pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/doc
Module Name: pkgsrc
Committed By: thor
Date: Mon Dec 18 10:27:12 UTC 2023
Modified Files:
pkgsrc/doc: pkg-vulnerabilities
Log Message:
pkg-vulnerabilities: deactivate one old hdf5 issue
Those fuzzed POCs from 5 years ago trigger this in hdf5 since some time:
h5dump error: internal error (file h5dump.c:line 1471)
To generate a diff of this commit:
cvs rdiff -u -r1.81 -r1.82 pkgsrc/doc/pkg-vulnerabilities
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.81 pkgsrc/doc/pkg-vulnerabilities:1.82
--- pkgsrc/doc/pkg-vulnerabilities:1.81 Mon Dec 18 08:56:42 2023
+++ pkgsrc/doc/pkg-vulnerabilities Mon Dec 18 10:27:11 2023
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.81 2023/12/18 08:56:42 wiz Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.82 2023/12/18 10:27:11 thor Exp $
#
#FORMAT 1.0.0
#
@@ -15069,7 +15069,7 @@ ming-[0-9]* denial-of-service https://
apache-tomcat>=7.0.0<7.0.89 insecure-defaults https://nvd.nist.gov/vuln/detail/CVE-2018-8014
apache-tomcat>=8.0.0<8.0.53 insecure-defaults https://nvd.nist.gov/vuln/detail/CVE-2018-8014
apache-tomcat>=8.5.0<8.5.32 insecure-defaults https://nvd.nist.gov/vuln/detail/CVE-2018-8014
-hdf5-[0-9]* multiple-vulnerabilities https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
+hdf5<1.12.2 multiple-vulnerabilities https://github.com/Twi1ight/fuzzing-pocs/tree/master/hdf5
git-base<2.16.4 remote-code-execution https://nvd.nist.gov/vuln/detail/CVE-2018-11235
git-base>=2.17<2.17.1 remote-code-execution https://nvd.nist.gov/vuln/detail/CVE-2018-11235
jpeg<9c denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2018-11212
Home |
Main Index |
Thread Index |
Old Index