Date: Mon, 13 Nov 2023 16:49:01 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 275057] audio/libsndfile: CVE-2022-33065 fix not available in quarterly branch Message-ID: <bug-275057-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D275057 Bug ID: 275057 Summary: audio/libsndfile: CVE-2022-33065 fix not available in quarterly branch Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: Individual Port(s) Assignee: multimedia@FreeBSD.org Reporter: warisap237@mainmile.com Assignee: multimedia@FreeBSD.org Flags: maintainer-feedback?(multimedia@FreeBSD.org) Commits a1f663e8d4a65 and 5dd1286fb9055, which fix the CVE-2022-33065 secur= ity vulnerability in libsndfile, are only included in the main Git branch and n= ot in the quarterly 2023Q4 branch. As I understand it, the commits need to be cherry-picked onto the 2023Q4 Git branch for the fix to be included in the next build of the quarterly package branch. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-275057-7788>