Bug 257597 - security/vuxml: add net-im/prosody CVE-2021-37601
Summary: security/vuxml: add net-im/prosody CVE-2021-37601
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Li-Wen Hsu
URL: https://prosody.im/security/advisory_...
Keywords:
Depends on:
Blocks:
 
Reported: 2021-08-03 17:46 UTC by Thomas Morper
Modified: 2021-08-03 18:25 UTC (History)
2 users (show)

See Also:


Attachments
net-im/prosody remote information disclosure (1.23 KB, patch)
2021-08-03 17:46 UTC, Thomas Morper
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Morper 2021-08-03 17:46:05 UTC
Created attachment 226920 [details]
net-im/prosody remote information disclosure

A remote information disclosure has been discovered in the Prosody XMPP server.
An update for net-im/prosody has been submitted in bug #257595.
Comment 1 commit-hook freebsd_committer 2021-08-03 18:23:09 UTC
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=bfc6a3ee044d51a7989cb9d51b1a66c8b9efe84f

commit bfc6a3ee044d51a7989cb9d51b1a66c8b9efe84f
Author:     Thomas Morper <thomas@beingboiled.info>
AuthorDate: 2021-08-03 18:22:00 +0000
Commit:     Li-Wen Hsu <lwhsu@FreeBSD.org>
CommitDate: 2021-08-03 18:22:00 +0000

    security/vuxml: Add net-im/prosody CVE-2021-37601

    PR:             257597

 security/vuxml/vuln-2021.xml | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)