[Bug 273416] www/tor-browser: Update to 12.0.7 or upgrade to 12.5.2

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 273416] www/tor-browser: Update to 12.0.7 or upgrade to 12.5.2"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 20 Sep 2023 12:27:00 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=273416

--- Comment #2 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/ports/commit/?id=2e8c97b9bc3f7c6c14c30676f3c32f32c464e97b

commit 2e8c97b9bc3f7c6c14c30676f3c32f32c464e97b
Author:     Fernando Apesteguía <fernape@FreeBSD.org>
AuthorDate: 2023-09-20 12:21:30 +0000
Commit:     Fernando Apesteguía <fernape@FreeBSD.org>
CommitDate: 2023-09-20 12:21:30 +0000

    security/vuxml: Add Tor browser libwebp vulnerability

    CVE-2023-4863
            Base Score:  8.8 HIGH
            Vector:  CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

    PR:             273416
    Reported by:    kaltheat <kaltheat@gmail.com>
    Security:       CVE-2023-4863

 security/vuxml/vuln/2023.xml | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

-- 
You are receiving this mail because:
You are the assignee for the bug.