From owner-cvs-all@FreeBSD.ORG  Wed May 16 19:41:27 2012
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id BED181065674;
	Wed, 16 May 2012 19:41:27 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 6A4368FC18;
	Wed, 16 May 2012 19:41:27 +0000 (UTC)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.4/8.14.4) with ESMTP id q4GJfR1f031743;
	Wed, 16 May 2012 19:41:27 GMT
	(envelope-from dougb@repoman.freebsd.org)
Received: (from dougb@localhost)
	by repoman.freebsd.org (8.14.4/8.14.4/Submit) id q4GJfRni031742;
	Wed, 16 May 2012 19:41:27 GMT (envelope-from dougb)
Message-Id: <201205161941.q4GJfRni031742@repoman.freebsd.org>
From: Doug Barton <dougb@FreeBSD.org>
Date: Wed, 16 May 2012 19:41:27 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: ports/security/pidgin-otr Makefile distinfo pkg-plist
 ports/security/vuxml vuln.xml
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: **OBSOLETE** CVS commit messages for the entire tree
	<cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 16 May 2012 19:41:27 -0000

dougb       2012-05-16 19:41:27 UTC

  FreeBSD ports repository

  Modified files:
    security/pidgin-otr  Makefile distinfo pkg-plist 
    security/vuxml       vuln.xml 
  Log:
  Versions 3.2.0 and earlier of the pidgin-otr plugin contain
  a format string security flaw. This flaw could potentially be
  exploited by a remote attacker to cause arbitrary code to be
  executed on the user's machine.
  
  The flaw is in pidgin-otr, not in libotr. Other applications
  that use libotr are not affected.
  
  Revision  Changes    Path
  1.37      +1 -2      ports/security/pidgin-otr/Makefile
  1.10      +4 -4      ports/security/pidgin-otr/distinfo
  1.8       +4 -0      ports/security/pidgin-otr/pkg-plist
  1.2702    +32 -1     ports/security/vuxml/vuln.xml