http://www.ocert.org/advisories/ocert-2015-006.html
A commit references this bug: Author: rodrigo Date: Thu May 14 21:27:52 UTC 2015 New revision: 386364 URL: https://svnweb.freebsd.org/changeset/ports/386364 Log: Upgrade ufraw from 0.19.2 to 0.21 Remove deprecated patches Apply bugfix for CVE-2015-3885 PR: 200197 obtained from: rawtherapee MFH: 2015Q2 Security: CVE-2015-3885 Changes: head/graphics/ufraw/Makefile head/graphics/ufraw/distinfo head/graphics/ufraw/files/patch-dcraw.cc head/graphics/ufraw/files/patch-ufraw.h
committed, thanks
Should this get a vuxml entry for a heads up?
A commit references this bug: Author: rodrigo Date: Fri May 15 07:12:20 UTC 2015 New revision: 386387 URL: https://svnweb.freebsd.org/changeset/ports/386387 Log: security/vuxml: Add CVE-2015-3885 entry for graphics/ufraw PR: 200197 Changes: head/security/vuxml/vuln.xml
A commit references this bug: Author: rodrigo Date: Fri May 15 07:26:05 UTC 2015 New revision: 386389 URL: https://svnweb.freebsd.org/changeset/ports/386389 Log: MFH: r386364 Upgrade ufraw from 0.19.2 to 0.21 - release bugfixes - Support fuji X-Trans filters Remove deprecated patches Apply bugfix for CVE-2015-3885 PR: 200197 obtained from: rawtherapee Security: CVE-2015-3885 Approved by: ports-secteam Changes: _U branches/2015Q2/ branches/2015Q2/graphics/ufraw/Makefile branches/2015Q2/graphics/ufraw/distinfo branches/2015Q2/graphics/ufraw/files/patch-dcraw.cc branches/2015Q2/graphics/ufraw/files/patch-ufraw.h