www/mini_httpd: Update to 1.28 and address security advisory
ClosedPublic
Actions

Authored by leres on Feb 6 2018, 1:34 AM.

Details

Reviewers

ler
matthew

Commits

rP463449: MFH: r461322
rP461322: Update to 1.28 which fixes a buffer overflow (that will be)

Summary

Proposed commit message:

Update to 1.28 which fixes a buffer overflow (that will be)
documented in CVE-2017-17663.

Reviewed by: ? (mentor)
Approved by: ? (mentor)
Security: CVE-2017-17663
Differential Revision: ?

Diff Detail

Repository

rP FreeBSD ports repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

leres created this revision.Feb 6 2018, 1:34 AM

Herald added a subscriber: mat. · View Herald TranscriptFeb 6 2018, 1:34 AM

Harbormaster completed remote builds in B14804: Diff 38919.Feb 6 2018, 1:34 AM

Heh, I managed to put my reviewers in the "test plan" section...

lgtm

but you should create (and get reviewed) a VuXML entry for the vulnerabilities before you commit, and reference the VuXML from your commit
message. The 'Security' tab in the commit template should contain the VuXMLid, although it is frequently used for other identifying numbers.

Don't forget to request MFH 2018Q1

This revision is now accepted and ready to land.Feb 9 2018, 7:27 AM

Closed by commit rP461322: Update to 1.28 which fixes a buffer overflow (that will be) (authored by leres). · Explain WhyFeb 9 2018, 5:32 PM

This revision was automatically updated to reflect the committed changes.