[Bug 210751] security/vuxml: Security vulnerability in SQLite3 (CVE-2016-6153)

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=210751

            Bug ID: 210751
           Summary: security/vuxml: Security vulnerability in SQLite3
                    (CVE-2016-6153)
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
               URL: https://www.korelogic.com/Resources/Advisories/KL-001-
                    2016-003.txt
                OS: Any
            Status: New
          Keywords: easy, patch, security
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-secteam at FreeBSD.org
          Reporter: vlad-fbsd at acheronmedia.com
             Flags: maintainer-feedback?(ports-secteam at FreeBSD.org)
          Assignee: ports-secteam at FreeBSD.org

Created attachment 172028
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=172028&action=edit
Add SQLite3 vuln entry (CVE-2016-6153)

SQLite3 prior to 3.13.0 (eg. the one in 2016Q2) has a tempdir selection
vulnerability. Attached is the VuXML entry patch.

* Reported:
  https://www.korelogic.com/Resources/Advisories/KL-001-2016-003.txt

* CVE assignment:
  http://openwall.com/lists/oss-security/2016/07/01/2

-- 
You are receiving this mail because:
You are the assignee for the bug.