Created attachment 249818 [details] Patches Makefile and distinfo to version 13 Fix potential DoS issue (CVE-2023-50967) with p2c header and some build updates.
*** Bug 278244 has been marked as a duplicate of this bug. ***
Note to self: Add VuXML entry
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=0ea5a54f7032a9c5bdb18b80ba67b2baf8ab14fa commit 0ea5a54f7032a9c5bdb18b80ba67b2baf8ab14fa Author: Fernando Apesteguía <fernape@FreeBSD.org> AuthorDate: 2024-04-11 06:25:22 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-04-11 06:27:34 +0000 security/vuxml: add net/jose DoS vulnerability PR: 278243 security/vuxml/vuln/2024.xml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+)
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=533aed358508c1ac8af6caeaece86a8da7f64c63 commit 533aed358508c1ac8af6caeaece86a8da7f64c63 Author: Howard Holm <hdholm@alumni.iastate.edu> AuthorDate: 2024-04-08 16:56:08 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-04-11 06:37:37 +0000 net/jose: Update to v13 (CVE-2023-50967) ChangeLog: https://github.com/latchset/jose/releases/tag/v13 PR: 278243 Reported by: hdholm@alumni.iastate.edu (maintainer) MFH: 2024Q2 (security fix) Security: CVE-2023-50967 net/jose/Makefile | 4 ++-- net/jose/distinfo | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-)
A commit in branch 2024Q2 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=44578f23d7ba9f648f77a358a55760bbf22585da commit 44578f23d7ba9f648f77a358a55760bbf22585da Author: Howard Holm <hdholm@alumni.iastate.edu> AuthorDate: 2024-04-08 16:56:08 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-04-11 06:38:21 +0000 net/jose: Update to v13 (CVE-2023-50967) ChangeLog: https://github.com/latchset/jose/releases/tag/v13 PR: 278243 Reported by: hdholm@alumni.iastate.edu (maintainer) MFH: 2024Q2 (security fix) Security: CVE-2023-50967 (cherry picked from commit 533aed358508c1ac8af6caeaece86a8da7f64c63) net/jose/Makefile | 4 ++-- net/jose/distinfo | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-)
Committed and merged to 2024Q2, Thanks!