From 7bc9c63c9da678a7e6fceb095d56c634afd22c56 Mon Sep 17 00:00:00 2001
From: V3n3RiX
All PHP 5.6 users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-lang/php-5.6.40-r7"
+
+
All PHP 7.1 users should upgrade to the latest version:
@@ -68,5 +77,5 @@
CVE-2019-11043
whissi
- whissi
+ whissi
diff --git a/metadata/glsa/glsa-201911-05.xml b/metadata/glsa/glsa-201911-05.xml
new file mode 100644
index 000000000000..24d2ac578a52
--- /dev/null
+++ b/metadata/glsa/glsa-201911-05.xml
@@ -0,0 +1,50 @@
+
+
+
+ Adobe Flash Player: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in Adobe Flash Player, the
+ worst of which could result in the arbitrary execution of code.
+
+ adobe,flash
+ 2019-11-25
+ 2019-11-25
+ 694352
+ remote
+
+
+ 32.0.0.255
+ 32.0.0.255
+
+
+
+ The Adobe Flash Player is a renderer for the SWF file format, which is
+ commonly used to provide interactive websites.
+
+
+
+ Multiple vulnerabilities have been discovered in Adobe Flash Player.
+ Please review the CVE identifiers referenced below for details.
+
+
+
+ Please review the referenced CVE identifiers for details.
+
+
+ There is no known workaround at this time.
+
+
+ All Adobe Flash Player users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-plugins/adobe-flash-32.0.0.255"
+
+
+
+ CVE-2019-8069
+ CVE-2019-8070
+
+ whissi
+ b-man
+
diff --git a/metadata/glsa/glsa-201911-06.xml b/metadata/glsa/glsa-201911-06.xml
new file mode 100644
index 000000000000..5a186148231b
--- /dev/null
+++ b/metadata/glsa/glsa-201911-06.xml
@@ -0,0 +1,135 @@
+
+
+
+ Chromium, Google Chrome: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in Chromium and Google
+ Chrome, the worst of which could result in the arbitrary execution of code.
+
+ chromium,chrome,google
+ 2019-11-25
+ 2019-11-25
+ 692916
+ 694002
+ 694954
+ 697506
+ 698398
+ 699068
+ remote
+
+
+ 78.0.3904.87
+ 78.0.3904.87
+
+
+ 78.0.3904.87
+ 78.0.3904.87
+
+
+
+ Chromium is an open-source browser project that aims to build a safer,
+ faster, and more stable way for all users to experience the web.
+
+
+ Google Chrome is one fast, simple, and secure browser for all your
+ devices.
+
+
+
+ Multiple vulnerabilities have been discovered in Chromium and Google
+ Chrome. Please review the CVE identifiers referenced below for details.
+
+
+
+ Please review the referenced CVE identifiers for details.
+
+
+ There is no known workaround at this time.
+
+
+ All Chromium users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-client/chromium-78.0.3904.87"
+
+
+ All Google Chrome users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-client/google-chrome-78.0.3904.87"
+
+
+
+ CVE-2019-13659
+ CVE-2019-13660
+ CVE-2019-13661
+ CVE-2019-13662
+ CVE-2019-13663
+ CVE-2019-13664
+ CVE-2019-13665
+ CVE-2019-13666
+ CVE-2019-13667
+ CVE-2019-13668
+ CVE-2019-13669
+ CVE-2019-13670
+ CVE-2019-13671
+ CVE-2019-13673
+ CVE-2019-13674
+ CVE-2019-13675
+ CVE-2019-13676
+ CVE-2019-13677
+ CVE-2019-13678
+ CVE-2019-13679
+ CVE-2019-13680
+ CVE-2019-13681
+ CVE-2019-13682
+ CVE-2019-13683
+ CVE-2019-13685
+ CVE-2019-13686
+ CVE-2019-13687
+ CVE-2019-13688
+ CVE-2019-13693
+ CVE-2019-13694
+ CVE-2019-13695
+ CVE-2019-13696
+ CVE-2019-13697
+ CVE-2019-13699
+ CVE-2019-13700
+ CVE-2019-13701
+ CVE-2019-13703
+ CVE-2019-13704
+ CVE-2019-13705
+ CVE-2019-13706
+ CVE-2019-13707
+ CVE-2019-13708
+ CVE-2019-13709
+ CVE-2019-13710
+ CVE-2019-13711
+ CVE-2019-13713
+ CVE-2019-13714
+ CVE-2019-13715
+ CVE-2019-13716
+ CVE-2019-13717
+ CVE-2019-13718
+ CVE-2019-13719
+ CVE-2019-13721
+ CVE-2019-5869
+ CVE-2019-5870
+ CVE-2019-5871
+ CVE-2019-5872
+ CVE-2019-5873
+ CVE-2019-5874
+ CVE-2019-5875
+ CVE-2019-5876
+ CVE-2019-5877
+ CVE-2019-5878
+ CVE-2019-5879
+ CVE-2019-5880
+ CVE-2019-5881
+
+ whissi
+ b-man
+
diff --git a/metadata/glsa/glsa-201911-07.xml b/metadata/glsa/glsa-201911-07.xml
new file mode 100644
index 000000000000..bc524551476f
--- /dev/null
+++ b/metadata/glsa/glsa-201911-07.xml
@@ -0,0 +1,66 @@
+
+
+
+ Mozilla Firefox: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in Mozilla Firefox, the
+ worst of which could result in the arbitrary execution of code.
+
+ firefox
+ 2019-11-25
+ 2019-11-25
+ 693442
+ 698512
+ remote
+
+
+ 68.2.0
+ 68.2.0
+
+
+ 68.2.0
+ 68.2.0
+
+
+
+ Mozilla Firefox is a popular open-source web browser from the Mozilla
+ Project.
+
+
+
+ Multiple vulnerabilities have been discovered in Mozilla Firefox. Please
+ review the CVE identifiers referenced below for details.
+
+
+
+ Please review the referenced CVE identifiers for details.
+
+
+ There is no known workaround at this time.
+
+
+ All Firefox users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/firefox-68.2.0"
+
+
+ All Firefox binary users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-68.2.0"
+
+
+
+ CVE-2019-11740
+ CVE-2019-11742
+ CVE-2019-11743
+ CVE-2019-11744
+ CVE-2019-11746
+ CVE-2019-11752
+ CVE-2019-9812
+
+ b-man
+ b-man
+
diff --git a/metadata/glsa/glsa-201911-08.xml b/metadata/glsa/glsa-201911-08.xml
new file mode 100644
index 000000000000..4a8bad9133b7
--- /dev/null
+++ b/metadata/glsa/glsa-201911-08.xml
@@ -0,0 +1,48 @@
+
+
+
+ Expat: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in Expat, the worst of
+ which could result in a Denial of Service condition.
+
+ expat
+ 2019-11-25
+ 2019-11-25
+ 688734
+ 694362
+ remote
+
+
+ 2.2.8
+ 2.2.8
+
+
+
+ Expat is a set of XML parsing libraries.
+
+
+ Multiple vulnerabilities have been discovered in Expat. Please review
+ the CVE identifiers referenced below for details.
+
+
+
+ Please review the referenced CVE identifiers for details.
+
+
+ There is no known workaround at this time.
+
+
+ All Expat users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-libs/expat-2.2.8"
+
+
+
+ CVE-2018-20843
+ CVE-2019-15903
+
+ whissi
+ b-man
+
diff --git a/metadata/glsa/timestamp.chk b/metadata/glsa/timestamp.chk
index 4dbac8d5490d..ecbf6fa4ff7a 100644
--- a/metadata/glsa/timestamp.chk
+++ b/metadata/glsa/timestamp.chk
@@ -1 +1 @@
-Mon, 18 Nov 2019 09:08:51 +0000
+Sun, 15 Dec 2019 17:09:21 +0000
diff --git a/metadata/glsa/timestamp.commit b/metadata/glsa/timestamp.commit
index a101667e6fc1..14ac9c2950b4 100644
--- a/metadata/glsa/timestamp.commit
+++ b/metadata/glsa/timestamp.commit
@@ -1 +1 @@
-1b5ecb46a85c74babc035c5996537e2d1932cce0 1573153780 2019-11-07T19:09:40+00:00
+751af6f91da06f53265195cff434eb66a145af73 1574641117 2019-11-25T00:18:37+00:00
--
cgit v1.2.3