Date: Sun, 24 Oct 2004 22:27:52 GMT From: Stephane Lentz <Stephane.lentz@gmail.com> To: freebsd-gnats-submit@FreeBSD.org Subject: ports/73096: p5-Archive-Zip update to 1.14 needed (zip vulnerability) for email applications using it Message-ID: <200410242227.i9OMRqRP099484@www.freebsd.org> Resent-Message-ID: <200410242230.i9OMULRY070816@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 73096 >Category: ports >Synopsis: p5-Archive-Zip update to 1.14 needed (zip vulnerability) for email applications using it >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Sun Oct 24 22:30:21 GMT 2004 >Closed-Date: >Last-Modified: >Originator: Stephane Lentz >Release: 5.2.1 >Organization: OpenSource >Environment: >Description: FreeBSD port commiters could you please update p5-Archive-Zip to 1.14 ? 1.14 fixes some zip vulnerability in 1.13 . See http://rt.cpan.org/NoAuth/Bug.html?id=8077 >How-To-Repeat: See : http://www.heise.de/security/dienste/emailcheck/demos/go.shtml?mail=zip_g0 http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities >Fix: Update to version 1.14 >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200410242227.i9OMRqRP099484>