pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/doc
Module Name: pkgsrc
Committed By: leot
Date: Sun Aug 31 09:47:16 UTC 2025
Modified Files:
pkgsrc/doc: pkg-vulnerabilities
Log Message:
pkg-vulnerabilities: add reference for CVE-2020-36120 comment
In that way we can easily reach them by avoiding "cvs annotate" or
similar too.
To generate a diff of this commit:
cvs rdiff -u -r1.533 -r1.534 pkgsrc/doc/pkg-vulnerabilities
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.533 pkgsrc/doc/pkg-vulnerabilities:1.534
--- pkgsrc/doc/pkg-vulnerabilities:1.533 Sun Aug 31 09:46:21 2025
+++ pkgsrc/doc/pkg-vulnerabilities Sun Aug 31 09:47:15 2025
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.533 2025/08/31 09:46:21 leot Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.534 2025/08/31 09:47:15 leot Exp $
#
#FORMAT 1.0.0
#
@@ -20980,7 +20980,7 @@ gradle<7.0 information-disclosure https
gradle<7.0 privilege-escalation https://nvd.nist.gov/vuln/detail/CVE-2021-29428
gradle<7.0 information-disclosure https://nvd.nist.gov/vuln/detail/CVE-2021-29429
libexif<0.6.23 null-pointer-dereference https://nvd.nist.gov/vuln/detail/CVE-2021-27815
-#libsixel-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2020-36120 # user error
+#libsixel-[0-9]* buffer-overflow https://nvd.nist.gov/vuln/detail/CVE-2020-36120 # user error, see <https://github.com/saitoha/libsixel/issues/143>
matrix-synapse<1.28.0 security-bypass https://nvd.nist.gov/vuln/detail/CVE-2021-21392
matrix-synapse<1.28.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2021-21393
matrix-synapse<1.28.0 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2021-21394
Home |
Main Index |
Thread Index |
Old Index