[Bug 209219] devel/jansson: denial of service vulnerability (CVE-2016-4425)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue May 3 00:22:49 UTC 2016
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=209219
Bug ID: 209219
Summary: devel/jansson: denial of service vulnerability
(CVE-2016-4425)
Product: Ports & Packages
Version: Latest
Hardware: Any
URL: http://www.openwall.com/lists/oss-security/2016/05/02/
1
OS: Any
Status: New
Keywords: needs-patch, needs-qa, security
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: vanilla at FreeBSD.org
Reporter: junovitch at freebsd.org
CC: ports-secteam at FreeBSD.org
Flags: maintainer-feedback?(vanilla at FreeBSD.org),
merge-quarterly?
Assignee: vanilla at FreeBSD.org
Maintainer of devel/jansson,
There is a report of an denial of service issue (CVE-2016-4425) in the library
reported on oss-security
(http://www.openwall.com/lists/oss-security/2016/05/02/1). The report
indicates this impacts jansson < 2.5 and the fix is still pending at
https://github.com/akheron/jansson/issues/282. When there is a resolution,
this will need to filter down into the port and get a VuXML entry.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list