Bug 200334

Summary: [security] security-ipsectools - null-derefence vulnerability
Product: Ports & Packages Reporter: Sevan Janiyan <venture37>
Component: Individual Port(s)Assignee: Brad Davis <brd>
Status: Closed FIXED    
Severity: Affects Many People CC: brd
Priority: ---    
Version: Latest   
Hardware: Any   
OS: Any   

Description Sevan Janiyan 2015-05-19 15:59:12 UTC 
Outlined https://www.altsci.com/ipsec/
Fix in:
http://mail-index.netbsd.org/source-changes/2015/05/19/msg066116.html

initially in r1.5 then redone in r1.6 to avoid memory leak
Comment 1 commit-hook freebsd_committer freebsd_triage 2015-05-19 17:01:47 UTC 
A commit references this bug:

Author: brd
Date: Tue May 19 17:00:58 UTC 2015
New revision: 386793
URL: https://svnweb.freebsd.org/changeset/ports/386793

Log:
  Update ipsec-tools with a patch from NetBSD to fix a memory leak.

  PR:		200334 (reported in)
  Submitted by:	brd
  Approved by:	bdrewery (mentor, portmgr)
  MFH:		2015Q2

Changes:
  head/security/ipsec-tools/Makefile
  head/security/ipsec-tools/files/patch-src_racoon_gssapi.c
Comment 2 commit-hook freebsd_committer freebsd_triage 2015-05-19 19:28:07 UTC 
A commit references this bug:

Author: brd
Date: Tue May 19 19:27:39 UTC 2015
New revision: 386807
URL: https://svnweb.freebsd.org/changeset/ports/386807

Log:
  Document vulnerability in security/ipsec-tools.

  PR:		200334
  Approved by:	bdrewery (mentor)

Changes:
  head/security/vuxml/vuln.xml