Date: Mon, 18 Jan 2021 17:58:04 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 252810] archivers/p7zip-codec-rar: patch for CVE-2018-10115 Message-ID: <bug-252810-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D252810 Bug ID: 252810 Summary: archivers/p7zip-codec-rar: patch for CVE-2018-10115 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: rakuco@FreeBSD.org Reporter: scf@FreeBSD.org Flags: maintainer-feedback?(rakuco@FreeBSD.org) Assignee: rakuco@FreeBSD.org Created attachment 221715 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D221715&action= =3Dedit Patch to archivers/p7zip-codec-rar Apply patch obtained from Debian[1] to fix CVE-2018-10115 vulnerability in = the p7zip rar codec handler. This requires renaming files/patch-CVE-2018-5996 by prepending a zero to the number since 10115 depends upon the prior patch being applied first. 1. https://salsa.debian.org/debian/p7zip-rar/-/blob/cd8c3f633ea94b256fe108bf0b= 73176bcc0053c0/debian/patches/CVE-2018-10115.patch --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-252810-7788>