Date: Wed, 14 Jan 2004 21:24:57 -0800 (PST) From: Will Andrews <will@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/deskutils/kdepim3 Makefileports/deskutils/kdepim3/files patch-vcf-kfile_vcf.cpp Message-ID: <200401150524.i0F5OvJb038186@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
will 2004/01/14 21:24:57 PST
FreeBSD ports repository
Modified files:
deskutils/kdepim3 Makefile
Added files:
deskutils/kdepim3/files patch-vcf-kfile_vcf.cpp
Log:
Fix a buffer overflow in the file information reader of VCF files.
See http://www.kde.org/info/security/advisory-20040114-1.txt and
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0988 for more info.
Bump PORTREVISION as this is a strongly recommended patch. This approach
is simpler than upgrading all KDE ports to 3.1.5, since we're going to
upgrade them to 3.2 in under a month anyway.
Submitted by: Andy Fawcett <andy@athame.co.uk>
Revision Changes Path
1.31 +1 -0 ports/deskutils/kdepim3/Makefile
1.1 +24 -0 ports/deskutils/kdepim3/files/patch-vcf-kfile_vcf.cpp (new)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200401150524.i0F5OvJb038186>