git: 0605ef1bd0c2 - main - graphics/ImageMagick6: upgrade to 6.9.12-12
Dima Panov
fluffy at FreeBSD.org
Fri Jun 11 17:30:13 UTC 2021
Moin!
> On Saturday, Jun 12, 2021 at 3:26 AM, Thierry Thomas <thierry at freebsd.org (mailto:thierry at freebsd.org)> wrote:
> Le ven. 11 juin 21 à 18:48:18 +0200, Dan Langille <dan at langille.org>
> écrivait :
>
> > > Note: this might fix some vulnerabilities, e.g. CVE-2021-20244,
> > > CVE-2021-20243, CVE-2021-20176 or CVE-2020-27829, but this is not clear
> > > for me.
> > >
> > > PR: 255818
> > > Approved by: maintainer’s time-out
> >
> > This was a vuln fix and not backported to 2021Q2?
> >
> > Is there any reason I should not do that backport now?
>
> Yes, please! I sent a mail to ports-secteam@ and to the maintainer, but
> did not get any answer, and then I forgot about it…
You not need an extra approval for sevurity fixes to MFH it anymore. Do it!
--
Dima. (desktop, kde, x11, office, ports-secteam)@FreeBSD team
(fluffy at FreeBSD.org, https://t.me/dima_panov)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 901 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/dev-commits-ports-main/attachments/20210612/5113cb7b/attachment.sig>
More information about the dev-commits-ports-main
mailing list