Date: Mon, 19 Mar 2018 08:06:26 -0700 (PDT) From: Roger Marquis <marquis@roble.com> To: gnome@FreeBSD.org Subject: CVE-2017-7376 -- libxml2 Message-ID: <nycvar.OFS.7.76.1803190804160.5758@mx.roble.com>
next in thread | raw e-mail | index | archive | help
Assuming FreeBSD's port is also vulnerable even though the OS is not listed in the CVE. Can anyone confirm? <https://nvd.nist.gov/vuln/detail/CVE-2017-7376>: Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects. Roger Marquis
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?nycvar.OFS.7.76.1803190804160.5758>