From nobody Mon Nov 01 12:54:58 2021
X-Original-To: ports-bugs@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id CF5B618324EC
	for <ports-bugs@mlmmj.nyi.freebsd.org>; Mon,  1 Nov 2021 12:54:58 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4HjY0L59Nyz3sQ7
	for <ports-bugs@FreeBSD.org>; Mon,  1 Nov 2021 12:54:58 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 91E3412007
	for <ports-bugs@FreeBSD.org>; Mon,  1 Nov 2021 12:54:58 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 1A1CswPB058599
	for <ports-bugs@FreeBSD.org>; Mon, 1 Nov 2021 12:54:58 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 1A1CswYM058598
	for ports-bugs@FreeBSD.org; Mon, 1 Nov 2021 12:54:58 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: ports-bugs@FreeBSD.org
Subject: [Bug 259590] graphics/libemf: update to 1.0.13
Date: Mon, 01 Nov 2021 12:54:58 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: security
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: fuz@fuz.su
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: office@FreeBSD.org
X-Bugzilla-Flags: maintainer-feedback? merge-quarterly?
X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform
 bug_file_loc op_sys bug_status keywords bug_severity priority component
 assigned_to reporter cc flagtypes.name attachments.created
Message-ID: <bug-259590-7788@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-ports-bugs
List-Help: <mailto:ports-bugs+help@freebsd.org>
List-Post: <mailto:ports-bugs@freebsd.org>
List-Subscribe: <mailto:ports-bugs+subscribe@freebsd.org>
List-Unsubscribe: <mailto:ports-bugs+unsubscribe@freebsd.org>
Sender: owner-freebsd-ports-bugs@freebsd.org
X-BeenThere: freebsd-ports-bugs@freebsd.org
MIME-Version: 1.0
X-ThisMailContainsUnwantedMimeParts: N

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D259590

            Bug ID: 259590
           Summary: graphics/libemf: update to 1.0.13
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
               URL: https://sourceforge.net/projects/libemf/files/libemf/1
                    .0.13/
                OS: Any
            Status: New
          Keywords: security
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: office@FreeBSD.org
          Reporter: fuz@fuz.su
                CC: office@FreeBSD.org
          Assignee: office@FreeBSD.org
             Flags: maintainer-feedback?(office@FreeBSD.org)
 Attachment #229190 maintainer-approval?(office@FreeBSD.org)
             Flags:
             Flags: merge-quarterly?
                CC: office@FreeBSD.org

Created attachment 229190
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D229190&action=
=3Dedit
graphics/libemf: update to 1.0.13

This update fixes a number of vulnerabilities:

CVE-2020-13999 (fixed in 1.0.13)
CVE-2020-11863 (fixed in 1.0.12)
CVE-2020-11864 (fixed in 1.0.12)
CVE-2020-11865 (fixed in 1.0.12)
CVE-2020-11866 (fixed in 1.0.12)

While there, hooked up the test suite and took maintainership
of this unmaintained port.

Tested with Poudriere on armv6 arm64 i386 amd64 FreeBSD 13.
Tested that the dependent ports still build (except for
science/chemtool-devel which is marked as BROKEN).

Please MFH as this is a security update.

--=20
You are receiving this mail because:
You are the assignee for the bug.=