CVS commit: pkgsrc/doc

["Nia Alarie" <nia%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   nia
Date:           Mon Feb 17 09:12:41 UTC 2025

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
CVE-2023-44821 fixed in gifsicle-1.95 per CVE description

(and the status of the linked issue)


To generate a diff of this commit:
cvs rdiff -u -r1.308 -r1.309 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.308 pkgsrc/doc/pkg-vulnerabilities:1.309
--- pkgsrc/doc/pkg-vulnerabilities:1.308        Mon Feb 17 09:07:51 2025
+++ pkgsrc/doc/pkg-vulnerabilities      Mon Feb 17 09:12:40 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.308 2025/02/17 09:07:51 nia Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.309 2025/02/17 09:12:40 nia Exp $
 #
 #FORMAT 1.0.0
 #
@@ -25548,7 +25548,7 @@ tiff<4.5.1      memory-leak     https://nvd.nist.
 ImageMagick<7.1.1.19   heap-based-buffer-overflow      https://nvd.nist.gov/vuln/detail/CVE-2023-3428
 gradle<7.6.3   insecure-file-permissions       https://nvd.nist.gov/vuln/detail/CVE-2023-44387
 webkit-gtk<2.42        use-after-free  https://nvd.nist.gov/vuln/detail/CVE-2023-39928
-gifsicle-[0-9]*        denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2023-44821
+gifsicle<1.95  denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2023-44821
 libcue<2.2.1nb1        code-execution  https://nvd.nist.gov/vuln/detail/CVE-2023-43641
 py{27,37,38,39,310,311,312}-urllib3<2.0.6      cookie-injection        https://nvd.nist.gov/vuln/detail/CVE-2023-43804
 tnftpd<20231001        information-leak        https://nvd.nist.gov/vuln/detail/CVE-2023-45198