Bug 239563 - x11-toolkits/pango vulnerable
Summary: x11-toolkits/pango vulnerable
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: freebsd-gnome mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-07-31 18:18 UTC by Miyashita Touka
Modified: 2019-09-28 14:00 UTC (History)
2 users (show)

See Also:
bugzilla: maintainer-feedback? (gnome)


Attachments
CVE-2019-1010238 (791 bytes, patch)
2019-08-01 16:05 UTC, Miyashita Touka
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Miyashita Touka 2019-07-31 18:18:54 UTC
The pango port needs a security update.

See:

https://ftp.gnome.org/pub/GNOME/sources/pango/1.44/
and
https://launchpad.net/ubuntu/+source/pango1.0/1.42.4-6ubuntu0.1
Comment 1 Miyashita Touka 2019-08-01 16:05:07 UTC
Created attachment 206202 [details]
CVE-2019-1010238
Comment 2 Miyashita Touka 2019-08-04 17:11:49 UTC
Anyone able to commit this security fix with a revision bump?
Comment 3 Miyashita Touka 2019-09-28 14:00:55 UTC
Still vulnerable, months after submission.