256373 – inform users via security/vuxml about the recent lasso vulnerability

Bug 256373 - inform users via security/vuxml about the recent lasso vulnerability

Summary: inform users via security/vuxml about the recent lasso vulnerability

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Many People
Assignee:	Thomas Zander

URL:
Keywords:

Depends on:
Blocks:

Reported:	2021-06-02 11:53 UTC by rob2g2
Modified:	2021-06-04 09:34 UTC (History)
CC List:	5 users (show)

See Also:

Flags:	riggs: maintainer-feedback+

Attachments
vuxml entry (1.20 KB, patch) 2021-06-02 11:56 UTC, rob2g2	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description rob2g2 2021-06-02 11:53:50 UTC

users should be informed about CVE-2021-28091.

Comment 1 rob2g2 2021-06-02 11:56:01 UTC

Created attachment 225493 [details]
vuxml entry

Comment 2 commit-hook freebsd_committer

2021-06-04 09:33:40 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=df775d9b0750551c46c5f344faa1e8789bbad071

commit df775d9b0750551c46c5f344faa1e8789bbad071
Author:     Thomas Zander <riggs@FreeBSD.org>
AuthorDate: 2021-06-04 09:30:07 +0000
Commit:     Thomas Zander <riggs@FreeBSD.org>
CommitDate: 2021-06-04 09:32:50 +0000

    security/vuxml: Document CVE-2021-28091 for security/lasso.

    PR:             256373
    Reported by:    spam123@bitbert.com

 security/vuxml/vuln.xml | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)