FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us

Please give me your LTO-4 or better tape library and I'll put it to good use.
non port: head/lang/python27/files/patch-CVE-2014-1912

Number of commits found: 2

Mon, 14 Jul 2014
[ 07:20 koobs ] Original commit 
361735 Mk/
361735 lang/python27/Makefile
361735 lang/python27/distinfo
361735 lang/python27/files/patch-CVE-2014-1912
361735 lang/python27/files/patch-Doc-library-fcntl.rst
361735 lang/python27/files/patch-Doc__library__fcntl.rst
361735 lang/python27/files/patch-Modules-fcntlmodule.c
361735 lang/python27/files/patch-Modules__fcntlmodule.c
361735 lang/python27/files/patch-issue20374
361735 lang/python27/files/

(Only the first 10 of 13 ports in this commit are shown above. View all ports for this commit)
lang/python27: Update to 2.7.8

The FreeBSD Python team welcomes Python 2.7.8 to the Ports tree!


- Update to 2.7.8, update pkg-plist
- OPTIONS: Reorder and sort alphabetically
- OPTIONS: Make POSIX SEM(aphores) a DEFAULT (Hi binary package users!)
- OPTIONS: Add better descriptions for UCS2 and UCS4
- OPTIONS: Use options helpers
- Remove patch-CVE-2014-1912: upstream, was backported
- Remove patch-issue20374: upstream, was backported
- Rename patch-Doc__library__fcntl.rst: underscore convention
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 1 Mar 2014
[ 10:52 koobs ] Original commit 
346614 lang/python27/Makefile
346614 lang/python27/files/patch-CVE-2014-1912
346614 lang/python31/Makefile
346614 lang/python31/files/patch-CVE-2014-1912
346614 lang/python32/Makefile
346614 lang/python32/files/patch-CVE-2014-1912
346614 lang/python33/Makefile
346614 lang/python33/files/patch-CVE-2014-1912
lang/python*: Backport security fix for CVE-2014-1912

A vulnerability was reported [1] in Python's socket module, due to a
boundary error within the sock_recvfrom_into() function, which could be
exploited to cause a buffer overflow.

This could be used to crash a Python application that uses the
socket.recvfrom_info() function or, possibly, execute arbitrary code
with the permissions of the user running vulnerable Python code.

This vulnerable function, socket.recvfrom_into(), was introduced in
Python 2.5. Earlier versions are not affected by this flaw.  This is
fixed in upstream branches for version 2.7, 3.1, 3.2 and 3.3.


MFH:		2014Q1
Security:	8e5e6d42-a0fa-11e3-b09a-080027f2d077

Number of commits found: 2

User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
How big is it?
The latest upgrade!

Enter Keywords:

Latest Vulnerabilities
avidemux*Sep 20
avidemux*Sep 20
ffmpeg*Sep 20
ffmpeg*Sep 20
ffmpeg0*Sep 20
gstreamer-ffmpeg*Sep 20
gstreamer1-libav*Sep 20
gstreamer1-libav*Sep 20
handbrake*Sep 20
handbrake*Sep 20
kodi*Sep 20
kodi*Sep 20
libav*Sep 20
libav*Sep 20
libzip*Sep 20

28 vulnerabilities affecting 92 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Deleted ports
Sanity Test Failures

NEW Graphs (Javascript)

Calculated hourly:
Port count 25300
Broken 187
Deprecated 62
Ignore 481
Forbidden 1
Restricted 206
Vulnerable 42
Expired 2
Set to expire 47
Interactive 0
new 24 hours 1
new 48 hours2
new 7 days16
new fortnight74
new month128

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.