+ Xalan-Java: Arbitrary code execution
+ Insufficient constraints in Apache's Xalan-Java might allow remote
+ attackers to execute arbitrary code and load arbitrary classes.
+
+ xalan-java
+ April 02, 2016
+ April 02, 2016: 1
+ 505602
+ remote
+
+
+ 2.7.2
+ 2.7.2
+
+
+
+ Xalan-Java is an XSLT processor for transforming XML documents into
+ HTML, text, or other XML document types.
+
+
+
+ The TransformerFactory in Apache Xalan-Java does not properly restrict
+ access to certain properties when FEATURE_SECURE_PROCESSING is enabled.
+ This can also be exploited via a Java property that is bound to the XSLT
+ 1.0 system-property function.
+
+
+
+ A remote attacker could inject specially crafted XSLT properties
+ resulting in the execution of arbitrary code with the privileges of the
+ process.
+
+
+
+ There is no known work around at this time.
+
+
+ All Xalan-Java users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-java/xalan-2.7.2"
+
+
+
+
+ CVE-2014-0107
+
+ b-man
+ b-man
+
diff --git a/metadata/glsa/timestamp.chk b/metadata/glsa/timestamp.chk
index 3f0cb2f42634..db6c0563c622 100644
--- a/metadata/glsa/timestamp.chk
+++ b/metadata/glsa/timestamp.chk
@@ -1 +1 @@
-Fri, 01 Apr 2016 12:38:58 +0000
+Sat, 02 Apr 2016 20:38:59 +0000
diff --git a/metadata/md5-cache/app-accessibility/simon-0.4.1 b/metadata/md5-cache/app-accessibility/simon-0.4.1
index 79d5c7892b7d..1fee3ba01f24 100644
--- a/metadata/md5-cache/app-accessibility/simon-0.4.1
+++ b/metadata/md5-cache/app-accessibility/simon-0.4.1
@@ -9,5 +9,5 @@ LICENSE=GPL-2
RDEPEND=dev-qt/qtcore:4 dev-qt/qtdbus:4 dev-qt/qtgui:4 dev-qt/qtscript:4 dev-qt/qtsql:4 kde-base/kdelibs:4 media-libs/alsa-lib x11-libs/libX11 x11-libs/libXtst x11-libs/qwt:6 kdepim? ( kde-apps/kdepimlibs:4 ) libsamplerate? ( media-libs/libsamplerate ) nls? ( kde-apps/kde4-l10n virtual/libintl ) opencv? ( media-libs/opencv ) sphinx? ( >=app-accessibility/pocketsphinx-0.8 >=app-accessibility/sphinxbase-0.8 >=app-accessibility/SphinxTrain-1 ) !sphinx? ( app-accessibility/julius )
SLOT=0
SRC_URI=mirror://kde/stable/simon/0.4.1/src/simon-0.4.1.tar.bz2
-_eclasses_=cmake-utils e79d341200cba811b41cc0728403c48d eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e gnome2-utils d19e7813f27c8f982134d657889b13cf multilib 3972ca401cf7dbb430df9995f5d8d580 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c xdg-utils e2b2bd56125ce8cf59ce30c642b59d48
+_eclasses_=cmake-utils 422bbd1bee2557490177a34dbe0a662b eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e gnome2-utils d19e7813f27c8f982134d657889b13cf multilib 3972ca401cf7dbb430df9995f5d8d580 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c xdg-utils e2b2bd56125ce8cf59ce30c642b59d48
_md5_=c00afa99aee019c62dcdceebc9116595
diff --git a/metadata/md5-cache/app-admin/calamares-2.1 b/metadata/md5-cache/app-admin/calamares-2.1
index 9377b73a5a44..eb75d56b8952 100644
--- a/metadata/md5-cache/app-admin/calamares-2.1
+++ b/metadata/md5-cache/app-admin/calamares-2.1
@@ -10,5 +10,5 @@ RDEPEND=python_targets_python3_4? ( dev-lang/python:3.4 ) python_targets_python3
REQUIRED_USE=|| ( python_targets_python3_4 python_targets_python3_5 )
SLOT=5
SRC_URI=https://github.com/calamares/calamares/releases/download/v2.1/calamares-2.1.tar.gz
-_eclasses_=cmake-utils e79d341200cba811b41cc0728403c48d eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e gnome2-utils d19e7813f27c8f982134d657889b13cf kde5 b219ef64c584bbad4db0c1f70f5355a7 kde5-functions bc87cda404cf0dd3354ab10d686425b7 multibuild 742139c87a9fa3766f0c2b155e5522bf multilib 3972ca401cf7dbb430df9995f5d8d580 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c virtualx 86c9305a59b3e0459e7fbef3a5f30b96 xdg a5c4c5ce4f5ce9a2e777f5d9a40a8723 xdg-utils e2b2bd56125ce8cf59ce30c642b59d48
+_eclasses_=cmake-utils 422bbd1bee2557490177a34dbe0a662b eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e gnome2-utils d19e7813f27c8f982134d657889b13cf kde5 3fea92522c55e77439360caf8eb91554 kde5-functions 324130c9b06b57d5e15a6fb1c713d305 multibuild 742139c87a9fa3766f0c2b155e5522bf multilib 3972ca401cf7dbb430df9995f5d8d580 python-r1 0f6937650a475d673baa5d0c8c0b37b3 python-utils-r1 2e6826f6a93ad2acf904eecf5b5fb6d2 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c virtualx 86c9305a59b3e0459e7fbef3a5f30b96 xdg a5c4c5ce4f5ce9a2e777f5d9a40a8723 xdg-utils e2b2bd56125ce8cf59ce30c642b59d48
_md5_=ae865f91f75c0b91b1bff21bb949560c
diff --git a/metadata/md5-cache/app-admin/cgmanager-0.39 b/metadata/md5-cache/app-admin/cgmanager-0.39
index faddc5bcc72a..6fdf07133b37 100644
--- a/metadata/md5-cache/app-admin/cgmanager-0.39
+++ b/metadata/md5-cache/app-admin/cgmanager-0.39
@@ -4,10 +4,10 @@ DESCRIPTION=Control Group manager daemon
EAPI=5
HOMEPAGE=https://linuxcontainers.org/cgmanager/introduction/
IUSE=pam selinux
-KEYWORDS=~alpha amd64 ~arm ~arm64 ~hppa ~ppc64 ~x86
+KEYWORDS=~alpha amd64 arm ~arm64 ~hppa ~ppc64 ~x86
LICENSE=LGPL-2.1
RDEPEND=sys-libs/libnih[dbus] sys-apps/dbus selinux? ( sec-policy/selinux-cgmanager )
SLOT=0
SRC_URI=https://linuxcontainers.org/downloads/cgmanager/cgmanager-0.39.tar.gz
_eclasses_=autotools 07e71b3b5690738ef7e8bc097077e00c eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e libtool b75230758539a7da029e24afdb693960 multilib 3972ca401cf7dbb430df9995f5d8d580 pam 3ecd5b75e39b0bb05a3183c08fcdfdb4 toolchain-funcs d513d423d449877e49d99af3f7af7acb
-_md5_=584ca49318d3943f6354de0ed5044f6f
+_md5_=94656dc3740dbab30ee504478b3bf851
diff --git a/metadata/md5-cache/app-admin/clog-1.1.0 b/metadata/md5-cache/app-admin/clog-1.1.0
index 1ed241f6ec3c..bd91ecea6689 100644
--- a/metadata/md5-cache/app-admin/clog-1.1.0
+++ b/metadata/md5-cache/app-admin/clog-1.1.0
@@ -7,5 +7,5 @@ KEYWORDS=~amd64 ~x86 ~x64-macos
LICENSE=MIT
SLOT=0
SRC_URI=http://taskwarrior.org/download/clog-1.1.0.tar.gz
-_eclasses_=bash-completion-r1 acf715fa09463f043fbfdc1640f3fb85 cmake-utils e79d341200cba811b41cc0728403c48d eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e multilib 3972ca401cf7dbb430df9995f5d8d580 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c
+_eclasses_=bash-completion-r1 acf715fa09463f043fbfdc1640f3fb85 cmake-utils 422bbd1bee2557490177a34dbe0a662b eutils 9d81603248f2ba3ec59124320d123e5e flag-o-matic d270fa247153df66074f795fa42dba3e multilib 3972ca401cf7dbb430df9995f5d8d580 toolchain-funcs d513d423d449877e49d99af3f7af7acb versionator 99ae9d758cbe7cfed19170e7d48f5a9c
_md5_=25304c1b0f19e05ff3932fc1c0402095
diff --git a/metadata/md5-cache/app-admin/collectd-5.5.1-r2 b/metadata/md5-cache/app-admin/collectd-5.5.1-r2
index 94816be279e2..e96d92b33930 100644
--- a/metadata/md5-cache/app-admin/collectd-5.5.1-r2
+++ b/metadata/md5-cache/app-admin/collectd-5.5.1-r2
@@ -1,14 +1,14 @@
DEFINED_PHASES=configure install postinst preinst prepare setup
-DEPEND=dev-libs/libgcrypt:= sys-devel/libtool perl? ( dev-lang/perl:=[ithreads] ) udev? ( virtual/udev ) collectd_plugins_amqp? ( net-libs/rabbitmq-c ) collectd_plugins_apache? ( net-misc/curl ) collectd_plugins_ascent? ( net-misc/curl dev-libs/libxml2 ) collectd_plugins_bind? ( dev-libs/libxml2:= ) collectd_plugins_ceph? ( dev-libs/yajl ) collectd_plugins_curl? ( net-misc/curl ) collectd_plugins_curl_json? ( net-misc/curl dev-libs/yajl ) collectd_plugins_curl_xml? ( net-misc/curl dev-libs/libxml2:= ) collectd_plugins_dbi? ( dev-db/libdbi ) collectd_plugins_dns? ( net-libs/libpcap ) collectd_plugins_genericjmx? ( virtual/jre:= dev-java/java-config-wrapper ) collectd_plugins_gmond? ( sys-cluster/ganglia ) collectd_plugins_ipmi? ( >=sys-libs/openipmi-2.0.16-r1 ) collectd_plugins_iptables? ( >=net-firewall/iptables-1.4.13:= ) collectd_plugins_java? ( virtual/jre:= dev-java/java-config-wrapper ) collectd_plugins_log_logstash? ( dev-libs/yajl ) collectd_plugins_lvm? ( sys-fs/lvm2 ) collectd_plugins_memcachec? ( dev-libs/libmemcached ) collectd_plugins_modbus? ( dev-libs/libmodbus ) collectd_plugins_mysql? ( >=virtual/mysql-5.0 ) collectd_plugins_netlink? ( net-libs/libmnl ) collectd_plugins_nginx? ( net-misc/curl ) collectd_plugins_notify_desktop? ( x11-libs/libnotify ) collectd_plugins_notify_email? ( net-libs/libesmtp ) collectd_plugins_nut? ( >=sys-power/nut-2.7.2-r2 ) collectd_plugins_openldap? ( net-nds/openldap ) collectd_plugins_onewire? ( >=sys-fs/owfs-3.1 ) collectd_plugins_oracle? ( dev-db/oracle-instantclient-basic ) collectd_plugins_perl? ( dev-lang/perl:=[ithreads] ) collectd_plugins_ping? ( net-libs/liboping ) collectd_plugins_postgresql? ( dev-db/postgresql:= ) collectd_plugins_python? ( python_single_target_python2_7? ( >=dev-lang/python-2.7.5-r2:2.7 ) python_single_target_python3_4? ( dev-lang/python:3.4 ) python_single_target_python3_5? ( dev-lang/python:3.5 ) >=dev-lang/python-exec-2:=[python_targets_python2_7(-)?,python_targets_python3_4(-)?,python_targets_python3_5(-)?,-python_single_target_jython2_7(-),-python_single_target_pypy(-),-python_single_target_pypy3(-),-python_single_target_python3_3(-),python_single_target_python2_7(+)?,python_single_target_python3_4(+)?,python_single_target_python3_5(+)?] ) collectd_plugins_redis? ( dev-libs/hiredis:= ) collectd_plugins_routeros? ( net-libs/librouteros ) collectd_plugins_rrdcached? ( net-analyzer/rrdtool ) collectd_plugins_rrdtool? ( net-analyzer/rrdtool ) collectd_plugins_sensors? ( sys-apps/lm_sensors ) collectd_plugins_sigrok? ( sci-libs/libsigrok ) collectd_plugins_smart? ( dev-libs/libatasmart ) collectd_plugins_snmp? ( net-analyzer/net-snmp ) collectd_plugins_tokyotyrant? ( net-misc/tokyotyrant ) collectd_plugins_varnish? ( www-servers/varnish ) collectd_plugins_virt? ( app-emulation/libvirt dev-libs/libxml2:= ) collectd_plugins_write_http? ( net-misc/curl ) collectd_plugins_write_kafka? ( >=dev-libs/librdkafka-0.9.0.99:= ) collectd_plugins_write_redis? ( dev-libs/hiredis:= ) collectd_plugins_write_riemann? ( dev-libs/protobuf-c ) kernel_FreeBSD? ( collectd_plugins_disk? ( sys-libs/libstatgrab:= ) collectd_plugins_interface? ( sys-libs/libstatgrab:= ) collectd_plugins_load? ( sys-libs/libstatgrab:= ) collectd_plugins_memory? ( sys-libs/libstatgrab:= ) collectd_plugins_swap? ( sys-libs/libstatgrab:= ) collectd_plugins_users? ( sys-libs/libstatgrab:= ) ) collectd_plugins_cgroups? ( sys-fs/xfsprogs ) collectd_plugins_df? ( sys-fs/xfsprogs ) collectd_plugins_genericjmx? ( >=virtual/jdk-1.6 ) collectd_plugins_iptables? ( <=sys-kernel/linux-headers-4.4 ) collectd_plugins_java? ( >=virtual/jdk-1.6 ) virtual/pkgconfig !