On Tue, 2008-02-12 at 09:57 +1100, [EMAIL PROTECTED] wrote: > On Mon, Feb 11, 2008 at 09:24:41AM -0600, Michael Sullivan wrote: > > camille ~ # glsa-check -t all > > This system is affected by the following GLSAs: > > 200801-19 > > camille ~ # glsa-check -d 200801-19 > > GLSA 200801-19: > > GOffice: Multiple vulnerabilities > > ============================================================================ > > Synopsis: Multiple vulnerabilities in GOffice could result in > > the > > execution of arbitrary code. > > Announced on: January 30, 2008 > > Last revised on: January 30, 2008: 01 > > > > Affected package: x11-libs/goffice > > Affected archs: All > > Vulnerable: <0.6.1 > > Unaffected: >=0.6.1 >=~0.4.3 > > > > > camille ~ # emerge -pv ">=x11-libs/goffice-0.6.1" > > > > These are the packages that would be merged, in order: > > > > Calculating dependencies... done! > > [ebuild R ] x11-libs/goffice-0.6.1 USE="gnome -debug" 0 kB > > > > Total: 1 package (1 reinstall), Size of downloads: 0 kB > > > > I've emerged this several times and glsa-check still claims it needs to > > be fixed. Why? > > > I have had a similar issue with a Python GLSA. Have you checked to see > if you have multiple versions installed (in slots)? > > Try 'emerge --unmerge --pretend goffice' and see if it offers to unmerge > multiple versions. You may simply need to unmerge the vulnerable version > to sort things out.
That fixed it. There was a previous version (0.2.0 or something like that); I unmerged it and did a glsa-check -t all and it was gone... -- gentoo-user@lists.gentoo.org mailing list
