Summary: | [PATCH] net-im/profanity: Use libotr 4 in the wake of CVE-2016-2851 | ||||||
---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Sascha Holzleiter <sascha> | ||||
Component: | Individual Port(s) | Assignee: | Tilman Keskinoz <arved> | ||||
Status: | Closed FIXED | ||||||
Severity: | Affects Some People | Keywords: | patch | ||||
Priority: | --- | Flags: | bugzilla:
maintainer-feedback?
(arved) |
||||
Version: | Latest | ||||||
Hardware: | Any | ||||||
OS: | Any | ||||||
Attachments: |
|
A commit references this bug: Author: arved Date: Thu Mar 10 14:12:07 UTC 2016 New revision: 410752 URL: https://svnweb.freebsd.org/changeset/ports/410752 Log: Switch to libotr instead of libotr3 PR: 207880 Submitted by: Sascha Holzleiter Changes: head/net-im/profanity/Makefile committed, thanks! |
Created attachment 167964 [details] libotr_patch As there seems to be no update for the 3.x branch of libotr to mitigate CVE-2016-2851 it would be nice to switch to libotr 4.x . The attached patch changes the libotr dependency to use securtiy/libotr.