From owner-freebsd-ports-bugs@FreeBSD.ORG  Mon Jun 22 04:27:44 2015
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@nevdull.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id B240FC35
 for <freebsd-ports-bugs@nevdull.freebsd.org>;
 Mon, 22 Jun 2015 04:27:44 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2001:1900:2254:206a::16:76])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 9A83FCE8
 for <freebsd-ports-bugs@FreeBSD.org>; Mon, 22 Jun 2015 04:27:44 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from bugs.freebsd.org ([127.0.1.118])
 by kenobi.freebsd.org (8.14.9/8.14.9) with ESMTP id t5M4RiEm064390
 for <freebsd-ports-bugs@FreeBSD.org>; Mon, 22 Jun 2015 04:27:44 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
From: bugzilla-noreply@freebsd.org
To: freebsd-ports-bugs@FreeBSD.org
Subject: [Bug 200980] lang/chicken: CVE-2015-4556: out-of-bounds read in
 CHICKEN Scheme's string-translate* procedure
Date: Mon, 22 Jun 2015 04:27:44 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: needs-qa, patch, security
X-Bugzilla-Severity: Affects Some People
X-Bugzilla-Who: jason.unovitch@gmail.com
X-Bugzilla-Status: New
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: freebsd-ports-bugs@FreeBSD.org
X-Bugzilla-Target-Milestone: ---
X-Bugzilla-Flags: maintainer-feedback+
X-Bugzilla-Changed-Fields: attachments.created
Message-ID: <bug-200980-13-f2fjpL82Ix@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-200980-13@https.bugs.freebsd.org/bugzilla/>
References: <bug-200980-13@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs/>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Jun 2015 04:27:44 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200980

--- Comment #6 from Jason Unovitch <jason.unovitch@gmail.com> ---
Created attachment 157968
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=157968&action=edit
security/vuxml entry to document both CVE-2015-4556 and CVE-2015-9651

Tentative vuxml to document both issues while we hash out exactly what issue is
fixed in what version.  Version string has tentatively been left at 4.10.0
since pkg was picking up the rc version as being newer then the release.

-- 
You are receiving this mail because:
You are the assignee for the bug.