Bug 204416

Summary:	www/p5-HTML-Scrubber - missing vuxml entry for CVE-2015-5667
Product:	Ports & Packages	Reporter:	Sevan Janiyan <venture37>
Component:	Individual Port(s)	Assignee:	Jason Unovitch <junovitch>
Status:	Closed FIXED
Severity:	Affects Only Me	CC:	junovitch, ports-secteam
Priority:	---	Keywords:	security
Version:	Latest	Flags:	bugzilla: maintainer-feedback? (perl) junovitch: merge-quarterly+
Hardware:	Any
OS:	Any

Description Sevan Janiyan 2015-11-10 02:03:08 UTC

http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000171.html

Comment 1 commit-hook freebsd_committer

2015-11-11 02:17:24 UTC

A commit references this bug:

Author: junovitch
Date: Wed Nov 11 02:16:23 UTC 2015
New revision: 401223
URL: https://svnweb.freebsd.org/changeset/ports/401223

Log:
  Document p5-HTML-Scrubber XSS vulnerability

  PR:		204416
  Reported by:	Sevan Janiyan <venture37@geeklan.co.uk>
  Security:	CVE-2015-5667
  Security:	https://vuxml.FreeBSD.org/freebsd/2f7f4db2-8819-11e5-ab94-002590263bf5.html

Changes:
  head/security/vuxml/vuln.xml

Comment 2 Jason Unovitch freebsd_committer

2015-11-11 02:24:04 UTC

Take for reminder and pending MFH approval.

Comment 3 Jason Unovitch freebsd_committer

2015-11-15 22:43:35 UTC

- Set merge-quarterly+ -- https://svnweb.FreeBSD.org/changeset/ports/401736
- Close PR

Sevan, thanks again for the keen eye.