[Bug 201704] lang/groovy: remote execution of untrusted code vulnerability in 2.3.9
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Jul 20 02:44:34 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201704
Bug ID: 201704
Summary: lang/groovy: remote execution of untrusted code
vulnerability in 2.3.9
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: jason.unovitch at gmail.com
CC: mjs at bur.st
Flags: maintainer-feedback?(mjs at bur.st)
CC: mjs at bur.st
Maintainer of lang/groovy,
CVE-2015-3253: Remote execution of untrusted code applies to Groovy 1.7.0 to
2.4.3. The current version of lang/groovy is 2.3.9. This port will require an
update.
References:
http://www.vuxml.org/freebsd/67b3fef2-2bea-11e5-86ff-14dae9d210b8.html
https://issues.apache.org/jira/browse/GROOVY-7504
http://seclists.org/oss-sec/2015/q3/121
http://groovy-lang.org/security.html
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list