Bug 210541 - security/vuxml: Security vulnerability in python33 (CVE-2016-5699)
Summary: security/vuxml: Security vulnerability in python33 (CVE-2016-5699)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Ports Security Team
URL:
Keywords: patch, security
Depends on:
Blocks:
 
Reported: 2016-06-24 21:43 UTC by VK
Modified: 2016-07-04 01:46 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (ports-secteam)

Attachments
VuxML entry for python33 vuln (CVE-2016-5699) (1.52 KB, patch)
2016-06-24 21:43 UTC, VK 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description VK freebsd_triage 2016-06-24 21:43:11 UTC 
Created attachment 171763 [details]
VuxML entry for python33 vuln (CVE-2016-5699)

Security vulnerability in python33 (CVE-2016-5699)
Comment 1 VK freebsd_triage 2016-06-24 21:45:09 UTC 
As that "See also" entry is barely visible, worth noting again that this is related to Bug #210539.
Comment 2 Mark Felder freebsd_committer freebsd_triage 2016-06-30 21:08:53 UTC 
committed, thanks!
Comment 3 commit-hook freebsd_committer freebsd_triage 2016-06-30 21:09:38 UTC 
A commit references this bug:

Author: feld
Date: Thu Jun 30 21:08:44 UTC 2016
New revision: 417843
URL: https://svnweb.freebsd.org/changeset/ports/417843

Log:
  Document python vulnerability

  PR:		210541
  Security:	CVE-2016-5699

Changes:
  head/security/vuxml/vuln.xml
Comment 4 commit-hook freebsd_committer freebsd_triage 2016-07-04 01:46:52 UTC 
A commit references this bug:

Author: junovitch
Date: Mon Jul  4 01:46:35 UTC 2016
New revision: 418007
URL: https://svnweb.freebsd.org/changeset/ports/418007

Log:
  Add fixed entries for Python 2.7, 3.4, 3.5 for urllib vulnerability.

  Reset 3.3 as unfixed.

  PR:		210539
  PR:		210541
  Reported by:	Vladimir Krstulja <vlad-fbsd@acheronmedia.com>
  Security:	CVE-2016-5699
  Security:	https://vuxml.FreeBSD.org/freebsd/a61374fc-3a4d-11e6-a671-60a44ce6887b.html

Changes:
  head/security/vuxml/vuln.xml