[Bug 287009] lang/python3*: CVE-2025-4516 (use-after-free issue with unicode-escape decoder related to error= handling)

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 24 May 2025 16:34:42 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=287009

--- Comment #1 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/ports/commit/?id=5e6a4ea2aa12abbf7eab30a7d7b37cfda49000d3

commit 5e6a4ea2aa12abbf7eab30a7d7b37cfda49000d3
Author:     Fernando Apesteguía <fernape@FreeBSD.org>
AuthorDate: 2025-05-24 15:20:34 +0000
Commit:     Fernando Apesteguía <fernape@FreeBSD.org>
CommitDate: 2025-05-24 15:33:50 +0000

    security/vuxml: Add python3 vulnerability

     * CVE-2025-4516

    PR:             287009
    Reported by:    ngie@

 security/vuxml/vuln/2025.xml | 44 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 44 insertions(+)

-- 
You are receiving this mail because:
You are the assignee for the bug.