[Bug 287009] lang/python3*: CVE-2025-4516 (use-after-free issue with unicode-escape decoder related to error= handling)

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 27 May 2025 19:28:49 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=287009

--- Comment #5 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/ports/commit/?id=692ef6d1cf789c5aa76c1a01ed4c83ac7e2dac37

commit 692ef6d1cf789c5aa76c1a01ed4c83ac7e2dac37
Author:     Charlie Li <vishwin@FreeBSD.org>
AuthorDate: 2025-05-27 19:17:09 +0000
Commit:     Charlie Li <vishwin@FreeBSD.org>
CommitDate: 2025-05-27 19:27:35 +0000

    security/vuxml: adjust lang/python3 versions for CVE-2025-4516

    PORTREVISIONs are bumped for each port containing the respective
    upstream commit that is not included in any release yet.

    PR: 287009

 security/vuxml/vuln/2025.xml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

-- 
You are receiving this mail because:
You are the assignee for the bug.