Added some comments

author: Daniel Ahlberg <aliz@gentoo.org> 2003-03-03 10:52:31 +0000
committer: Daniel Ahlberg <aliz@gentoo.org> 2003-03-03 10:52:31 +0000
commit: 7aca5a0916b963a423ea90ca6b90e7ead6ff7069 (patch)
tree: bbb3cb725b2c843481c45e0334d2ad185e1e9a7d /sys-apps/eject/ChangeLog
parent: Security update. (diff)
download: gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.tar.gz
gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.tar.bz2
gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.zip
1 files changed, 6 insertions, 1 deletions
diff --git a/sys-apps/eject/ChangeLog b/sys-apps/eject/ChangeLog
index efe86d2b991d..cc0a11e794da 100644
--- a/sys-apps/eject/ChangeLog
+++ b/sys-apps/eject/ChangeLog
@@ -1,6 +1,11 @@
 # ChangeLog for sys-apps/eject
 # Copyright 2002-2003 Gentoo Technologies, Inc.; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/sys-apps/eject/ChangeLog,v 1.10 2003/03/03 10:06:58 aliz Exp $
+# $Header: /var/cvsroot/gentoo-x86/sys-apps/eject/ChangeLog,v 1.11 2003/03/03 10:52:31 aliz Exp $
+
+  03 Mar 2003; Daniel Ahlberg <aliz@gentoo.org> :
+  This update should not be classified as a security update. The advisory says that eject is only
+  vulnerable if it is install setuid root and in Gentoo it is not. However if someone decides to
+  make it setuid root the patch in -r1 will make it safer.
 
 *eject-2.0.12-r1 (03 Mar 2003)
author	Daniel Ahlberg <aliz@gentoo.org>	2003-03-03 10:52:31 +0000
committer	Daniel Ahlberg <aliz@gentoo.org>	2003-03-03 10:52:31 +0000
commit	7aca5a0916b963a423ea90ca6b90e7ead6ff7069 (patch)
tree	bbb3cb725b2c843481c45e0334d2ad185e1e9a7d /sys-apps/eject/ChangeLog
parent	Security update. (diff)
download	gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.tar.gz gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.tar.bz2 gentoo-2-7aca5a0916b963a423ea90ca6b90e7ead6ff7069.zip