Date: Wed, 28 Mar 2018 16:33:05 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 226491] [PATCH] devel/zziplib: update to 0.13.68 which fixes multiple CVEs Message-ID: <bug-226491-13-FnnMaEx38r@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-226491-13@https.bugs.freebsd.org/bugzilla/> References: <bug-226491-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D226491 --- Comment #5 from Kai <freebsd_ports@k-worx.org> --- (In reply to Yuri Victorovich from comment #4) Upstream has given a official statement, that the current release, v0.13.69= has no known CVEs at the moment. I have checked this against the CVE database (cvs.mitre.org) and those in t= he v0.13.68 were fixed so v0.13.69 should be non-vulnerable at the moment. The patch for v0.13.69 is already attached and ready to land. -- Cheers Kai --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-226491-13-FnnMaEx38r>