From a7bb6d2d1c39630f078d46fdd36e87b94d0906de Mon Sep 17 00:00:00 2001 From: David Michael Date: Tue, 23 Apr 2019 02:25:44 +0000 Subject: [PATCH] bump(metadata/glsa): sync with upstream --- .../portage-stable/metadata/glsa/Manifest | 30 +++++------ .../metadata/glsa/Manifest.files.gz | Bin 441860 -> 442494 bytes .../metadata/glsa/glsa-201904-20.xml | 48 +++++++++++++++++ .../metadata/glsa/glsa-201904-21.xml | 46 ++++++++++++++++ .../metadata/glsa/glsa-201904-22.xml | 50 ++++++++++++++++++ .../metadata/glsa/glsa-201904-23.xml | 47 ++++++++++++++++ .../metadata/glsa/timestamp.chk | 2 +- .../metadata/glsa/timestamp.commit | 2 +- 8 files changed, 208 insertions(+), 17 deletions(-) create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-20.xml create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-21.xml create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-22.xml create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-23.xml diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest index f1e0751125..b477c9f4f9 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest @@ -1,23 +1,23 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 -MANIFEST Manifest.files.gz 441860 BLAKE2B 42660ae46077e4a9e7437540059276e5d8c03bba0cbf41ae4d1528525d01c1f1aa20986d326ca29f6b004f9ed6d1432a8d0d2105937171bf162dea272120291b SHA512 1f444ca7421a7efb1ae619b481942be43c32f3ca1b877de6feb5d595fd24bd2f5594ee8a4f3f194f5a5b6f9006b608396118df784309aa0cc2de9b3e6a17424a -TIMESTAMP 2019-04-17T20:08:50Z +MANIFEST Manifest.files.gz 442494 BLAKE2B ea6e4d13fed10b9dc7cd8a15d0158e6d9956295e733d9c58e7ad42757e48c466dcbf29b90a95203fa76be9b2ce5c403a61d560e58c77f3a9def96a74982c8d4f SHA512 822a6f67d551562039f8079880b76f65668f36de8582dd99f5fd15f76cc5aad88c83d341fb2a0b1d48467ad0bc300afe2adef18e2b56f85af07a5740e2e3c648 +TIMESTAMP 2019-04-23T01:38:53Z -----BEGIN PGP SIGNATURE----- -iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAly3h9JfFIAAAAAALgAo +iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAly+bK1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEUx RDZBQkI2M0JGQ0ZCNEJBMDJGREYxQ0VDNTkwRUVBQzkxODkyNTAACgkQ7FkO6skY -klCosw/+Jsxx5eQYhfqE+nllUNMvYqnA4JGQvF4sx9iE4taLkgObjgtPJtplUmFY -we74NGpt6LzSHq2RBCw8A6Dmely8aHrIR8qI0WX+LzsPfTKBTiMRUFEkP1kbG5SA -MgRROa7kwt8BIMgHbBVjg09ZTZ3TDme7HDitK/a+jtpCaqOtHsGJTVrrzcRyyGj4 -zR//jMy6QFU5z6pQAqcUF8qVy0fAQhGx3Q5vO5/FOFt/vo1VC1fsTRnFPi09wv4s -/hr22RIL/l//CVDCTargPtnXGQGkIualx6ANdvkU5OUsxyppLgMHnt10cJQ21hCS -CWwQOpql6rXJ1t5ziQwzNaQUzjoVGf3yEu09hUjPkuJCMVszI/6xwDec35iRi/19 -9nfVvwlFC3RRCxWTN4928WOSTgCMF9gKQzs1kVuvsENDXq7u9LvXhXdfgg5LK53R -m7LAEPez2Fs++LMp9S7q/ldjM6bksdoN+dMiT9jVYf3mNxR4SRoLaghJ9JTr61Ne -d5XnILqhUz6vIRSqFjZnoF3FVlNK3uubRoh8QUWwHoKCFqMzNeGlpP/6c2YbyQB7 -mfSlVfQN4EuKzDHBv+PAja1oqfTRd8kKfRWpPdFZN4HHeQvRdE3uLyVQMm/BOw2x -uyn2vCYItXQv+Tq3kZ8o9IlsvbczE9Xna0BlRqMEa/6RCUYIrH8= -=6T8P +klBFXBAAmTHnJ+9Kf9ZeiyVnrMWPlcyUFeY0IbrilUWWYRnygvwIYcsHqTOFHVk3 +Qdz3PW71QVXcK1pObQMIoEoT+3XgYa6gcFmNkyfNni3xHNs1gw+yTr+h8hGcsNl7 +AWyODlCZrzLZns9T3ev8UdUPgLpjfPxRMJ76AcAXirxDZIZUo45fd3Lpc8fQ9ZTU +FgPjRuiwONjS6MMNFxoXaoH3fzSKjvLvAgXnnV9ScOy2pVrdXExvCc1LvKxvjb1r +cSoMFJ3RrqVZMCmL5dAQ5Yj5FsYINFrjgWf4d8z/LLx4s8wZ3wc0RsI2Rz2JFVKG +yGstXmE+n0dVkKYfai9ZT4uGQZCjS8/WNXiGShgCzEMR72Dy3GZuwxRijLMclAqs +FqBoz3SQ1Li+WHli2L5AS2FDq+xixlx1dREb/Dn7V5V+Rv5mVgFzcUtVSSjtUklw +lggR/RS6ayr4OuHNqslNjOuy6dkncyXK8+17fwskxAKurp9ZHtp263DJ4rA3pkXi +pCCDaqJQs1pOJlfoGp0UKYjrsCMG/QAe/FGhAZoZrgkmttqIm5EHeBRXWnBiOpuG +YqPjhQ1k1F6g8KR2nVtVt1CmEsxv0uHDSpsdR+iIEfMZ6q7qehsSJf944RneqRVw +UBxbtACDiOScMl1LH4bUY78obFeZt6nkSLFQDkJ+BnUj12Vqlc8= +=tjB4 -----END PGP SIGNATURE----- diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz index 8a1a92e731237f70059a7d9d76c3757284189daa..765fa663bc36f1fed948fa3bef1fe43c06b7e47e 100644 GIT binary patch delta 5586 zcmV;@6)oz7{2Km%8-RoXgaU*Egam{Iv<9`Rf9IAfyN(>u{~m=$V36W_0EXco8}JN7 zNrW55g$?wbKfD(AqpIC?KN^jLefFu6$jr#h$OviW7H-Fx<;beG_)t1+M?eiz^ljtj zy*kYV6wx*D>&ycfMKV+B%{=d*M|ae2iAhYgTD`a6q`Fl^Td84sT^^KPQ{h9!k8eF% ze;y?UwA48j0B-vA1;A)f!G%u{!HzDnS;~$*Qiwm?&W8E?IwDo*$ z!%raE%SEJ01K}U!u5*^DbL%2#wQ~!ze@MlDny#BI=>Da=kkS#$WfdKyb)7go;viY~ zJE=L&1=ySJX%SrjB35cV88@J{Ogf6*n7Y)HjqguS>xW5MUOCZS>83F<*KaA8N(Dx# z(DW}5ppeuwaFfdN=p}9Q)^UNGq+Rpq98@sk(*h7UTc?udYLPB#OSepC1Zw-xe>Dmo zN^zafJmnol9q)hpTNQYg^3>aaXFHQpp*p;1T6{k|65a!G@4QPVDpSvnB|OQ)&6giP6Cf0e}~IaD3QI`s@2GD$l=nTsJcuwx5kq%FG?}kF5p9_ z&qX@ZYg%r~iwW{WJFQwN>PWVS?sUqF#h`PZ{5F|lZcQ7194crVs4er7y?x@1SQ;DC4+8|UITyZTs%R2NmjTRcKet25ne@x2o)(w=v z48HnqphewCwq5BUdT;Wl9t4qUI5*`cnly%Ne?Ee8JVe~YwkO$mW_lqJ}{4?;&l%w;M43<{t2gv<<;R6@o)Wmob}J=V>+Y~Tky>?lKvaU@;FShGp&I^uvR-DLp6+Rn;kFZG|%LoDY1P^*B)C@gLG$eLgh6rWdLUr z@Lle$@&|$&n&B##e|b0i7#!BgdnWZy$A`a4cxnKXQ^I3IPx*qmmT!=&rU!mGFbkuUw&X^K<1=@FTXHKgF$I zC)3x{3fp&DqdKljOIp|0y~ztKCFd##s2a-HYNbhWT^m`hf3Q>wm_tzyN1JZIC_uBm zWCe<|nxoyy4qmE_9m*+dkmRCB_Pi#$JMpC(NOrdrR1!7+K=LzJtb7PP>Q z+p>wLz%3;=4Kn9lsfk?oa2|f}EZ5iGzKR+E>(!(SW?8~Ozu=0;qeJSWAgKi_uj(J4 z);E)qEC0gsfBHU-OFcHO#*}rQ$!|v&M)Og`k;D-xo?lvYt9_i3GWuK{S0bZ_y@%^}N? zsvXy8e>%-gOH@<-L~=QI%R~ghh61&*N$$S4Q4}bsZP4cqfpnCUv{{xWE9vrN&FWj= ztsZ)>s?YGDPW)z4>ht%i6G`rZh)vfcAUK>3r**BXO-WZo3KE%&0vKD-!+l&=g(>4N zjwxmNP1+hRSv+gXT++`x=g8Gi$l#FXMB~ns$?vsqHW1fXDfZ9)Bg6fobp5vr@ok+<8nrQ%-T%D%?p45my?4rv<20Beb~9t ze|2f`NKc@K)A!EhBrVQ}yUi zOsNRa81AC!I@y&1Awm)&uYc&B=9lm5e;b0hz|K*%+(**hv!yd`!S*AI^e7yBm1HId z>{OCa@5?SC-c6!gAB0oU6+$^tn)5|K06BtbfDU;@veQjH=E$1|4qS@ca7?pq-g18P z=9H~<+$*0`M*xoHqk^b`ut=G3YE-vDFF`_m{>!F@HmpT^+NX1;9Ae*UWm9`lf6#%X z^r%UP#H0nF?KU}_U~!dFp$;O~4yX0c^Wkaz_`bfW{^V&XK8=6cM3eqn@)#TnO1S_> zIn%94^s^^lt5;z0pfj2bbOmD^7%urxNs&hi0{!X$p;=``BAs(;-m4a(lpw3-B9lJw z1>5h;r>hjG9khf%TjV@JIl_LUts(Xc#Ag~!5T4i6C+G+f2 znyTo+kZgo0)aZ5_&l7N6<%p_RyFHZ#XCSBX;c0zW)up^SJ;d{CeW3EqEKjVfwT>tB zSk6uYMs$CgH)1sp3b^a3tix^iI7=ts14(I(tW*e;@gEC2o%{ zp0m7^(wAo->pJW5MYKI z;Ldpv^QpJ=gbmFkY2AZ+Y(n5c-J5`_CzVVY{^!Hf`q61_@5(G-Ar%5u&9d@WXW`@~ zndOr`VyXjaN>sLl^@sZqf16FFpa%UZF`cY=abixsB=~ZWx#pvk5Ro=o`tvzCdpy|b zL;+yL5m}n?7^7eOEfs?mO}sTVestj(mFv33Q~~|g45w(E%F(h8BUiQTlTr8VQE}%^ zkNcXM;<=V+Q^w0^4UfAWf33W2F?8FlA5 zoD0T$Z3Q8fSlm4p$#Ig3jErZ`60^e~6(W}5;XP<(>s(JiP5#7X{>jk? zzH3h*XCS1Dgi)0m{_WV59X=nx%k@OQje`=UF7qB#&)Xw80MYlrljo?kTXc*Lo+~w+|O@ zhr(JR*rjo*^EpA5e9O}%+T*4oBf~%l&ARkEZtS-G4e;{ik>Owz-nr z=mp?RmwmPdJ%3kIANZ#B>@WADM-3{wKbN}!%@{hAexbBZY6r*w_Mngg^-BrHD zp(F~z@2X-24pp>-bnUP6HgnM0vL!AH#VDy#el_uY9DizP>c6QxxL&_nh_pu$z^9#`UC6I3Ikex2CQVw@=8E2aNnY3vK z1Cv=CE`~*fn{IXX5+%_+6cfN8vbEys=dk0XWCoCu%it23Y8?Fja8M{-Wn3TdR{XG^ z2p(w8Y=0|PZBj%;()5(aJr3?>6F&^=r78KnD)_7p^X6$1Nw}0gYm#+z_q-@vU3cynZnbPDgxL?lZZee;R?c)-_h@|k;c5M7 zfWN6)-#||-H~1a-smg+`)CHp4PojrT7y4;EGJlKiag=Kh$n0y`woS0KsX4fczjlW{ zk!2s%NO)+?9;HZN5g=Pfr4GhP3yWG|U(1itx? zefj)5A!~0FGN4|LfjrVwZBM;l-TWBtvTdFLDTW zBKB=F&DJfcyk#z~oz&%)?p6#+#Q^9I)lKszjWn>|S#Hfps*M%@e7T;M+ZI#~O-)wP zoWJ$M)B14)3~$p{lTH#0oLdr>qkrzI)j`Gvc<0+$VctRqr&^c>&^tz3Atd|a@Q!x_ z0>5+?;sOkHD5XHCBydIdwGlhh!Gl&h_JRr~F4$uL?L<-D2T_<0E*2|sqY z+@MguYv^Yty{2Sd5tYkxXpq>!STfhn;R1s40`ijVmdF6S^o6CoP@*oVjDH=ajGtOl z*`NZ8>+$vBX_cSK=iRT`Ht?ktp{a4HCv3iX+~7BG>SRyt?7Jfs0lW_Gq59~AG6}=Q zSCz7kNL-i8?&0BLI%VEHc!on)qw+i`0?E zRt+ba1AzQ{YIh$Wo>u*F_kQysqnH@Gm$@g4!!{mAJI-^H5&;gxCB21;RCBxGLv@)L zpS{7)MWfmWDgd7O;LWzn9W{O(OV*MBUk&UI%udRAQs4#!cg~@lMt>|XEN}lon~}`5 zB}+Ma?so@sDyQ%5eO%ljMOVj>E)d)FNZYJC*eM`1I)@v&>{Y$kxCs3=bnXQOe$%j5 z-S`L4sDKz~TUO`b8Prfw5dl>pZN6$d+MM&&v9u{Zn&|NMfZykUzGWp@yzKh(tB~oAYmJ)B_z{5{fa|u_qAML@w zKxYJy%W&aKz4LT zAoA{_YPO`!Q_#gl80z02{8UtRod~Rn?{Xxn;d^nam})vyto`CH*)>)-7;OIQpD25G zf`q7LZs{ayUfict#WPDylZpabR--?-M@!DrNb9<@PoKk9h*MIZrPPGkwmaKYZE<#Y z%XA~8klIuxvVVw^w9u8!ccn0WyoohJ)&dBE`4X|pjXsG$#0Zz>Ne!azZdro>|s+%Qp(}xi#9LM%bSy! zM}4l1z_k=9xgI;A!!35+6sIfMm%XUiqsG8)y{P_1<$p-nu){iJ?g$i$t{z{U*`_WJ zN6jsN(lVE5H$Rk%bCK$jt*KW;|Io4d(Hbf5OiDs@u(k)5c%CXg= z9mlwtofRU8BvmSWFbB08MR1vN3xLhn@d2HFPssjm<1Wf@Y+F%I^{BWt8%mRL%thq; z4qG9C@eXeu18k5^AZpbR0Tt$A9s5ALV@=Ts|)81nFjk4BaAguy@j^ zEh{G|y!!HbA*-c0l~dKcqR*U$Uc-wB5w&WmDs_^6cV{N7s*Ww6huTqkQL%HY-*8oW zDs&21+a<+XzX1Owk!XoLGRfX{hio!JzS4moZsN~`ti8KUM(&8Sw&i#bq{|zdeP3S5TV+dK8gn0#8q59@ z=tgdm+EjID#im7AplEgMujS5?R~%N%I=ZSs<6a051JDnqalV!^spHh}Mo2at?Q>4I z#b;2HRXLIQ(nv}&og6$+{F3RSBXP&f`gBOcq&y`~a>S;bWe|1d%JE%!%)C7=nNyOw zQcidphnqAUPQLfh&U(l~x6R{-#aR;}|5hbN*wJpD^k4q%U;q6-{_|h{>CeCZ@%-)2 g^N;`i=j*@z`@~j5A3BHGL_ifasKG)$DHSz1r0~kdzQ|iq;??aF7sNE8im}<59Y{5x&tBAHz!}Pj5D7`L)4;4Rt^k|t% ze++1;b1DGb^y>?N(V&70pCE!A9c0NLR_pr}gRApG5FK?RawKFHRi!outZl&=L&gabqTBfn?GxTNa`P_z| zK(v>ONRc zInD*xyPVS^x&TD1)L0oOptVdoir$#I)RT>$PpkFAq%5zT=&W?p7@6z0luM-oqf}`6 z7YI;DY8tpnWtnEr4u}A4&BieXDXw2HORE==8Zr zXL@bx$-)L-PV#}|UOWgOEp;(LerTsvD@7g2_RyV9d9fID&XeCJQ_QJp5co-cgoRM`eis5)3F)9wB(zO04k;|DWx)SL^!~qrbh7 z<@2$79yLn5HQ~*a{_2ZXe~CVJ=YATY&Xs=#ewhw@Zd*HBQfhLl7@;JJp(AK&;pbA2 zA?t%;N6ODkdL&nY#w3K@mcjbqym}A{7&~Un`ZV1IxpKvMbpXGQePDg$m_-2*BMYdZh!CH5QWkzb%;Q>(zf`eBY_=JM^L&xTuNhx#U z6}PwoHnlg);>$1F3By|LfDF|z?rnCwl+!$ubEd@hEnRzTMGexO%?Xv)w3GpyU4ZZM zY?VI{+|UeH!OW-Gf5+gkUhFfe|ML0pR|!uIU~)>BHuRJ)DBVQ19bckUcXP_N8UhcH zSjZLAxEb_XP0{DJwu((|Nj zwOV2OPHR-hb!kcK`no51fu-bJ1p!q<8C$J1DXwcH%Mq4pe*tqS>fzI-6EF(UtS?!C z;#0lP$YX^lii*8(hVfLTM8-(8v(}L%j8G_b-5wR(NGIoV8>(G z#42!0$xVaI`BZ8m$31)xKUmB4HMgEckX>4I67FwieJ;xTndoeGj#u(DNuU9E2> zC0G81<@J3Wf46#UT#ZZCc_zOdT^P+r5l0e7qFyK^vf?`R`Q|)H*)m{$FlPy#jQ(>bbr=*KZ-LuaZV zWj`onl5^IStfR0K$;)RGTz#`CFJ5>OTqII%TUYF2SOrA~g^acXI z?hke1FOxFAa^jkrqVQ2CnSvcXyirv4lxf|`NFV7V`;?SKKgy|UwBd)kEaaOQ_atqR z`cNoIuDTNz+_Yl=0KZ;dhwM}Gy^fu#AZ@1}pGqBu{#~up?lk}{lI|^@xjAGxQnk-D znoe`me-hP{Kam{H-7*nDu%SS0Y?8a5Z4?CxY8&)9Lm(aHByE6QDMsXn`25@ z{*bnYLl$#gGMDr-&pC266f!uZ`H@M8Ng6#Ue`g)|)vB%aU-b1_vZ`I(n6^;!rC*jM1n6k1fw7d_K~^%z>H_8QpY~w>7ZpG8 zOY(8GSF|np>1?HMblTrm%U7NV;?x(Db6n1-k6F9YaPk6Rz~$s%3~fR6ULSUDbX{63 zf9VO-@b$fOImtN$&0AwgXH%&vFK19CK}202<~d2^&#f6&U1T!=!}S~G2_I8V!^X#l zZ@HSq-C<)a4qNtbMVG|Ewp$|6s1_PpPLkFsDZvR*Q&vz|VJrDuWV@)+HC2!P#FUBv zjo~bsu9ICU5F#WY^8QQjG{1ab-w?zNe|C;h1LK>~end=9H~< zJS(4x>f zFrxF*?1e{p+svCc~O zC{i?Dudf_|B0W1%tB(s~B>*o44BJ)3~4CzVVY{`XqPRz-d1YZs^*EN+ABGN`ne?BK?kA=N_Q2-cm zM3!be#^@J+OT}PC6CX{Dr!G9Ba$VQBR6u_;!zmi4apP!=SC6eiDb^ZX(zB9Y%klpeC`jc^;1=sSKLwve@tb|s5{T$yI{=s zRuEE&#o1$#94D#B$e8;rG5Z*#LW}v22o!*2U0TaBya&x}eb>`ZlRt5o|KjKa-?gWZ zGZ4~E!l+6O|8{K34xbb7a?i-O@u5Vi%e)_|ug4=f0MYa7T zi-diXp;dDO{MI57S-Vgv0NMT&ncczjYA1PZlLBH4cWe{?wavAb$XP;%EGkuR2-KbB zyNbMUI~l{-ft7z(i(5?9-m*-Zr&4bnPOVNon4JV&8^k*ue=rWPseGMaXG#Y1cB9y% za7B-VxqXdqAT=2E@bR;L?PweqcJ)@2)mn=Et z!NN2JgoZOLOV(zTktNFHjMbHtwo>GgRITTDawhjVWd~V4Z+70n)zl2@ltMhns2W88 zZZ(p8Mj@1uU*xVmk)X=(tMYM-ugt9SO0JvWZEIUIrA&~D`xRK(YrPZg+lQOop|Dm6 zc4?gI`@WADsRotZpWE4hW(*xlzff8ywF6`Tdr(M$`Y35?@z@4tCx#S4 zpAMGYHZgYM!03W3dpQ;kK=6g>Iz@!4=tQq0z(WNNiujLb>$|E3hQGRj(vPDrhLR`< zzpIKBI8@OR(y_nJZswr1WlLNZicwOf{A%L)IDgd8)PGZXaJ_!D5NT5pz^%QVw@=8E2aNnY3vK1Cv>N zTnvi{cRAJBOO!-6DJFnHWNXFM&tb<&$qXPRm%$-2)j0V5;h<2w%eX(_t@vR+5j@a* zvwy8zwTmJmlBO?t+~d$*1mtJq>G+aP<51mR)~6ooTsU9A_u201kOY9_1tdVO`SS5p0{e4x8Ajt(>-2!%@QHkVP$R`r$bLrYPT zNR9Ql>fgI`fDd-5cg4_N+JYvfH| zULhBs|CAt7?&DAg*S6c``f?O;|ID^Rmk5K9C*d8P>3r?g~WIvM0Z(5`TP} z1yl#sn9qmRB$99`U2BqcboRU`TwQnW7*4fpCxojXg56{)C9It3udmQE31etve+qMfVZE6mV;;-GIPh{Dt z8VQTm?6JDr+KGVqNu67xnxyDNG=JyvxALL9><$;mtD?Nj*?|nzr2s4xXZA~TuvbP= z!*|Z2xvJ0D@*#ja@Kj@Z`JN(P3`6*GpO$RLp5~=WVICdNnrPx zNLe6Qm1{I;pX#_R)eU@k2aAZN$XpV$N7RSs^+HCr60Bt+t|FILz6oBp-ePBAorrzg zOtW=MDsP#CYbSNNrMne_QZWF!Lv_=)%lQzv_BXZMa&1n@ezhw7sf$|MXIw<={F zk+?3m-NVDdbjrN@T!cg|bO9+898V=@JbE5+50d^;?d9h~@hfvv>tB+tQWuwE|F;O0 z%8}gsIABiB1*QfPS$_veJxv2lC8NM9s{YI7C*57gV!b&{r}N8MYvQlLFH%PuTQ!_y z4gm7+soi~iSgrcw?)~ONMlmsVFLS>v4%>Jf?RcG=ln8JjF6k{)q?+3eAF9j5IQIlU z7maEkr~r88gE!kQPt^EzELlqid^NB;Fgq#dNr4*_+&PDG8h^38u)O^TZALQJmMrDd zbALLRQ#pNa?{sj76kUCebb#2VN7`oH!A=38(Ra9^%U;!sjf>D9L+2h);5Q9>)s3Ig zLD9LJxw-U(tovcLe&&4MZlaZfdecf}JORMm5;;(}Z&?KtWmKXoDKb_#-({xFS~rU{ zWz)4i)InHQfPawI7i!0hs?+_tW>7;#MFdoZwE3#-X!D)7j;+=Id$x2`m%uDv!al;# zy}Vc@fNw8VwGPM02;Jo-^40+eBa99aBRHJ5Nyduk5`22wW< zlmP}hvKnxOI^iNrepsy^wp)1NEq+qD6!HS#+0hveOn=zp$_sF)>79VS2C}0w0+GFo zs@ak@PeB(KVW@w9@KaIMbt14PzRM?34d08eim9eU#o90Kl3inUgTdy%{)w`8FOU$m z%p;vd&5P%hs(5CpX;M)@%WCuo=V-}!8fo26cJ(=Ig*YYkSxQZ~+IDBVR9n2dvt_yw zQb=to6MtF6m$cB8&3B|QeY}Z3S|e|GizupazP=`g!RuBoC2QHLaww-~S<3*YC9ynY zT-oM&E%O^yoSUL!pI!RS(m}7NNy%@NZ|XMW$iEl&4D4Z3N>a+<>@?dFGaaSl@5vNiRJ=<#p=_OJi`AOHC;|MchI|Cs;y^Zes~|M~u}|NiiY|MSNm RfB*Au{|7D!(X|=N3;;#_q?iBz diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-20.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-20.xml new file mode 100644 index 0000000000..3600d8fe77 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-20.xml @@ -0,0 +1,48 @@ + + + + Apache: Privilege escalation + A vulnerability in Apache might allow an attacker to escalate + privileges. + + apache + 2019-04-22 + 2019-04-22 + 682306 + remote + + + 2.4.39 + 2.4.39 + + + +

The Apache HTTP server is one of the most popular web servers on the + Internet. +

+ + +

A vulnerability was discovered in Apache with MPM event, worker, or + prefork. +

+ + +

An attacker could escalate privileges.

+ + +

There is no known workaround at this time.

+ + +

All Apache users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=www-servers/apache-2.4.39" + + + + CVE-2019-0211 + + b-man + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-21.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-21.xml new file mode 100644 index 0000000000..c15ae6a5c4 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-21.xml @@ -0,0 +1,46 @@ + + + + SQLite: Remote code execution + A vulnerability in SQLite may allow for the remote execution of + code. + + sqlite + 2019-04-22 + 2019-04-22 + 672942 + remote + + + 3.25.3 + 3.25.3 + + + +

SQLite is a C library that implements an SQL database engine.

+ + +

An integer overflow was discovered in SQLite’s FTS3 extension.

+ + +

A remote attacker could, by executing arbitrary SQL statements against a + vulnerable host, execute arbitrary code. +

+ + +

There is no known workaround at this time.

+ + +

All SQLite users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=dev-db/sqlite-3.25.3" + + + + CVE-2018-20346 + + b-man + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-22.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-22.xml new file mode 100644 index 0000000000..0859caae3d --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-22.xml @@ -0,0 +1,50 @@ + + + + OpenDKIM: Root privilege escalation + A vulnerability was discovered in Gentoo's ebuild for OpenDKIM + which could lead to root privilege escalation. + + opendkim + 2019-04-22 + 2019-04-22 + 629914 + remote + + + 2.10.3-r8 + 2.10.3-r8 + + + +

A community effort to develop and maintain a C library for producing + DKIM-aware applications and an open source milter for providing DKIM + service. +

+ + +

It was discovered that Gentoo’s OpenDKIM ebuild does not properly set + permissions or place the pid file in a safe directory. +

+ + +

A local attacker could escalate privileges.

+ + +

Users should ensure the proper permissions are set as discussed in the + referenced bugs. +

+ + +

All OpenDKIM users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=mail-filter/opendkim-2.10.3-r8" + + + + + BlueKnight + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-23.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-23.xml new file mode 100644 index 0000000000..9dbde00658 --- /dev/null +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201904-23.xml @@ -0,0 +1,47 @@ + + + + GLib: Multiple vulnerabilities + Multiple vulnerabilities have been found in GLib, the worst of + which could result in a Denial of Service condition. + + glib + 2019-04-22 + 2019-04-22 + 668474 + remote + + + 2.56.4 + 2.56.4 + + + +

GLib is a library providing a number of GNOME’s core objects and + functions. +

+ + +

Multiple vulnerabilities have been discovered in GLib. Please review the + referenced bug for details. +

+ + +

Please review the referenced bugs for details.

+ + +

There is no known workaround at this time.

+ + +

All GLib users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=dev-libs/glib-2.56.4" + + + + + BlueKnight + b-man + diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk index d7258a36de..a24dea1229 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk @@ -1 +1 @@ -Wed, 17 Apr 2019 20:08:47 +0000 +Tue, 23 Apr 2019 01:38:49 +0000 diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit index 0773d72858..3124361d55 100644 --- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit +++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit @@ -1 +1 @@ -6c18ba31f4c4516ed01d1b3ca04795cfadc11f86 1555526007 2019-04-17T18:33:27+00:00 +76232d72230fb0f05eaefd8d7f5efcf5b14047c1 1555976179 2019-04-22T23:36:19+00:00