The current version avilable for FreeBSD is vulnerable since 19.04.2017 and has already been patched upstream. See here: https://github.com/silnrsi/graphite/commit/1ce331d5548b Vulnerabilities see here: https://vuxml.freebsd.org/freebsd/cf133acc-82e7-4755-a66a-5ddf90dacbe6.html Is it possible to import the patch and bump portrevision globaly? Thanks for taking a look at it.
Created attachment 181938 [details] patch-CVE-2017-5436 Here is the proposed patch.
I'll take it.
A commit references this bug: Author: jkim Date: Thu Apr 20 18:40:09 UTC 2017 New revision: 438984 URL: https://svnweb.freebsd.org/changeset/ports/438984 Log: Add two upstream patches to fix CVE-2017-5436. https://github.com/silnrsi/graphite/commit/1ce331d https://github.com/silnrsi/graphite/commit/b23d7b9 PR: 218771 MFH: 2017Q2 Changes: head/graphics/graphite2/Makefile head/graphics/graphite2/files/ head/graphics/graphite2/files/patch-src_FeatureMap.cpp
A revised patch was committed. Thanks!
A commit references this bug: Author: jkim Date: Fri Apr 21 04:33:10 UTC 2017 New revision: 439002 URL: https://svnweb.freebsd.org/changeset/ports/439002 Log: MFH: r438984 Add two upstream patches to fix CVE-2017-5436. https://github.com/silnrsi/graphite/commit/1ce331d https://github.com/silnrsi/graphite/commit/b23d7b9 PR: 218771 Approved by: ports-secteam (junovitch) Changes: _U branches/2017Q2/ branches/2017Q2/graphics/graphite2/Makefile branches/2017Q2/graphics/graphite2/files/