CVS commit: pkgsrc/doc

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/doc
From: "Thomas Klausner" <wiz%netbsd.org@localhost>
Date: Tue, 17 Jun 2025 06:28:15 +0000

Module Name:    pkgsrc
Committed By:   wiz
Date:           Tue Jun 17 06:28:15 UTC 2025

Modified Files:
        pkgsrc/doc: TODO pkg-vulnerabilities

Log Message:
doc: add a couple unfixed libxml2 and libxslt vulnerabilities


To generate a diff of this commit:
cvs rdiff -u -r1.25896 -r1.25897 pkgsrc/doc/TODO
cvs rdiff -u -r1.422 -r1.423 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/TODO
diff -u pkgsrc/doc/TODO:1.25896 pkgsrc/doc/TODO:1.25897
--- pkgsrc/doc/TODO:1.25896     Mon Jun 16 21:13:04 2025
+++ pkgsrc/doc/TODO     Tue Jun 17 06:28:14 2025
@@ -1,4 +1,4 @@
-$NetBSD: TODO,v 1.25896 2025/06/16 21:13:04 he Exp $
+$NetBSD: TODO,v 1.25897 2025/06/17 06:28:14 wiz Exp $
 
 Suggested new packages
 ======================
@@ -590,7 +590,7 @@ For possible Perl packages updates, see 
        o epiphany-extensions-3.2.0
        o epstool-3.0.9
        o eric5-5.4.6
-       o erlang-28
+       o erlang-28.0.1
        o es-0.83
        o esh-0.8.5
        o ess-18.10.2
@@ -1177,7 +1177,7 @@ For possible Perl packages updates, see 
        o rt4-4.4.4
        o rtty-4.0 [at ftp://ftp.isc.org/isc/rtty/]
        o rubber-1.5.1
-       o rust-1.87
+       o rust-1.87 [wip]
        o rust-bindgen-0.72.0
        o rvault-0.4
        o rvm-1.20

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.422 pkgsrc/doc/pkg-vulnerabilities:1.423
--- pkgsrc/doc/pkg-vulnerabilities:1.422        Tue Jun 17 06:24:33 2025
+++ pkgsrc/doc/pkg-vulnerabilities      Tue Jun 17 06:28:15 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.422 2025/06/17 06:24:33 wiz Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.423 2025/06/17 06:28:15 wiz Exp $
 #
 #FORMAT 1.0.0
 #
@@ -26367,3 +26367,9 @@ assimp<6.0.2    heap-overflow           https://nvd.
 p5-CryptX<0.087        integer-overflow        https://nvd.nist.gov/vuln/detail/CVE-2025-40914
 sslh<2.2.4     denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-46807
 erlang<27.3.4.1        arbitrary-file-write    https://nvd.nist.gov/vuln/detail/CVE-2025-4748
+libxml2-[0-9]* use-after-free  https://nvd.nist.gov/vuln/detail/CVE-2025-49794
+libxml2-[0-9]* denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-49795
+libxml2-[0-9]* denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2025-49796
+libxml2-[0-9]* integer-overflow        https://nvd.nist.gov/vuln/detail/CVE-2025-6021
+libxml2-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2025-6170
+libxslt-[0-9]* unknown https://gitlab.gnome.org/Teams/Releng/security/-/wikis/2025#libxml2-and-libxslt

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/lang/rust-bin
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/lang/rust-bin
Indexes:

Home | Main Index | Thread Index | Old Index