Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable
ClosedPublic
Actions

Authored by leres on Feb 6 2018, 1:26 AM.

Tags

None

Referenced Files

	F154265105: D14217.diff
	Mon, Apr 27, 11:52 AM

	Unknown Object (File)
	Mon, Apr 13, 7:27 AM

	Unknown Object (File)
	Mon, Mar 30, 2:43 AM

	Unknown Object (File)
	Mar 25 2026, 6:10 AM

	Unknown Object (File)
	Nov 11 2025, 12:41 AM

	Unknown Object (File)
	Nov 6 2025, 4:53 AM

	Unknown Object (File)
	Oct 30 2025, 4:41 PM

	Unknown Object (File)
	Oct 4 2025, 8:41 PM

View All 50 Files

Subscribers

mat

Details

Reviewers

ler
matthew

Commits

rP461033: Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable as per:

Summary

Proposed commit message:

Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable as per:

http://acme.com/updates/archive/199.html

While we're here, fix whitespace in vuln.xml that "make validate"
flagged.

Reviewed by: ? (mentor)
Approved by: ? (mentor)
Security: CVE-2017-17663
Differential Revision: ?

Diff Detail

Repository

rP FreeBSD ports repository

Lint

No Lint Coverage

Unit

No Test Coverage

Build Status

Buildable 14803
Build 14921: arc lint + arc unit

Event Timeline

leres created this revision.Feb 6 2018, 1:26 AM

Herald added a subscriber: mat. · View Herald TranscriptFeb 6 2018, 1:26 AM

Harbormaster completed remote builds in B14803: Diff 38918.Feb 6 2018, 1:26 AM

LGTM

This revision is now accepted and ready to land.Feb 6 2018, 1:33 AM

I committed this but didn't enter the differential revision correctly in the commit message.

leres mentioned this in rP461033: Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable as per:.Feb 14 2018, 11:59 PM

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln.xml

31 lines

Diff 38918

View Options

Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerableClosedPublicActions