Bug 66871

Summary: (no subject)
Product: Ports & Packages Reporter: Frank Ruell <stoerte>
Component: Individual Port(s)Assignee: freebsd-ports-bugs (Nobody) <ports-bugs>
Status: Closed FIXED    
Severity: Affects Only Me CC: lev
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
neon-0.24.6.patch none

Description Frank Ruell 2004-05-19 12:40:22 UTC 
	Update to newest Version. There's a security isssue with the
	old version.
	Quote from http://security.e-matters.de/advisories/062004.html
	" A vulnerability within a libneon date parsing function could
	cause a heap overflow which could lead to remote code
	execution, depending on the application using libneon."

	It will be CVE CAN-2004-0398,
	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0398
Comment 1 Frank Ruell 2004-05-19 13:13:36 UTC 
Please close this PR, see ports/66874 instead.
Sorry for any inconvenience this created.

Frank
Comment 2 Mark Linimon freebsd_committer freebsd_triage 2004-05-19 13:22:25 UTC 
State Changed
From-To: open->closed

See ports/66874 instead.