svn commit: r526540 - branches/2020Q1/shells/ksh93
Cy Schubert
cy at FreeBSD.org
Thu Feb 20 03:42:59 UTC 2020
Author: cy
Date: Thu Feb 20 03:42:57 2020
New Revision: 526540
URL: https://svnweb.freebsd.org/changeset/ports/526540
Log:
MFH: r525497
Fix CVE-2019-14868: certain environment variables interpreted as
arithmetic expressions on startup, leading to code injection.
Submitted by: Siteshwar Vashisht <svashisht at redhat.com>
Reported by: Marian Rehak
Security: CVE-2019-14868
https://bugzilla.redhat.com/show_bug.cgi?id=1757324
https://access.redhat.com/security/cve/CVE-2019-14868
Approved by: portmgr (miwi)
Modified:
branches/2020Q1/shells/ksh93/Makefile
Directory Properties:
branches/2020Q1/ (props changed)
Modified: branches/2020Q1/shells/ksh93/Makefile
==============================================================================
--- branches/2020Q1/shells/ksh93/Makefile Thu Feb 20 01:49:05 2020 (r526539)
+++ branches/2020Q1/shells/ksh93/Makefile Thu Feb 20 03:42:57 2020 (r526540)
@@ -2,6 +2,7 @@
PORTNAME= ksh93
DISTVERSION= 2020.0.0
+PORTREVISION= 1
PORTEPOCH= 1
CATEGORIES= shells
More information about the svn-ports-branches
mailing list