[Bug 270923] security/vuxml: 18 new entries for vulnerable ports

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 19 Apr 2023 00:23:21 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270923

            Bug ID: 270923
           Summary: security/vuxml: 18 new entries for vulnerable ports
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
               URL: https://github.com/HubTou/pysec2vuxml
                OS: Any
            Status: New
          Keywords: security
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-secteam@FreeBSD.org
          Reporter: hubert.tournier@gmail.com
                CC: ale@FreeBSD.org, contact@evilham.com, kai@FreeBSD.org,
                    meka@tilda.center, nivit@FreeBSD.org,
                    philip@FreeBSD.org, ports@caomhin.org,
                    rt@scientifics.de, skreuzer@FreeBSD.org,
                    sunpoet@FreeBSD.org, ultima@freebsd.org,
                    wen@FreeBSD.org
             Flags: maintainer-feedback?(ports-secteam@FreeBSD.org)
          Assignee: ports-secteam@FreeBSD.org

Created attachment 241573
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=241573&action=edit
18 VuXML new entries for vulnerable ports

A third batch of new VuXML entries for vulnerable ports discovered with
pysec2vuxml (see https://github.com/HubTou/pysec2vuxml).

Entries were verified with:
# cd /usr/ports/security/vuxml
# make validate

Here are the ports affected with their respective maintainers:

-------------------------------------------------------------------------------------------------------------
Vulns Package           Port path                 Port name              Port
version Maintainer             
-------------------------------------------------------------------------------------------------------------
2     dparse            textproc/py-dparse        py39-dparse            0.5.1 
      kai@FreeBSD.org    
4     markdown2         textproc/py-markdown2     py39-markdown2         2.3.6 
      wen@FreeBSD.org        
4     pygments          textproc/py-pygments-25   py39-pygments-25       2.5.2 
      nivit@FreeBSD.org      
1     django-photologue www/py-django-photologue  py39-django-photologue 3.15_1
      ports@caomhin.org      
2     flask-caching     www/py-flask-caching      py39-flask-caching     1.9.0 
      rt@scientifics.de      
2     Flask-Cors        www/py-flask-cors         py39-Flask-Cors        3.0.8 
      stiginge@pvv.org       
1     flask-security    www/py-flask-security     py39-flask-security   
3.0.0_1      meka@tilda.center      
4     httpie            www/py-httpie             py39-httpie            3.0.2 
      ale@FreeBSD.org        
2     httpx             www/py-httpx013           py39-httpx013         
0.13.3_3     sunpoet@FreeBSD.org    
6     Scrapy            www/py-scrapy             py39-Scrapy            2.5.1 
      skreuzer@FreeBSD.org   
1     treq              www/py-treq               py39-treq              20.9.0
      contact@evilham.com    
2     wagtail           www/py-wagtail            py39-wagtail           4.2_1 
      sunpoet@FreeBSD.org    
1     WsgiDAV           www/py-wsgidav            py39-WsgiDAV           3.1.0 
      ultima@FreeBSD.org     
=============================================================================================================

-- 
You are receiving this mail because:
You are the assignee for the bug.