Bug 252931 - security/vuxml: mutt DOS fixed in 2.0.5
Summary: security/vuxml: mutt DOS fixed in 2.0.5
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Juraj Lutter
URL: https://nvd.nist.gov/vuln/detail/CVE-...
Keywords:
Depends on:
Blocks: 252930
  Show dependency treegraph
 
Reported: 2021-01-23 05:06 UTC by Derek Schrock
Modified: 2021-01-23 18:23 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (ports-secteam)


Attachments
Add DOS from mutt < 2.0.5 (1.86 KB, patch)
2021-01-23 05:06 UTC, Derek Schrock
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Derek Schrock 2021-01-23 05:06:14 UTC
Created attachment 221829 [details]
Add DOS from mutt < 2.0.5

Add DOS from mutt < 2.0.5

make validate is currently failing due to 562203/562204 however the generated HTML/CSS appears alright.
Comment 1 Juraj Lutter freebsd_committer 2021-01-23 17:05:32 UTC
review D28308
Comment 2 commit-hook freebsd_committer 2021-01-23 18:20:25 UTC
A commit references this bug:

Author: otis
Date: Sat Jan 23 18:19:40 UTC 2021
New revision: 562408
URL: https://svnweb.freebsd.org/changeset/ports/562408

Log:
  security/vuxml: Document mail/mutt vulnerability

  Document mail/mutt vulnerability CVE-2021-3181

  PR:		252931
  Submitted by:	Derek Schrock <dereks@lifeofadishwasher.com>
  Reported by:	Derek Schrock <dereks@lifeofadishwasher.com>
  Reviewed by:	osa (mentor)
  Approved by:	osa (mentor)
  Differential Revision:	https://reviews.freebsd.org/D28308

Changes:
  head/security/vuxml/vuln.xml
Comment 3 Juraj Lutter freebsd_committer 2021-01-23 18:23:55 UTC
Committed, thanks.