Date: Fri, 13 Aug 2021 11:08:57 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 255368] devel/binutils: Backport patch fixing CVE-2021-3487 Message-ID: <bug-255368-7788-QRaoMfCRNB@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-255368-7788@https.bugs.freebsd.org/bugzilla/> References: <bug-255368-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D255368 --- Comment #5 from commit-hook@FreeBSD.org --- A commit in branch 2021Q3 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=3D9c4ee12ed3cddad1cb19a62d05b7efe= 77cb896a6 commit 9c4ee12ed3cddad1cb19a62d05b7efe77cb896a6 Author: Yasuhiro Kimura <yasu@utahime.org> AuthorDate: 2021-08-13 10:55:57 +0000 Commit: Fernando Apestegu=C3=ADa <fernape@FreeBSD.org> CommitDate: 2021-08-13 10:55:57 +0000 devel/binutils: Add fix for CVE-2021-3487 The CVE is fixed in main in a0e752df8013. Merging that would mean mergi= ng other changes to other ports and doing more exp-runs, so we just backport the= fix in the quarterly branch to avoid too much disruption. VuXML entry to be handled in PR 256133. PR: 255368, 251385 Reported by: diizzy@ Security: CVE-2021-3487 devel/binutils/Makefile | 2 +- devel/binutils/files/patch-CVE-2021-3487 (new) | 75 ++++++++++++++++++++++= ++++ 2 files changed, 76 insertions(+), 1 deletion(-) --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-255368-7788-QRaoMfCRNB>