[Bug 246534] devel/libphp-awl update to 0.61, www/davical to 1.1.9.3
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon May 18 05:04:43 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246534
Bug ID: 246534
Summary: devel/libphp-awl update to 0.61, www/davical to
1.1.9.3
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: Individual Port(s)
Assignee: rigoletto at freebsd.org
Reporter: wlam+fbd at blanksquare.net
Assignee: rigoletto at freebsd.org
Flags: maintainer-feedback?(rigoletto at freebsd.org)
The most recent version of AWL (0.61) describes fixes to better thwart session
impersonation:
https://gitlab.com/davical-project/awl/-/blob/r0.61/debian/changelog
https://www.debian.org/security/2020/dsa-4660
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11728
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11729
The latest corresponding version of Davical (1.1.9.3) calls for AWL 0.61+ as
well:
https://gitlab.com/davical-project/davical/-/blob/r1.1.9.3/debian/control#L23
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list