From Gentoo Wiki
Jump to:navigation Jump to:search

Gentoo Linux Security Advisories (GLSA) are notifications generated by Gentoo's security team about vulnerable software available in the Gentoo ebuild repository. These reports contain information about the vulnerability itself, the possible impact on a Gentoo system, references towards external sources (like CVE information) as well as information on how to resolve the vulnerability (which, in most cases, is an update or upgrade of one or more software titles).

GLSA notifications are managed as XML files within the Gentoo repository (see ${portageq get_repo_path / gentoo}/metadata/glsa). System administrators can run the glsa-check application (distributed with Portage) to have their system verified against these GLSA notifications and, optionally, update the necessary packages automatically to remediate the vulnerability.

GLSA availability

Gentoo Linux Security Advisories can be obtained through several sources:

See also

External resources