274794 – security/vuxml: Add optipng <= 0.7.7 buffer overflow

Bug 274794 - security/vuxml: Add optipng <= 0.7.7 buffer overflow

Summary: security/vuxml: Add optipng <= 0.7.7 buffer overflow

Status:	New

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Some People
Assignee:	Ports Security Team

URL:	https://nvd.nist.gov/vuln/detail/CVE-...
Keywords:

Depends on:
Blocks:

Reported:	2023-10-29 17:16 UTC by Thomas Hurst
Modified:	2023-10-30 22:59 UTC (History)
CC List:	1 user (show)

See Also:	274822

Flags:	bugzilla: maintainer-feedback? (ports-secteam)

Attachments
Git patch for security/vuxml (1.48 KB, application/mbox) 2023-10-29 17:16 UTC, Thomas Hurst	no flags	Details
Git patch for security/vuxml (1.48 KB, patch) 2023-10-29 19:36 UTC, Thomas Hurst	tom: maintainer-approval?	Details \| Diff
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Hurst 2023-10-29 17:16:24 UTC

Created attachment 245976 [details]
Git patch for security/vuxml

graphics/optipng contains a buffer overflow with specially-crafted GIF files.

Comment 1 Thomas Hurst 2023-10-29 19:36:56 UTC

Created attachment 245978 [details]
Git patch for security/vuxml

Added a missing -