CVS commit: pkgsrc/doc

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/doc
From: "Thomas Merkel" <tm%netbsd.org@localhost>
Date: Tue, 27 Feb 2024 13:37:50 +0000

Module Name:    pkgsrc
Committed By:   tm
Date:           Tue Feb 27 13:37:50 UTC 2024

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
doc: pkg-vulnerabilities +fontforge +mantis +opendmarc +py-cbor2 +routinator +wireshark +wolfssl +yasm


To generate a diff of this commit:
cvs rdiff -u -r1.142 -r1.143 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.142 pkgsrc/doc/pkg-vulnerabilities:1.143
--- pkgsrc/doc/pkg-vulnerabilities:1.142        Sat Feb 24 15:06:38 2024
+++ pkgsrc/doc/pkg-vulnerabilities      Tue Feb 27 13:37:50 2024
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.142 2024/02/24 15:06:38 taca Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.143 2024/02/27 13:37:50 tm Exp $
 #
 #FORMAT 1.0.0
 #
@@ -25911,3 +25911,14 @@ ruby{27,30,31,32,33}-activestorage61>=6.
 ruby{27,30,31,32,33}-activestorage70>=7.0<7.0.8.1      information-leak        https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945
 ruby{27,30,31}-rack2>=2.0<2.2.8.1      denial-of-service       https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942
 ruby{27,30,31}-rack>=3.0<3.0.9.1       denial-of-service       https://discuss.rubyonrails.org/t/possible-denial-of-service-vulnerability-in-rack-header-parsing/84942
+py{27,37,38,39,310,311,312}-cbor2<5.6.2        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-26134
+wolfssl<5.6.6  heap-based-buffer-overflow      https://nvd.nist.gov/vuln/detail/CVE-2023-6936
+mantis<2.26.1  access-bypass   https://nvd.nist.gov/vuln/detail/CVE-2024-23830
+wireshark<4.2.3        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-24478
+wireshark<4.2.3        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-24476
+wireshark<4.2.3        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-24479
+routinator<0.13.2      denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-1622
+yasm-[0-9]*    memory-leak     https://nvd.nist.gov/vuln/detail/CVE-2024-25760
+fontforge-[0-9]*       command-injection       https://nvd.nist.gov/vuln/detail/CVE-2024-25081
+fontforge-[0-9]*       command-injection       https://nvd.nist.gov/vuln/detail/CVE-2024-25082
+opendmarc-[0-9]*       null-pointer-dereference        https://nvd.nist.gov/vuln/detail/CVE-2024-25768

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/meta-pkgs/bulk-medium
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/meta-pkgs/bulk-medium
Indexes:

Home | Main Index | Thread Index | Old Index