Page MenuHomeFreeBSD

www/mini_httpd: Update to 1.28 and address security advisory
ClosedPublic

Authored by leres on Feb 6 2018, 1:34 AM.
Tags
None
Referenced Files
F132380142: D14218.id38919.diff
Thu, Oct 16, 9:48 AM
Unknown Object (File)
Thu, Sep 25, 1:50 PM
Unknown Object (File)
Tue, Sep 23, 11:21 PM
Unknown Object (File)
Fri, Sep 19, 10:04 PM
Unknown Object (File)
Wed, Sep 17, 7:18 PM
Unknown Object (File)
Sep 13 2025, 11:42 PM
Unknown Object (File)
Aug 21 2025, 11:49 PM
Unknown Object (File)
Jul 30 2025, 9:21 AM
Subscribers

Details

Summary

Proposed commit message:

Update to 1.28 which fixes a buffer overflow (that will be)
documented in CVE-2017-17663.

Reviewed by: ? (mentor)
Approved by: ? (mentor)
Security: CVE-2017-17663
Differential Revision: ?

Diff Detail

Repository
rP FreeBSD ports repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

leres added reviewers: ler, matthew.

Heh, I managed to put my reviewers in the "test plan" section...

lgtm

but you should create (and get reviewed) a VuXML entry for the vulnerabilities before you commit, and reference the VuXML from your commit
message. The 'Security' tab in the commit template should contain the VuXMLid, although it is frequently used for other identifying numbers.

Don't forget to request MFH 2018Q1

This revision is now accepted and ready to land.Feb 9 2018, 7:27 AM
This revision was automatically updated to reflect the committed changes.