Bug 121224 - [patch] Add pcre vulnerability to security/vuxml
Summary: [patch] Add pcre vulnerability to security/vuxml
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Thomas Abthorpe
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-02-29 16:30 UTC by Nick Barkas
Modified: 2008-03-01 04:10 UTC (History)
0 users

See Also:


Attachments
pcre_vuln.patch (1.14 KB, patch)
2008-02-29 16:30 UTC, Nick Barkas
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Nick Barkas 2008-02-29 16:30:02 UTC
PCRE versions before 7.6 are vulnerable to arbitrary code execution via a buffer
overflow. The following patch adds this vulnerability to the VuXML document.
Comment 1 Edwin Groothuis freebsd_committer 2008-02-29 16:30:12 UTC
Responsible Changed
From-To: freebsd-ports-bugs->secteam

Over to maintainer (via the GNATS Auto Assign Tool)
Comment 2 Thomas Abthorpe freebsd_committer 2008-02-29 16:58:34 UTC
Responsible Changed
From-To: secteam->tabthorpe

I'll take it.
Comment 3 dfilter service freebsd_committer 2008-03-01 04:08:17 UTC
tabthorpe    2008-03-01 04:08:11 UTC

  FreeBSD ports repository

  Modified files:
    security/vuxml       vuln.xml 
  Log:
  - Document pcre -- buffer overflow vulnerability
  
  PR:             ports/121224
  Submitted by:   Nick Barkas <snb threerings.net>
  
  Revision  Changes    Path
  1.1572    +30 -1     ports/security/vuxml/vuln.xml
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 4 Thomas Abthorpe freebsd_committer 2008-03-01 04:08:29 UTC
State Changed
From-To: open->closed

Committed, with minor changes. Thanks!