On Mon, May 18, 2020 at 6:56 AM Jack Ostroff wrote:
>
> Ben/sysadmins,
Hi Jack,
>
> git-kpull failed for me on Gentoo, due to an apparently long-open CVE
> for pyyaml. See https://bugs.gentoo.org/659348 for more information.
> The suggested fix (in comment 14 of that bug) is "you'll need to pat
Ben/sysadmins,
git-kpull failed for me on Gentoo, due to an apparently long-open CVE
for pyyaml. See https://bugs.gentoo.org/659348 for more information.
The suggested fix (in comment 14 of that bug) is "you'll need to patch
out those unsafe calls. Look for calls to "yaml.load()" and repl