Date: Thu, 20 Feb 2020 03:42:58 +0000 (UTC) From: Cy Schubert <cy@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r526540 - branches/2020Q1/shells/ksh93 Message-ID: <202002200342.01K3gw61071367@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: cy Date: Thu Feb 20 03:42:57 2020 New Revision: 526540 URL: https://svnweb.freebsd.org/changeset/ports/526540 Log: MFH: r525497 Fix CVE-2019-14868: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection. Submitted by: Siteshwar Vashisht <svashisht@redhat.com> Reported by: Marian Rehak Security: CVE-2019-14868 https://bugzilla.redhat.com/show_bug.cgi?id=1757324 https://access.redhat.com/security/cve/CVE-2019-14868 Approved by: portmgr (miwi) Modified: branches/2020Q1/shells/ksh93/Makefile Directory Properties: branches/2020Q1/ (props changed) Modified: branches/2020Q1/shells/ksh93/Makefile ============================================================================== --- branches/2020Q1/shells/ksh93/Makefile Thu Feb 20 01:49:05 2020 (r526539) +++ branches/2020Q1/shells/ksh93/Makefile Thu Feb 20 03:42:57 2020 (r526540) @@ -2,6 +2,7 @@ PORTNAME= ksh93 DISTVERSION= 2020.0.0 +PORTREVISION= 1 PORTEPOCH= 1 CATEGORIES= shells
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202002200342.01K3gw61071367>