Date: Thu, 03 Oct 2024 20:50:53 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 281839] print/cups-filters: update needed, or maybe vuln.xml update needed Message-ID: <bug-281839-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D281839 Bug ID: 281839 Summary: print/cups-filters: update needed, or maybe vuln.xml update needed Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: tijl@FreeBSD.org Reporter: george@m5p.com Assignee: tijl@FreeBSD.org Flags: maintainer-feedback?(tijl@FreeBSD.org) According to the log for the most recent update to print/cups-filters, it f= ixes CVE-2024-47076 and CVE-2024-47176. But vuln.xml says all versions of cups-filters greater than zero are subject to those two vulnerabilities and CVE-2024-47175 and CVE-2024-47177 as well. Meanwhile, upstream seems to mainly be working on cups-filters version 2.0.= 1.=20 If I get brave one of these days, I suppose I might try upgrading to 2.0.1 = on my own -- but it sounds scary. I'm hoping that tijl@ might have words of wisdom on the best path forward. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-281839-7788>