Apache XML-RPC (previously known as Helma XML-RPC) is a Java implementation of XML-RPC, a popular protocol that uses XML over HTTP to implement remote procedure calls.
+Multiple vulnerabilities have been discovered in Apache XML-RPC. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+Gentoo has discontinued support for Apache XML-RPC. We recommend that users unmerge it:
+ +
+ # emerge --ask --depclean "dev-java/xmlrpc"
+
+ Ruby is an interpreted scripting language for quick and easy object-oriented programming. It comes bundled with a HTTP server ("WEBrick").
+Multiple vulnerabilities have been discovered in Ruby. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Ruby users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --depclean ruby:2.5 ruby:2.6 ruby:2.7 ruby:3.0
+ # emerge --ask --oneshot --verbose ">=dev-lang/ruby-3.1.4:3.1"
+ # emerge --ask --oneshot --verbose ">=dev-lang/ruby-3.2.2:3.2"
+
+ GOCR is an OCR (Optical Character Recognition) program, developed under the GNU Public License. It converts scanned images of text back to text files.
+Multiple vulnerabilities have been discovered in GOCR. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+Gentoo has discontinued support for GOCR. We recommend that users unmerge it:
+ +
+ # emerge --ask --depclean "app-text/gocr"
+
+ sudo allows a system administrator to give users the ability to run commands as other users.
+Multiple vulnerabilities have been discovered in sudo. Please review the CVE identifiers referenced below for details.
+Stack/register variables can be flipped via fault injection, affecting execution flow in security-sensitive code.
+There is no known workaround at this time.
+All sudo users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-admin/sudo-1.9.15_p2"
+
+