Hello, I'm the upstream maintainer for the software in this package. In v3.8.1 we released a fix for security advisory 2020-02 (https://docs.inspircd.org/security/2020-02/). Currently FreeBSD is packaging v3.7.0 which is vulnerable to this vulnerability. Would it be possible for you to update it to fix this? There have been no breaking changes between these two releases but here is the changelog for this version if you need it: https://docs.inspircd.org/3/change-log/#inspircd-381 Thanks, ~Sadie
A commit references this bug: Author: jrm Date: Fri Jan 1 04:06:34 UTC 2021 New revision: 559799 URL: https://svnweb.freebsd.org/changeset/ports/559799 Log: irc/inspircd: Update to version 3.8.1 - Apply suggestions from portclippy/portfmt/portlint - Remove multiple no-op REINPLACE_CMD https://docs.inspircd.org/3/change-log/#inspircd-381 PR: 252291 Reported by: Sadie Powell <sadie@witchery.services> Changes: head/irc/inspircd/Makefile head/irc/inspircd/distinfo head/irc/inspircd/files/patch-make_template_inspircd head/irc/inspircd/files/patch-make_template_main.mk
A commit references this bug: Author: jrm Date: Fri Jan 1 04:31:38 UTC 2021 New revision: 559800 URL: https://svnweb.freebsd.org/changeset/ports/559800 Log: Document inspircd vulnerabilitiy PR: 252291 Reported by: Sadie Powell <sadie@witchery.services> Changes: head/security/vuxml/vuln.xml
Committed. Thanks!
^Triage: - Assign to committer that resolved - Track non MFH (assuming end of current quarter as reason)