Bug 262414 - graphics/p5-Image-ExifTool-devel: Update to 12.40
Summary: graphics/p5-Image-ExifTool-devel: Update to 12.40
Status: Closed DUPLICATE of bug 264618
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-ports-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2022-03-08 10:29 UTC by takefu
Modified: 2022-06-22 06:42 UTC (History)
2 users (show)

See Also:
bugzilla: maintainer-feedback? (linpct)

Attachments
p5-Image-ExifTool-devel-12.40.patch (6.37 KB, patch)
2022-03-08 10:29 UTC, takefu 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description takefu 2022-03-08 10:29:34 UTC 
Created attachment 232318 [details]
p5-Image-ExifTool-devel-12.40.patch
Comment 1 Rafael Grether 2022-03-25 14:57:38 UTC 
@Reporter, I think you need to set the patch flag to ? for the maintainer to approve.
There is a security issue involved: CVE-2022-23935, leading to command injection.

So, we'll need security/vuxml entries for these along with additional information from upstream on their nature, including CVE and other upstream (issue, pr, commit) reference links where available.

If you could take care of the addition of security/vuxml entries that would be great.

@Maintainer, there is a security issue involved.
I am the graphics/p5-Image-ExifTool maintainer. If you want, I can take over this port too, if you want this, please let me know.
Comment 2 takefu 2022-03-30 09:00:10 UTC 
(In reply to Rafael Grether from comment #1)

Sorry.
'security/vuxml' I don't know this format, so I can't add it.
Comment 3 takefu 2022-06-22 06:42:10 UTC 

*** This bug has been marked as a duplicate of bug 264618 ***