Date: Mon, 13 Nov 2023 16:49:01 +0000 From: bugzilla-noreply@freebsd.org To: multimedia@FreeBSD.org Subject: [Bug 275057] audio/libsndfile: CVE-2022-33065 fix not available in quarterly branch Message-ID: <bug-275057-12827@https.bugs.freebsd.org/bugzilla/>
index | next in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=275057 Bug ID: 275057 Summary: audio/libsndfile: CVE-2022-33065 fix not available in quarterly branch Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: Individual Port(s) Assignee: multimedia@FreeBSD.org Reporter: warisap237@mainmile.com Assignee: multimedia@FreeBSD.org Flags: maintainer-feedback?(multimedia@FreeBSD.org) Commits a1f663e8d4a65 and 5dd1286fb9055, which fix the CVE-2022-33065 security vulnerability in libsndfile, are only included in the main Git branch and not in the quarterly 2023Q4 branch. As I understand it, the commits need to be cherry-picked onto the 2023Q4 Git branch for the fix to be included in the next build of the quarterly package branch. -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-275057-12827>