ + +

There is no known workaround at this time.

+ + +

All Dovecot users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=net-mail/dovecot-2.3.5.1" + + + + CVE-2019-3814 + CVE-2019-7524 + + BlueKnight + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk index 62cd880947..d7258a36de 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk @@ -1 +1 @@ -Mon, 15 Apr 2019 22:38:42 +0000 +Wed, 17 Apr 2019 20:08:47 +0000 diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit index d11ec825e1..0773d72858 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit @@ -1 +1 @@ -9b59bd6cf27bbcd9bc148340e6758177e493f624 1555361601 2019-04-15T20:53:21+00:00 +6c18ba31f4c4516ed01d1b3ca04795cfadc11f86 1555526007 2019-04-17T18:33:27+00:00