notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)All times are UTC		 Ukraine
The safest procedure: change your FreshPorts password. Anything you had set before Friday March 24 2023 09:49:20 UTC should be changed. You can read more here: SQL inejection issues fixed and FreshSource code fixes Sorry about the extra work for you.
All known SQL injection issues patched. There is no evidence it was exploited. That doesn’t mean it wasn’t. Please change your password.
non port: sysutils/screen/files/patch-ansi.c
SVNWeb

Number of commits found: 6

Thu, 17 Mar 2022
[ 23:44 Cy Schubert (cy) search for other commits by this committer ]    commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  9bdc788  
sysutils/screen: Update to 4.9.0

Update screen to 4.9.0. From the release announcement:

New in this release:
  * Hardstatus option for used encoding (escape string '%e')
  * Fixes:
    - fix combining char handling that could lead to a segfault
    - CVE-2021-26937: possible denial of service via a crafted UTF-8
      character sequence (bug #60030)
    - make screen exit code be 0 when checking --help
    - session names limit is 80 symbols (bug #61534)
    - option -X ignores specified user in multiuser env (bug #37437)
    - a lot of reformations/fixes/cleanups (man page and source code)

For full list of changes see
https://git.savannah.gnu.org/cgit/screen.git/log/?h=v.4.9.0

Note that CVE-2021-26937 was fixed in the FreeBSD port in 2021.
Tue, 16 Feb 2021
[ 00:45 cy search for other commits by this committer ] Original commit   Revision:565376 
Fix CVE-2021-26937 for real: segfaults by displaying some UTF-8 characters

This is a recommit of r565281 fixing a typo in r565281, causing
a regression.

CVE-2021-26937 segfaults when displayingsome UTF-8 characters
described in
https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html.

PR:		253515
Reported by:	daniel.engberg.lists at pyret.net
Obtained from:	https://build.opensuse.org/request/show/871482
MFH:		2020Q1
Security:	CVE-2021-26937
Mon, 15 Feb 2021
[ 19:17 cy search for other commits by this committer ] Original commit   Revision:565328 
Revert r565281. It breaks UTF-8.

Reported by:	Trond.Endrestol at ximalas.info
		Christos Chatzaras <chris at cretaforce.gr>
PR:		253515
[ 01:35 cy search for other commits by this committer ] Original commit   Revision:565281 
Fix CVE-2021-26937: segfaults by displaying some UTF-8 characters

CVE-2021-26937 segfaults when displayingsome UTF-8 characters
described in
https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html.

PR:		253515
Reported by:	daniel.engberg.lists at pyret.net
Obtained from:	https://build.opensuse.org/request/show/871482
MFH:		2020Q1
Security:	CVE-2021-26937
Wed, 1 Jul 2015
[ 01:51 cy search for other commits by this committer ] Original commit   Revision:391023 
Update 4.2.1 --> 4.3.1
Wed, 30 Apr 2014
[ 04:22 cy search for other commits by this committer ] Original commit   Revision:352669 (Only the first 10 of 18 ports in this commit are shown above. View all ports for this commit) 
Update screen 4.0.3 --> 4.2.1.

Put final touches onto screen-legacy.

Number of commits found: 6
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
gitlab-ceMar 31
powerdns-recursorMar 30
ruby27Mar 30
ruby27Mar 30
ruby30Mar 30
ruby30Mar 30
ruby31Mar 30
ruby31Mar 30
ruby32Mar 30
ruby32Mar 30
rubygem-timeMar 30
rubygem-uriMar 30
cinnyMar 29
element-webMar 29
opensslMar 29

16 vulnerabilities affecting 220 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2023-03-31 04:34:09 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 31310
Broken 113
Deprecated 132
Ignore 284
Forbidden 0
Restricted 2
No CDROM 0
Vulnerable 35
Expired 9
Set to expire 98
Interactive 0
new 24 hours 4
new 48 hours12
new 7 days24
new fortnight68
new month126
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2023 Dan Langille. All rights reserved.