91202 – security/vuxml: Add the entry of perl sprintf vulnerability (CVE-2005-3962)

Bug 91202 - security/vuxml: Add the entry of perl sprintf vulnerability (CVE-2005-3962)

Summary: security/vuxml: Add the entry of perl sprintf vulnerability (CVE-2005-3962)

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	Normal Affects Only Me
Assignee:	Remko Lodder

URL:
Keywords:

Depends on:
Blocks:

Reported:	2006-01-02 06:00 UTC by KOMATSU Shinichiro
Modified:	2006-02-15 12:54 UTC (History)
CC List:	0 users

See Also:

Attachments
file.diff (2.18 KB, patch) 2006-01-02 06:00 UTC, KOMATSU Shinichiro	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description KOMATSU Shinichiro 2006-01-02 06:00:16 UTC

Patch for CVE-2005-3962 (fixes for sprintf formatting issues)
has already been fixed in ports tree, but not documented in VuXML.

Note that perl 5.6.2 is not marked as vulnerable by Bugtraq,
I am not certain whether it is true or not.

Comment 1 Edwin Groothuis freebsd_committer

2006-01-02 06:01:58 UTC

Responsible Changed
From-To: freebsd-ports-bugs->secteam

Over to maintainer

Comment 2 Simon L. B. Nielsen freebsd_committer

2006-01-02 15:51:53 UTC

Responsible Changed
From-To: secteam->remko

Over to remko at his request.

Comment 3 Remko Lodder freebsd_committer

2006-02-15 12:53:44 UTC

State Changed
From-To: open->closed

I committed the diff with a slight modification. 
Thanks for the submission!