FreeBSD Port: open-vm-tools-11.0.1_3,2
Kurt Buff - GSEC, GCIH
kurt.buff at gmail.com
Mon May 4 23:52:16 UTC 2020
On Mon, May 4, 2020 at 4:46 PM Josh Paetzel <jpaetzel at freebsd.org> wrote:
> On Mon, May 4, 2020, at 5:08 PM, Kurt Buff - GSEC, GCIH wrote:
> > All,
> >
> > Has been done?
> >
> > I just built a new machine on our VMware cluster and tried to install this
> > from ports on 12.1-RELEASE-p3 with an updated tree, and it complained about
> > a dependency:
> >
> > ===> python27-2.7.17_1 has known vulnerabilities:
> > python27-2.7.17_1 is vulnerable:
> > Python -- Regular Expression DoS attack against client
> > CVE: CVE-2020-8492
> > WWW:
> > https://vuxml.FreeBSD.org/freebsd/a27b0bb6-84fc-11ea-b5b4-641c67a117d8.html
> >
> > Thanks,
> >
> > Kurt
>
> That doesn't have anything to do with an open-vm-tools version bump.
>
> The issue you are seeing is due to the fact that https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=245776 hasn't been committed yet.
>
> --
>
> Thanks,
>
> Josh Paetzel
Got it. I'll keep an eye on that bug.
Thanks,
Kurt
More information about the freebsd-ports
mailing list