Bug 209218 - irc/quassel: update to 0.12.4 (CVE-2016-4414)
Summary: irc/quassel: update to 0.12.4 (CVE-2016-4414)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Max Brazhnikov
URL: http://www.openwall.com/lists/oss-sec...
Keywords: needs-patch, needs-qa, security
Depends on:
Blocks:
 
Reported: 2016-05-03 00:05 UTC by Jason Unovitch
Modified: 2016-07-07 01:47 UTC (History)
1 user (show)

See Also:
junovitch: maintainer-feedback-
junovitch: merge-quarterly+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jason Unovitch freebsd_committer freebsd_triage 2016-05-03 00:05:23 UTC 
Maintainer of irc/quassel,
The most recent release is document as fixing a security related issue (CVE-2016-4414) and the port requires an update.  Can you please ensure the ports gets updated and an appropriate VuXML entry is created?
Comment 1 commit-hook freebsd_committer freebsd_triage 2016-07-07 01:44:53 UTC 
A commit references this bug:

Author: junovitch
Date: Thu Jul  7 01:44:24 UTC 2016
New revision: 418154
URL: https://svnweb.freebsd.org/changeset/ports/418154

Log:
  Document remote denial of service in quassel

  PR:		209218
  Security:	CVE-2016-4414
  Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html

Changes:
  head/security/vuxml/vuln.xml
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-07-07 01:44:54 UTC 
A commit references this bug:

Author: junovitch
Date: Thu Jul  7 01:44:33 UTC 2016
New revision: 418155
URL: https://svnweb.freebsd.org/changeset/ports/418155

Log:
  irc/quassel: update 0.12.3 -> 0.12.4

  PR:		209218
  Approved by:	makc (maintainer timeout, 2 months)
  Security:	CVE-2016-4414
  Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html
  MFH:		2016Q3

Changes:
  head/irc/quassel/Makefile
  head/irc/quassel/distinfo
  head/irc/quassel/pkg-plist
Comment 3 commit-hook freebsd_committer freebsd_triage 2016-07-07 01:45:56 UTC 
A commit references this bug:

Author: junovitch
Date: Thu Jul  7 01:45:18 UTC 2016
New revision: 418156
URL: https://svnweb.freebsd.org/changeset/ports/418156

Log:
  MFH: r418155

  irc/quassel: update 0.12.3 -> 0.12.4

  PR:		209218
  Approved by:	makc (maintainer timeout, 2 months)
  Approved by:	ports-secteam (with hat)
  Security:	CVE-2016-4414
  Security:	https://vuxml.FreeBSD.org/freebsd/7d64d00c-43e3-11e6-ab34-002590263bf5.html

Changes:
_U  branches/2016Q3/
  branches/2016Q3/irc/quassel/Makefile
  branches/2016Q3/irc/quassel/distinfo
  branches/2016Q3/irc/quassel/pkg-plist
Comment 4 Jason Unovitch freebsd_committer freebsd_triage 2016-07-07 01:47:16 UTC 
Setting maintainer-feedback- given the two month timeout.

Setting closed/fixed/merge-quarterly+.