CVS commit: pkgsrc/doc

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/doc
From: "Thomas Klausner" <wiz%netbsd.org@localhost>
Date: Tue, 7 May 2024 11:07:14 +0000

Module Name:    pkgsrc
Committed By:   wiz
Date:           Tue May  7 11:07:14 UTC 2024

Modified Files:
        pkgsrc/doc: pkg-vulnerabilities

Log Message:
doc: update tinyproxy vuln patterns


To generate a diff of this commit:
cvs rdiff -u -r1.187 -r1.188 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.187 pkgsrc/doc/pkg-vulnerabilities:1.188
--- pkgsrc/doc/pkg-vulnerabilities:1.187        Mon May  6 05:49:59 2024
+++ pkgsrc/doc/pkg-vulnerabilities      Tue May  7 11:07:14 2024
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.187 2024/05/06 05:49:59 wiz Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.188 2024/05/07 11:07:14 wiz Exp $
 #
 #FORMAT 1.0.0
 #
@@ -24704,7 +24704,7 @@ sudo>=1.8.0<1.9.12      privilege-escalation    
 syslog-ng<3.38.1       denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-38725
 dompdf<2.0.1   arbitrary-file-access   https://nvd.nist.gov/vuln/detail/CVE-2022-41343
 mpd<0.23.11    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2022-46449
-tinyproxy-[0-9]*       insecure-defaults       https://nvd.nist.gov/vuln/detail/CVE-2022-40468
+tinyproxy<1.11.1nb3    insecure-defaults       https://nvd.nist.gov/vuln/detail/CVE-2022-40468
 syft<0.70.0    sensitive-information-disclosure        https://nvd.nist.gov/vuln/detail/CVE-2023-24827
 sslh-[0-9]*    remote-code-injection   https://nvd.nist.gov/vuln/detail/CVE-2022-4639
 sofia-sip<1.13.11      out-of-bounds-write     https://nvd.nist.gov/vuln/detail/CVE-2023-22741
@@ -25999,3 +25999,4 @@ py{27,37,38,39,310,311,312}-aiohttp<3.9.
 p5-Email-MIME<1.954    denial-of-service       https://nvd.nist.gov/vuln/detail/CVE-2024-4140
 uriparser<0.9.8                integer-overflow                https://nvd.nist.gov/vuln/detail/CVE-2024-34402
 uriparser<0.9.8                integer-overflow                https://nvd.nist.gov/vuln/detail/CVE-2024-34403
+tinyproxy<1.11.1nb2    remote-code-execution   https://nvd.nist.gov/vuln/detail/CVE-2023-49606

Prev by Date: CVS commit: pkgsrc/www/tinyproxy
Next by Date: CVS commit: pkgsrc/graphics/gdk-pixbuf2
Previous by Thread: CVS commit: pkgsrc/www/tinyproxy
Next by Thread: CVS commit: pkgsrc/graphics/gdk-pixbuf2
Indexes:

Home | Main Index | Thread Index | Old Index