Attachment 131755 Details for Bug 175910 – vuxml-1.1_1.patch

[patch] vuxml-1.1_1.patch

vuxml-1.1_1.patch (text/plain; charset=utf-8), 1.54 KB, created by Po-Chien Lin on 2013-02-07 02:28:17 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Po-Chien Lin

Created: 2013-02-07 02:28:17 UTC

Size: 1.54 KB

patch

obsolete

>diff -ruN --exclude=CVS /usr/ports/security/vuxml/vuln.xml ./vuln.xml
>--- /usr/ports/security/vuxml/vuln.xml	2013-02-07 06:05:49.553294764 +0800
>+++ ./vuln.xml	2013-02-07 09:58:55.213228952 +0800
>@@ -51,6 +51,41 @@
> 
> -->
> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
>+  <vuln vid="d881d254-70c6-11e2-862d-080027a5ec9a">
>+    <topic>libexif -- multiple remote vulnerabilities</topic>
>+    <affects>
>+      <package>
>+	<name>libexif</name>
>+	<range><lt>0.6.21</lt></range>
>+      </package>
>+    </affects>
>+    <description>
>+      <body xmlns="http://www.w3.org/1999/xhtml">
>+        <p>libexif project security advisory:</p>
>+        <blockquote cite="http://sourceforge.net/mailarchive/message.php?msg_id=29534027">
>+	  <p>A number of remotely exploitable issues were discovered in libexif
>+	    and exif, with effects ranging from information leakage to potential
>+	    remote code execution.</p>
>+	</blockquote>
>+      </body>
>+    </description>
>+    <references>
>+      <cvename>CVE-2012-2812</cvename>
>+      <cvename>CVE-2012-2813</cvename>
>+      <cvename>CVE-2012-2814</cvename>
>+      <cvename>CVE-2012-2836</cvename>
>+      <cvename>CVE-2012-2837</cvename>
>+      <cvename>CVE-2012-2840</cvename>
>+      <cvename>CVE-2012-2841</cvename>
>+      <cvename>CVE-2012-2845</cvename>
>+      <bid>54437</bid>
>+    </references>
>+    <dates>
>+      <discovery>2012-07-12</discovery>
>+      <entry>2013-02-07</entry>
>+    </dates>
>+  </vuln>
>+
>   <vuln vid="00b0d8cd-7097-11e2-98d9-003067c2616f">
>   <topic>OpenSSL -- TLS 1.1, 1.2 denial of service</topic>
>     <affects>

Actions: View | Diff

Attachments on bug 175910: 131754 | 131755