notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)All times are UTC		 Ukraine
We just patched an SQL injection. There is no evidence it was exploited. That doesn’t mean it wasn’t. Please change your password. You might want to hold off on that change. We have a few more to fix.
non port: sysutils/screen/files/patch-encoding.c
SVNWeb

Number of commits found: 6

Thu, 17 Mar 2022
[ 23:44 Cy Schubert (cy) search for other commits by this committer ]    commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  commit hash:9bdc788616889d0a2b3f9c8b8996610cdfe82be7  9bdc788  
sysutils/screen: Update to 4.9.0

Update screen to 4.9.0. From the release announcement:

New in this release:
  * Hardstatus option for used encoding (escape string '%e')
  * Fixes:
    - fix combining char handling that could lead to a segfault
    - CVE-2021-26937: possible denial of service via a crafted UTF-8
      character sequence (bug #60030)
    - make screen exit code be 0 when checking --help
    - session names limit is 80 symbols (bug #61534)
    - option -X ignores specified user in multiuser env (bug #37437)
    - a lot of reformations/fixes/cleanups (man page and source code)

For full list of changes see
https://git.savannah.gnu.org/cgit/screen.git/log/?h=v.4.9.0

Note that CVE-2021-26937 was fixed in the FreeBSD port in 2021.
Tue, 16 Feb 2021
[ 00:45 cy search for other commits by this committer ] Original commit   Revision:565376 
Fix CVE-2021-26937 for real: segfaults by displaying some UTF-8 characters

This is a recommit of r565281 fixing a typo in r565281, causing
a regression.

CVE-2021-26937 segfaults when displayingsome UTF-8 characters
described in
https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html.

PR:		253515
Reported by:	daniel.engberg.lists at pyret.net
Obtained from:	https://build.opensuse.org/request/show/871482
MFH:		2020Q1
Security:	CVE-2021-26937
Mon, 15 Feb 2021
[ 19:17 cy search for other commits by this committer ] Original commit   Revision:565328 
Revert r565281. It breaks UTF-8.

Reported by:	Trond.Endrestol at ximalas.info
		Christos Chatzaras <chris at cretaforce.gr>
PR:		253515
[ 01:35 cy search for other commits by this committer ] Original commit   Revision:565281 
Fix CVE-2021-26937: segfaults by displaying some UTF-8 characters

CVE-2021-26937 segfaults when displayingsome UTF-8 characters
described in
https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html.

PR:		253515
Reported by:	daniel.engberg.lists at pyret.net
Obtained from:	https://build.opensuse.org/request/show/871482
MFH:		2020Q1
Security:	CVE-2021-26937
Tue, 3 May 2011
[ 19:34 cy search for other commits by this committer ] Original commit  
Back out previous commit. It broke UTF8 functioning.

Submitted by:   Dmitry Marakasov <amdmi3@amdmi3.ru>
Sun, 1 May 2011
[ 04:28 cy search for other commits by this committer ] Original commit  
Add support for KOI8-U.

PR:             ports/156031
Submitted by:   Valentin Nechayev <netch@netch.kiev.ua>

Number of commits found: 6
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
curlMar 20
phpmyadminMar 16
phpmyadmin5Mar 16
apache24Mar 11
chromiumMar 09
jenkinsMar 09
jenkins-ltsMar 09
ungoogled-chromiumMar 09
go119Mar 08
go120Mar 08
mantisMar 08
openoffice-4Mar 08
openoffice-develMar 08
rubygem-rackMar 06
rubygem-rack16Mar 06

9 vulnerabilities affecting 202 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2023-03-20 09:12:47 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 59461
Broken 141
Deprecated 183
Ignore 319
Forbidden 10
Restricted 2
No CDROM 0
Vulnerable 31
Expired 5
Set to expire 149
Interactive 0
new 24 hours 1
new 48 hours2
new 7 days20
new fortnight38
new month116
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2023 Dan Langille. All rights reserved.