Date: Tue, 22 Oct 2019 21:41:19 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 241422] textproc/unoconv: Fix CVE-2019-17400 Message-ID: <bug-241422-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D241422 Bug ID: 241422 Summary: textproc/unoconv: Fix CVE-2019-17400 Product: Ports & Packages Version: Latest Hardware: Any URL: https://github.com/unoconv/unoconv/commit/acfac594e643 f9c44f1c3b8d6d8957190a4d76f2 OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ports-bugs@FreeBSD.org Reporter: ndowens04@gmail.com Created attachment 208513 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D208513&action= =3Dedit update ; add CVE patch Updated to latest version, also applied a cherry-pick to fix CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2019-17400 Changed source to Github, newest version wasn't on the site previously in MASTER_SITES Tested unoconv after update via converting a adoc file to a pdf file and it worked. Also did 'unoconv --listener' listed in bug #239106 and got no segf= ault listed in the bug report. Built fine in poudriere for: 12/13-amd64 12/13-i386 and 12-arm64 --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-241422-7788>