Bug 245819

Summary: security/vuxml CVE-2020-8492
Product: Ports & Packages Reporter: rob2g2 <rob2g2-freebsd>
Component: Individual Port(s)Assignee: Danilo G. Baio <dbaio>
Status: Closed FIXED    
Severity: Affects Some People CC: dbaio, joneum
Priority: --- Flags: joneum: maintainer-feedback+
Version: Latest   
Hardware: Any   
OS: Any   
Bug Depends on:    
Bug Blocks: 245776, 246738    
Attachments:
Description Flags
change for vuxml to include cve-2020-8492
none
change for vuxml to include cve-2020-8492
none
change for vuxml to include cve-2020-8492 none

Description rob2g2 2020-04-22 11:33:54 UTC 
Created attachment 213678 [details]
change for vuxml to include cve-2020-8492

python vulnerabilities
Comment 1 rob2g2 2020-04-22 11:40:37 UTC 
Comment on attachment 213678 [details]
change for vuxml to include cve-2020-8492

wrong format
Comment 2 rob2g2 2020-04-22 11:42:16 UTC 
Created attachment 213679 [details]
change for vuxml to include cve-2020-8492

patch for vuxml
Comment 3 rob2g2 2020-04-22 11:53:09 UTC 
Created attachment 213681 [details]
change for vuxml to include cve-2020-8492
Comment 4 Jochen Neumeister freebsd_committer freebsd_triage 2020-04-22 12:07:55 UTC 
security fix for python, so give the PR to @python

set + from ports-secteam to commit
Comment 5 commit-hook freebsd_committer freebsd_triage 2020-04-23 01:17:59 UTC 
A commit references this bug:

Author: dbaio
Date: Thu Apr 23 01:17:14 UTC 2020
New revision: 532610
URL: https://svnweb.freebsd.org/changeset/ports/532610

Log:
  security/vuxml: Document lang/python issue

  PR:		245819
  Security:	CVE-2020-8492

Changes:
  head/security/vuxml/vuln.xml
Comment 6 Danilo G. Baio freebsd_committer freebsd_triage 2020-04-23 01:18:49 UTC 
Committed, thanks!