Summary: | archivers/unzip multiple vulnerabilities | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Sevan Janiyan <venture37> | ||||||
Component: | Individual Port(s) | Assignee: | Emanuel Haupt <ehaupt> | ||||||
Status: | Closed FIXED | ||||||||
Severity: | Affects Only Me | CC: | feld, ports-secteam | ||||||
Priority: | --- | Keywords: | needs-patch, security | ||||||
Version: | Latest | Flags: | bugzilla:
maintainer-feedback?
(ehaupt) |
||||||
Hardware: | Any | ||||||||
OS: | Any | ||||||||
Attachments: |
|
Description
Sevan Janiyan
2015-11-10 01:03:39 UTC
Created attachment 165057 [details]
Patch to fix CVE-2015-7696 and CVE-2015-7697
Emanual, let me know if you need any assistance with the vuxml entry (In reply to Mark Felder from comment #2) Thank you for the offer to review the VuXML entry. Bernard Spil kindly helped me with the entry (attached). I would appreciate your review. Created attachment 165091 [details]
VuXML entry to be added
VuXML entry kindly provided by brnrd
A commit references this bug: Author: ehaupt Date: Tue Jan 5 13:08:35 UTC 2016 New revision: 405286 URL: https://svnweb.freebsd.org/changeset/ports/405286 Log: Fix multiple vulnerabilities. PR: 204413 (based on) Notified by: venture37@geeklan.co.uk Security: CVE-2015-7696, CVE-2015-7697 MFH: 2016Q1 Changes: head/archivers/unzip/Makefile head/archivers/unzip/files/patch-crypt.c head/archivers/unzip/files/patch-extract.c A commit references this bug: Author: ehaupt Date: Tue Jan 5 13:12:57 UTC 2016 New revision: 405287 URL: https://svnweb.freebsd.org/changeset/ports/405287 Log: MFH: r405286 Fix multiple vulnerabilities. PR: 204413 (based on) Notified by: venture37@geeklan.co.uk Security: CVE-2015-7696, CVE-2015-7697 Approved by: ports-secteam (feld) Changes: _U branches/2016Q1/ branches/2016Q1/archivers/unzip/Makefile branches/2016Q1/archivers/unzip/files/patch-crypt.c branches/2016Q1/archivers/unzip/files/patch-extract.c |