sysutils/bchunk: Update to 1.2.2; Fixed 3 security vulnerabilities
AbandonedPublic
Actions

Authored by yuri on Feb 10 2018, 8:46 PM.

Details

Reviewers

tcberner
adamw

Summary

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=225772

I had some doubts as for trivialness of this update, so creating this review.

freebsd_ports@k-worx.org takes maintainership

Vulnerabilities:

CVE-2017-15953 and CVE-2017-15954: a heap-based buffer overflow.
CVE-2017-15955: Access violation near NULL on destination operand and crash when processing a malformed CUE (.cue) file.

Additional port changes:

Changed to DISTVERSION
Added LICENSE/LICENSE_FILE
Minor formatting change in do-build

VuXML will be committed first. Then the port.

Diff Detail

Repository

rP FreeBSD ports repository

Lint

No Lint Coverage

Unit

No Test Coverage

Build Status

Buildable 14945
Build 15057: arc lint + arc unit

Event Timeline

yuri created this revision.Feb 10 2018, 8:46 PM

Harbormaster completed remote builds in B14944: Diff 39159.Feb 10 2018, 8:46 PM

Herald added a subscriber: mat. · View Herald TranscriptFeb 10 2018, 8:46 PM

yuri edited the summary of this revision. (Show Details)Feb 10 2018, 8:47 PM

Harbormaster completed remote builds in B14945: Diff 39160.Feb 10 2018, 8:49 PM

Committed.

Macro idontlikeit:

Please stop taking PR's if your not willing to wait on review from. This was not implicitely approved.

Revision Contents
Changeset List

Path

Size

security/

vuxml/

vuln.xml

83 lines

sysutils/

bchunk/

Makefile

9 lines

distinfo

5 lines

Diff 39160

View Options

security/vuxml/vuln.xml

View Options

sysutils/bchunk/Makefile

View Options

sysutils/bchunk: Update to 1.2.2; Fixed 3 security vulnerabilitiesAbandonedPublicActions

Details

Diff Detail

Event Timeline

Revision ContentsChangeset List

Diff 39160

security/vuxml/vuln.xml

sysutils/bchunk/Makefile

sysutils/bchunk/distinfo

sysutils/bchunk: Update to 1.2.2; Fixed 3 security vulnerabilities
AbandonedPublic
Actions

Revision Contents
Changeset List