{"bugs":[{"bugid":694346,"firstseen":"2025-07-11T02:48:40.189262","severity":"normal","status":"UNCONFIRMED","summary":"app-forensics\/rkhunter-1.4.6-r1 with sys-apps\/keyutils-1.6.1 - rkhunter: Found file '\/lib64\/libkeyutils.so.1.9'. Possible rootkit: Sniffer component"},{"bugid":775887,"firstseen":"2025-07-11T02:48:40.189262","severity":"enhancement","status":"UNCONFIRMED","summary":"app-forensics\/rkhunter please provide systemd timer"},{"bugid":837167,"firstseen":"2025-07-11T02:48:40.189262","severity":"normal","status":"CONFIRMED","summary":"app-forensics\/rkhunter explain how the user can update rkhunter since we patched --update away"},{"bugid":837170,"firstseen":"2025-07-11T02:48:40.189262","severity":"normal","status":"CONFIRMED","summary":"app-forensics\/rkhunter License change"}],"categories":[{"categoryid":440,"name":"app-forensics","summary":"The app-forensics category contains software which helps detect and analyse security breaches."},{"categoryid":386,"name":"app-shells","summary":"The app-shells category contains shells and their extensions."},{"categoryid":450,"name":"dev-lang","summary":"The dev-lang category contains various programming language implementations and related tools."},{"categoryid":325,"name":"sys-process","summary":"The sys-process category contains packages which query or manipulate processes. The 'cron' daemons are included in this."}],"changelog":[{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"e817756739654c06c8a96e8fb68a3da1ba3af055","committime":"2024-04-30T18:48:55","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"watermanpaint@posteo.net","authorname":"Lucio Sauer","body":"bump copyright of touched ebuilds to 2024\n\nSigned-off-by: Lucio Sauer <watermanpaint@posteo.net>\nSigned-off-by: Michał Górny <mgorny@gentoo.org>","commitid":"794061a3298b5716db015defa7b3e2c583b73980","committime":"2024-04-12T10:47:52","packageid":52488,"repoid":1,"summary":"*\/*: inline mirror:\/\/sourceforge"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"9018587816f3962c7e56ff2c0ac67caca10cca96","committime":"2023-08-26T13:46:35","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"asturm@gentoo.org","authorname":"Andreas Sturmlechner","body":"Closes: https:\/\/bugs.gentoo.org\/913054\nSigned-off-by: Andreas Sturmlechner <asturm@gentoo.org>","commitid":"b331f97bfaf35fc32adab6daba527d5fcb38e860","committime":"2023-08-26T13:37:25","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: drop 1.4.6-r1"},{"authoremail":"sam@gentoo.org","authorname":"Sam James","body":"Signed-off-by: Sam James <sam@gentoo.org>","commitid":"da3afe9354210da9ed73168791484cfa558e00ae","committime":"2023-08-26T13:34:13","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: Stabilize 1.4.6-r2 amd64, #913054"},{"authoremail":"sam@gentoo.org","authorname":"Sam James","body":"Signed-off-by: Sam James <sam@gentoo.org>","commitid":"9de6bfccd40f85dee42c8ce0ac8c512cb09ed846","committime":"2023-08-26T13:30:10","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: Stabilize 1.4.6-r2 ppc, #913054"},{"authoremail":"sam@gentoo.org","authorname":"Sam James","body":"Signed-off-by: Sam James <sam@gentoo.org>","commitid":"464dba0fd64ff799dcafa6da4eef1c9022199f9d","committime":"2023-08-26T13:30:09","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: Stabilize 1.4.6-r2 x86, #913054"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"ca3111527959d90fa50e9feba0918f850be65c13","committime":"2023-04-01T19:46:50","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"mmk@levelnine.at","authorname":"Michael Mair-Keimberger","body":"Signed-off-by: Michael Mair-Keimberger <mmk@levelnine.at>\nSigned-off-by: Conrad Kostecki <conikost@gentoo.org>","commitid":"286a0d6245d9396a0fd6e425ae24d2621e671ce1","committime":"2023-03-20T21:46:31","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: use HTTPS, fix LICENSE"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"ef22ced72e46d43b69e13d7b00be91c65815ae42","committime":"2023-03-14T02:46:53","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"sam@gentoo.org","authorname":"Sam James","body":"Signed-off-by: Sam James <sam@gentoo.org>","commitid":"46e8160b2f06600e785bc4d034a241a455233f28","committime":"2023-03-14T02:15:57","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: move patch out of files\/"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"32481838341ef1278b6cbc8a595d60359c4136cc","committime":"2023-03-14T02:04:00","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"sam@gentoo.org","authorname":"Sam James","body":"Closes: https:\/\/bugs.gentoo.org\/895176\nSigned-off-by: Sam James <sam@gentoo.org>","commitid":"b3e55a7602c27f57bc63effb38b4b7716e1ad738","committime":"2023-03-14T00:42:21","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: fix warnings w\/ grep-3.8"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"a8d907e4b2acb38467b494e36313788750592b3d","committime":"2020-02-11T17:48:59","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"mgorny@gentoo.org","authorname":"Michał Górny","body":"Update the copyright notice on all files that were touched since\nJanuary 1st but did not have the notice updated.\n\nSigned-off-by: Michał Górny <mgorny@gentoo.org>","commitid":"6568a730a830fd8a93b28162a01787600d19d307","committime":"2020-02-11T17:05:13","packageid":52488,"repoid":1,"summary":"*\/*: Bump copyright on files touched this year"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"ec1eddd5e7b3f69cadcdbf1547a742a3ce22097d","committime":"2020-01-26T00:28:29","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"mattst88@gentoo.org","authorname":"Matt Turner","body":"Signed-off-by: Matt Turner <mattst88@gentoo.org>","commitid":"5671613f07850086a11a1ace34816b498e9b69b7","committime":"2020-01-26T00:18:19","packageid":52488,"repoid":1,"summary":"*\/*: Drop stable alpha keywords"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"cb126b6f2ced27a017e781629a6d58a7e2f00326","committime":"2019-03-25T10:24:02","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"kensington@gentoo.org","authorname":"Michael Palimaka","body":"Package-Manager: Portage-2.3.62, Repoman-2.3.12\nSigned-off-by: Michael Palimaka <kensington@gentoo.org>","commitid":"ead7c3ebd7c6f5680157425e7b48e6a2a96f3f21","committime":"2019-03-25T10:15:54","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: remove 1.4.6-r0"},{"authoremail":"kensington@gentoo.org","authorname":"Michael Palimaka","body":"Package-Manager: Portage-2.3.62, Repoman-2.3.12\nSigned-off-by: Michael Palimaka <kensington@gentoo.org>","commitid":"cd7e6b6b9dcf15a63c6121b893400e7dc3c1902a","committime":"2019-03-25T10:14:03","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: stabilise 1.4.6-r1 using ALLARCHES"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"75f7ef6c42ed04c5a4d1ee77f9e1ea157fdcd00d","committime":"2018-05-26T10:37:22","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"kensington@gentoo.org","authorname":"Michael Palimaka","body":"Closes: https:\/\/bugs.gentoo.org\/651980\nPackage-Manager: Portage-2.3.31, Repoman-2.3.9","commitid":"279eb849abb2875b3f3181a4a1b3e47b24c5643a","committime":"2018-05-26T10:28:38","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: revbump removes update option from cron file"},{"authoremail":"kensington@gentoo.org","authorname":"Michael Palimaka","body":"Package-Manager: Portage-2.3.31, Repoman-2.3.9","commitid":"490f46f341d08806e8577a36b291ed623bb290b7","committime":"2018-05-26T10:22:44","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: remove vulnerable"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"349e7db2698122395039b47c5967b60053be44f1","committime":"2018-03-31T10:44:42","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"klausman@gentoo.org","authorname":"Tobias Klausmann","body":"Gentoo-Bug: http:\/\/bugs.gentoo.org\/623150","commitid":"f172b8d52bab1663c9b3df1e73caf274add3253c","committime":"2018-03-31T10:10:47","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter-1.4.6-r0: alpha stable"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"a9550de871630f7cd3f38a4023dbbb22ba331d1e","committime":"2018-03-29T15:40:46","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"whissi@gentoo.org","authorname":"Thomas Deutschmann","body":"Package-Manager: Portage-2.3.24, Repoman-2.3.6","commitid":"df4df15b44f2218eb57d3d02a12cf07a4b2a5173","committime":"2018-03-29T15:03:24","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: x86 stable (bug #623150)"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"4af8420b4a7c87df803a1d02ffece8fff5ddd0dc","committime":"2018-03-29T02:07:44","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"bman@gentoo.org","authorname":"Aaron Bauman","body":"Bug: https:\/\/bugs.gentoo.org\/623150\nPackage-Manager: Portage-2.3.26, Repoman-2.3.7","commitid":"6ddda12a6ee55acaba7275ca3f8be7f8d08154a4","committime":"2018-03-29T01:15:44","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: amd64 stable"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"9d3ff57831e4f0efb5f7b464248c2c3ae080763b","committime":"2018-03-25T21:22:18","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"slyfox@gentoo.org","authorname":"Sergei Trofimovich","body":"Package-Manager: Portage-2.3.24, Repoman-2.3.6\nRepoMan-Options: --include-arches=\"ppc\"","commitid":"413b528ef386599964b48ef121b068214f315301","committime":"2018-03-25T20:58:51","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: stable 1.4.6 for ppc, bug #623150"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"de12ce9aca025b2d94ca7e6a7039afe53b994f76","committime":"2018-03-18T00:06:29","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"kensington@gentoo.org","authorname":"Michael Palimaka","body":"Also, add a patch to disable insecure file downloads.\n\nBug: https:\/\/bugs.gentoo.org\/623150\nCloses: https:\/\/bugs.gentoo.org\/645454\nCloses: https:\/\/bugs.gentoo.org\/648470\nPackage-Manager: Portage-2.3.24, Repoman-2.3.6","commitid":"61e995b755727e286d140d8d721340959c434b6c","committime":"2018-03-17T23:52:36","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: version bump 1.4.6"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"f1db7f59fd3c9ac71e5e86e6390ac8ce9e586eea","committime":"2017-09-16T06:43:33","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"maekke@gentoo.org","authorname":"Markus Meier","body":"Package-Manager: Portage-2.3.6, Repoman-2.3.1\nRepoMan-Options: --include-arches=\"arm\"","commitid":"cd583b1ba02a5d69f1fb32ffaa23acab5dcc2754","committime":"2017-09-16T06:31:50","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: add ~arm, bug #621338"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"50c7c19f65fd61e7a184012938ef47772a4be27f","committime":"2017-08-08T06:23:33","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"polynomial-c@gentoo.org","authorname":"Lars Wendler","body":"Package-Manager: Portage-2.3.6, Repoman-2.3.3","commitid":"d58ded4487b28996f96dcc96ca256d2995c16721","committime":"2017-08-08T06:00:27","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: Bump to version 1.4.4"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"25093d6359f778b8d1052f66ba9e26fc29ded21a","committime":"2017-02-28T20:35:29","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"robbat2@gentoo.org","authorname":"Robin H. Johnson","body":"Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>","commitid":"61b861acd7b49083dab687e133f30f3331cb7480","committime":"2017-02-28T19:47:27","packageid":52488,"repoid":1,"summary":"Drop $Id$ per council decision in bug #611234."},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"7b66877c9b67632417305c8b530cbb0eb381cca1","committime":"2016-03-23T16:38:18","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"vapier@gentoo.org","authorname":"Mike Frysinger","commitid":"e6174c7ae2f4c3558511f6500fde0e69c3235017","committime":"2016-03-23T16:00:48","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: mark 1.4.2 alpha stable"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"a2fc2b393a626809fa48543921c11a3906dff237","committime":"2016-01-02T21:22:06","packageid":52488,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"mrueg@gentoo.org","authorname":"Manuel Rüger","body":"Package-Manager: portage-2.2.26","commitid":"4337a53de4e2e0ca9600b5f6c1f95b5fd3161580","committime":"2016-01-02T21:11:32","packageid":52488,"repoid":1,"summary":"app-forensics\/rkhunter: Remove old"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"945f0d2a26da4f944fd06ad6a874f69d37ce1e06","committime":"2015-08-09T09:26:46","packageid":52488,"repoid":1,"summary":"2015-08-09 09:26:21 UTC"},{"authoremail":"robbat2@gentoo.org","authorname":"Robin H. Johnson","body":"This commit represents a new era for Gentoo:\nStoring the gentoo-x86 tree in Git, as converted from CVS.\n\nThis commit is the start of the NEW history.\nAny historical data is intended to be grafted onto this point.\n\nCreation process:\n1. Take final CVS checkout snapshot\n2. Remove ALL ChangeLog* files\n3. Transform all Manifests to thin\n4. Remove empty Manifests\n5. Convert all stale $Header$\/$Id$ CVS keywords to non-expanded Git $Id$\n5.1. Do not touch files with -kb\/-ko keyword flags.\n\nSigned-off-by: Robin H. Johnson <robbat2@gentoo.org>\nX-Thanks: Alec Warner <antarus@gentoo.org> - did the GSoC 2006 migration tests\nX-Thanks: Robin H. Johnson <robbat2@gentoo.org> - infra guy, herding this project\nX-Thanks: Nguyen Thai Ngoc Duy <pclouds@gentoo.org> - Former Gentoo developer, wrote Git features for the migration\nX-Thanks: Brian Harring <ferringb@gentoo.org> - wrote much python to improve cvs2svn\nX-Thanks: Rich Freeman <rich0@gentoo.org> - validation scripts\nX-Thanks: Patrick Lauer <patrick@gentoo.org> - Gentoo dev, running new 2014 work in migration\nX-Thanks: Michał Górny <mgorny@gentoo.org> - scripts, QA, nagging\nX-Thanks: All of other Gentoo developers - many ideas and lots of paint on the bikeshed","commitid":"56bd759df1d0c750a065b8c845e93d5dfa6b549d","committime":"2015-08-08T20:49:04","packageid":52488,"repoid":1,"summary":"proj\/gentoo: Initial commit"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"a637bd65b7fef8e2be4e7fc6e9097479372e0e2e","committime":"2015-06-19T16:38:33","packageid":52488,"repoid":1,"summary":"2015-06-19 16:35:30 UTC"}],"dependencies":[],"depending":[],"ebuilds":[{"archs":["amd64","ppc","x86","~alpha","~arm","~mips"],"ebuildid":780883,"firstseen":"2023-03-14T02:23:52.893337","license":"GPL-2+","moddate":"2026-03-22T20:20:48","packageid":52488,"repoid":1,"slot":"0","uses":[],"version":"1.4.6-r2"}],"masks":[],"package":{"categoryid":440,"description":"Rootkit Hunter scans for known and unknown rootkits, backdoors, and sniffers","firstseen":"2010-05-04T00:54:45.661860","maintainer":"forensics@gentoo.org","maintainername":"Gentoo Forensics Project","name":"rkhunter","packageid":52488},"rdependencies":[{"block":false,"categoryid":450,"description":"Larry Wall's Practical Extraction and Report Language","ebuildids":[780883],"firstseen":"2010-05-04T00:54:45.661860","maintainer":"perl@gentoo.org","maintainername":"Gentoo Perl Project","name":"perl","packageid":44582},{"block":false,"categoryid":386,"description":"The standard GNU Bourne again shell","ebuildids":[780883],"firstseen":"2010-05-04T00:54:45.661860","maintainer":"base-system@gentoo.org","maintainername":"Gentoo Base System","name":"bash","packageid":45694},{"block":false,"categoryid":325,"description":"Lists open files for running Unix processes","ebuildids":[780883],"firstseen":"2010-05-04T00:54:45.661860","maintainer":"base-system@gentoo.org","maintainername":"Gentoo Base System","name":"lsof","packageid":50905}],"repos":[{"branch":"master","lastcommit":"52197549fd3431fa256b8edbafdcd3702dd0e134","name":"gentoo","path":"\/usr\/portage","repoid":1,"upstream":"origin"}],"tracked":false,"urls":["https:\/\/rkhunter.sf.net\/"],"uses":[]}