Bug 257597 - security/vuxml: add net-im/prosody CVE-2021-37601
Summary: security/vuxml: add net-im/prosody CVE-2021-37601
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Li-Wen Hsu
URL: https://prosody.im/security/advisory_...
Keywords:
Depends on:
Blocks:
 
Reported: 2021-08-03 17:46 UTC by Thomas Morper
Modified: 2021-08-03 18:25 UTC (History)
2 users (show)

See Also:

Attachments
net-im/prosody remote information disclosure (1.23 KB, patch)
2021-08-03 17:46 UTC, Thomas Morper 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Morper 2021-08-03 17:46:05 UTC 
Created attachment 226920 [details]
net-im/prosody remote information disclosure

A remote information disclosure has been discovered in the Prosody XMPP server.
An update for net-im/prosody has been submitted in bug #257595.
Comment 1 commit-hook freebsd_committer freebsd_triage 2021-08-03 18:23:09 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=bfc6a3ee044d51a7989cb9d51b1a66c8b9efe84f

commit bfc6a3ee044d51a7989cb9d51b1a66c8b9efe84f
Author:     Thomas Morper <thomas@beingboiled.info>
AuthorDate: 2021-08-03 18:22:00 +0000
Commit:     Li-Wen Hsu <lwhsu@FreeBSD.org>
CommitDate: 2021-08-03 18:22:00 +0000

    security/vuxml: Add net-im/prosody CVE-2021-37601

    PR:             257597

 security/vuxml/vuln-2021.xml | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)