Date: Mon, 09 Nov 2020 01:39:55 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 250971] textproc/raptor2 heap overflow Message-ID: <bug-250971-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D250971 Bug ID: 250971 Summary: textproc/raptor2 heap overflow Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: Individual Port(s) Assignee: kde@FreeBSD.org Reporter: truckman@FreeBSD.org Flags: maintainer-feedback?(kde@FreeBSD.org) Assignee: kde@FreeBSD.org According to https://www.openwall.com/lists/oss-security/2017/06/07/1 there= are two heap overflows in raptor 2.0.15. A CVE has been assigned: https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2017-18926 The upstream raptor github repo has a patch: =20 https://github.com/dajobe/raptor/commit/590681e546cd9aa18d57dc2ea1858cb734a= 3863f.patch --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-250971-7788>