Bug 206372
| Summary: | graphics/imlib2: Update to 1.4.7 | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Ports & Packages | Reporter: | Fabian Keil <fk> | ||||
| Component: | Individual Port(s) | Assignee: | Mark Felder <feld> | ||||
| Status: | Closed FIXED | ||||||
| Severity: | Affects Many People | CC: | feld, junovitch, ports-secteam | ||||
| Priority: | Normal | Keywords: | needs-qa, patch, security | ||||
| Version: | Latest | Flags: | bugzilla:
maintainer-feedback?
(bf) feld: merge-quarterly+ |
||||
| Hardware: | Any | ||||||
| OS: | Any | ||||||
| Attachments: |
|
||||||
|
Description
Fabian Keil
2016-01-18 17:40:26 UTC
I emailed oss-sec to get these changes reviewed. There may be some CVEs assigned in the near future. Fix was committed to ports HEAD in r406782. I mistakenly left out this PR# from the log. A commit references this bug: Author: feld Date: Wed Jan 20 17:36:52 UTC 2016 New revision: 406783 URL: https://svnweb.freebsd.org/changeset/ports/406783 Log: MFH: r406782 graphics/imlib2: Update to 1.4.7 This update includes fixes for potential security issues. No CVEs have been assigned yet. https://git.enlightenment.org/legacy/imlib2.git/tree/ChangeLog Approved by: ports-secteam (with hat) PR: 206372 Changes: _U branches/2016Q1/ branches/2016Q1/graphics/imlib2/Makefile branches/2016Q1/graphics/imlib2/distinfo branches/2016Q1/graphics/imlib2/files/ branches/2016Q1/graphics/imlib2/pkg-plist I am taking this PR and will keep an eye out for any CVE assignment. I have not yet drafted a vuxml entry. A commit references this bug: Author: feld Date: Fri Jan 22 19:21:17 UTC 2016 New revision: 406940 URL: https://svnweb.freebsd.org/changeset/ports/406940 Log: Document graphics/imlib2 vulnerabilities PR: 206372 Security: CVE-2014-9762 Security: CVE-2014-9763 Security: CVE-2014-9764 Changes: head/security/vuxml/vuln.xml |
