git: 0605ef1bd0c2 - main - graphics/ImageMagick6: upgrade to 6.9.12-12
Thierry Thomas
thierry at freebsd.org
Fri Jun 11 17:26:55 UTC 2021
Le ven. 11 juin 21 à 18:48:18 +0200, Dan Langille <dan at langille.org>
écrivait :
> > Note: this might fix some vulnerabilities, e.g. CVE-2021-20244,
> > CVE-2021-20243, CVE-2021-20176 or CVE-2020-27829, but this is not clear
> > for me.
> >
> > PR: 255818
> > Approved by: maintainer’s time-out
>
> This was a vuln fix and not backported to 2021Q2?
>
> Is there any reason I should not do that backport now?
Yes, please! I sent a mail to ports-secteam@ and to the maintainer, but
did not get any answer, and then I forgot about it…
--
Th. Thomas.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 931 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/dev-commits-ports-all/attachments/20210611/af97b638/attachment.sig>
More information about the dev-commits-ports-all
mailing list