Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 09 Jan 2015 15:11:55 +0000
Subject:   [Bug 196640] devel/libevent2: update to 2.0.22 (to fix CVE-2014-6272)
Message-ID:  <>

Next in thread | Raw E-Mail | Index | Archive | Help

            Bug ID: 196640
           Summary: devel/libevent2: update to 2.0.22 (to fix
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Keywords: security
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
             Flags: maintainer-feedback?(

<vuln vid="8a78bd4b-1e88-43bd-9bfa-5aa29cb979c2">
    <topic>libevent -- integer overflow in evbuffers</topic>
      <body xmlns="">;
    <p>A defect in the Libevent evbuffer API leaves some programs
      that pass insanely large inputs to evbuffers open to a
      possible heap overflow or infinite loop.

--- Comment #1 from Bugzilla Automation <> ---
Auto-assigned to maintainer

You are receiving this mail because:
You are the assignee for the bug.

Want to link to this message? Use this URL: <>