244988 – databases/R-cran-RMySQL - [patch] Update to 0.10.20 for CVE-2020-10380

Bug 244988 - databases/R-cran-RMySQL - [patch] Update to 0.10.20 for CVE-2020-10380

Summary: databases/R-cran-RMySQL - [patch] Update to 0.10.20 for CVE-2020-10380

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	TAKATSU Tomonari

URL:
Keywords:

Depends on:
Blocks:

Reported:	2020-03-22 21:25 UTC by Harrison Grundy
Modified:	2020-05-12 08:14 UTC (History)
CC List:	2 users (show)

See Also:

Flags:	bugzilla: maintainer-feedback? (tota)

Attachments
Patch (884 bytes, text/plain) 2020-03-22 21:25 UTC, Harrison Grundy	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Harrison Grundy 2020-03-22 21:25:46 UTC

Created attachment 212622 [details]
Patch

RMySQL <= 0.10.19 has an active advisory for SQL injection: CVE-2020-10380

Bump to 0.10.20.

Comment 1 Wen Heping freebsd_committer

2020-05-12 08:14:30 UTC

databases/R-cran-RMySQL had been updated to 0.10.20.

wen