Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 25 Aug 2015 02:23:44 +0000
From:      bugzilla-noreply@freebsd.org
To:        freebsd-ports-bugs@FreeBSD.org
Subject:   [Bug 202633] lang/go {14}: security/vuxml: multiple vulnerabilties (CVE-2015-5739, CVE-2015-5740, CVE-2015-5741)
Message-ID:  <bug-202633-13@https.bugs.freebsd.org/bugzilla/>

next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=202633

            Bug ID: 202633
           Summary: lang/go {14}: security/vuxml: multiple vulnerabilties
                    (CVE-2015-5739, CVE-2015-5740, CVE-2015-5741)
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs@FreeBSD.org
          Reporter: junovitch@freebsd.org
                CC: jlaffaye@FreeBSD.org, ports-secteam@FreeBSD.org
                CC: jlaffaye@FreeBSD.org, ports-secteam@FreeBSD.org

lang/go and lang/go14 security issues:
http://seclists.org/oss-sec/2015/q3/237

Fixed upstream in the following:
https://github.com/golang/go/commit/117ddcb83d7f42d6aa72241240af99ded81118e9
https://github.com/golang/go/commit/143822585e32449860e624cace9d2e521deee62e
https://github.com/golang/go/commit/300d9a21583e7cf0149a778a0611e76ff7c6680f

head:
lang/go   - fixed
lang/go14 - pended upstream 1.4.3 release
(http://seclists.org/oss-sec/2015/q3/337)

2015Q3:
lang/go   - vulnerable
lang/go14 - N/A, does not exist at this time

-- 
You are receiving this mail because:
You are the assignee for the bug.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-202633-13>