[Bug 250971] textproc/raptor2 heap overflow
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Nov 9 16:48:28 GMT 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=250971
--- Comment #4 from commit-hook at FreeBSD.org ---
A commit references this bug:
Author: tcberner
Date: Mon Nov 9 16:47:47 UTC 2020
New revision: 554732
URL: https://svnweb.freebsd.org/changeset/ports/554732
Log:
MFH: r554671
textproc/raptor2 heap overflow
According to https://www.openwall.com/lists/oss-security/2017/06/07/1 there
are
two heap overflows in raptor 2.0.15.
A CVE has been assigned:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18926
The upstream raptor github repo has a patch:
https://github.com/dajobe/raptor/commit/590681e546cd9aa18d57dc2ea1858cb734a3863f.patch
PR: 250971
Submitted by: truckman
Security: CVE-2017-18926
Approved by: ports-secteam (riggs)
Changes:
_U branches/2020Q4/
branches/2020Q4/textproc/raptor2/Makefile
branches/2020Q4/textproc/raptor2/files/
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the kde-freebsd
mailing list