Bug 214951

Summary: textproc/linux-c6-expat: update to 2.0.1-13.el6_8, security/vuxml: Add entry for CVE-2016-0718
Product: Ports & Packages Reporter: Piotr Kubaj <pkubaj>
Component: Individual Port(s)Assignee: Tijl Coosemans <tijl>
Status: Closed FIXED    
Severity: Affects Some People CC: ports-secteam
Priority: Normal Keywords: needs-qa, security
Version: LatestFlags: bugzilla: maintainer-feedback? (emulation)
koobs: maintainer-feedback? (ports-secteam)
koobs: merge-quarterly?
Hardware: Any   
OS: Any   
URL: https://rhn.redhat.com/errata/RHSA-2016-2824.html
Attachments:
Description Flags
expat patch
none
vuxml patch pkubaj: maintainer-approval?

Description Piotr Kubaj freebsd_committer freebsd_triage 2016-11-30 14:41:23 UTC 
Created attachment 177537 [details]
expat patch

The attached patches fix vulnerability mentioned in https://rhn.redhat.com/errata/RHSA-2016-2824.html

They also revert the commit https://svnweb.freebsd.org/ports?view=revision&revision=425491

Poudriere builds it fine on 10.3.
Comment 1 Piotr Kubaj freebsd_committer freebsd_triage 2016-11-30 14:41:47 UTC 
Created attachment 177538 [details]
vuxml patch
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-11-30 16:28:11 UTC 
A commit references this bug:

Author: tijl
Date: Wed Nov 30 16:27:51 UTC 2016
New revision: 427435
URL: https://svnweb.freebsd.org/changeset/ports/427435

Log:
  Update to 2.0.1-13.el6_8.

  PR:		214951
  Submitted by:	Piotr Kubaj <pkubaj@anongoth.pl>
  MFH:		2016Q4
  Security:	https://rhn.redhat.com/errata/RHSA-2016-2824.html

Changes:
  head/textproc/linux-c6-expat/Makefile
  head/textproc/linux-c6-expat/distinfo.i386
  head/textproc/linux-c6-expat/distinfo.x86_64
Comment 3 commit-hook freebsd_committer freebsd_triage 2016-11-30 16:51:32 UTC 
A commit references this bug:

Author: tijl
Date: Wed Nov 30 16:51:18 UTC 2016
New revision: 427439
URL: https://svnweb.freebsd.org/changeset/ports/427439

Log:
  Add linux-*-expat to CVE-2016-0718 entry.

  PR:		214951
  Security:	https://rhn.redhat.com/errata/RHSA-2016-2824.html

Changes:
  head/security/vuxml/vuln.xml
Comment 4 commit-hook freebsd_committer freebsd_triage 2016-12-01 09:27:54 UTC 
A commit references this bug:

Author: tijl
Date: Thu Dec  1 09:27:25 UTC 2016
New revision: 427481
URL: https://svnweb.freebsd.org/changeset/ports/427481

Log:
  MFH: r427435

  Update to 2.0.1-13.el6_8.

  PR:		214951
  Submitted by:	Piotr Kubaj <pkubaj@anongoth.pl>
  Security:	https://rhn.redhat.com/errata/RHSA-2016-2824.html
  Approved by:	ports-secteam (junovitch)

Changes:
_U  branches/2016Q4/
  branches/2016Q4/textproc/linux-c6-expat/Makefile
  branches/2016Q4/textproc/linux-c6-expat/distinfo.i386
  branches/2016Q4/textproc/linux-c6-expat/distinfo.x86_64