Date: Mon, 13 Feb 2017 10:31:15 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 217063] devel/libowfat: Port is out of date (security fixes) Message-ID: <bug-217063-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D217063 Bug ID: 217063 Summary: devel/libowfat: Port is out of date (security fixes) Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: lx@FreeBSD.org Reporter: crest@bultmann.eu Assignee: lx@FreeBSD.org Flags: maintainer-feedback?(lx@FreeBSD.org) The libowfat port is out of date by two releases (https://www.fefe.de/libowfat/changes-0.30.txt and https://www.fefe.de/libowfat/changes-0.31.txt). Three of the entries in the changelog are marked as security fixes: * SECURITY: fmt_strn would write one byte too many (returned right length though, so usually not a problem as that byte would be overwritten with \0 = by the caller anyway) * SECURITY: check for integer overflow in stralloc_ready * SECURITY: fix botched integer overflow handling logic in stralloc_ready (Giorgio) add critbit --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-217063-13>