Bug 205670

Summary: irc/quassel: Vulnerable version in 2015Q4 branch.
Product: Ports & Packages Reporter: Christian Schwarz <me>
Component: Individual Port(s)Assignee: Max Brazhnikov <makc>
Status: Closed Overcome By Events    
Severity: Affects Only Me CC: miwi, rodrigo.freebsd
Priority: --- Keywords: needs-patch, security
Version: LatestFlags: bugzilla: maintainer-feedback? (makc)
rodrigo.freebsd: merge-quarterly?
Hardware: Any   
OS: Any   

Description Christian Schwarz 2015-12-28 17:59:56 UTC
Although 2015Q4 is at its very end, the version 0.11.1 in 2015Q4 has a security vulnerability which was fixed in 0.12.2_1.

0.12.2_1 is only available in HEAD but the fix should be made available in 2015Q4 as well.

Procedures should be installed to prevent such situations from happening in the future.
Comment 1 Martin Wilke freebsd_committer freebsd_triage 2016-01-04 08:12:39 UTC
Hi,

Please switch to 2016Q1. The problem should be fixed there. 

Thanks.