non port: x11/kdelibs4/files/patch-git_dd1c2da |
Number of commits found: 2 |
Sunday, 26 Mar 2017
|
15:45 rakuco
Update x11/kdelibs4 to 4.14.30.
This is the latest stable release, and contains many of the patches we kept in
files/. The exception is patch-mimetypes_kde.xml, which just did not seem
necessary any longer: area51 r8180 mentions it was working around issues in
shared-mime-info, which has since been updated. While here, add several
dependencies that were reported by Poudriere's checks.
Bump PORTREVISION in ports that use %%KDE4_KDELIBS_VERSION%% in pkg-plist.
Reviewed by: tcberner
|
Saturday, 27 Aug 2016
|
19:30 tcberner
Add upstream patch for a security issue in karchive:
Directory traversal vulnerability in KArchive before 5.24, as
used in KDE Frameworks, allows remote attackers to write to
arbitrary files via a ../ (dot dot slash) in a filename in an
archive file, related to KNewsstuff downloads.
Review the patch is from: https://git.reviewboard.kde.org/r/128749/
Original KF5 review: https://git.reviewboard.kde.org/r/128185/
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6232
Approved by: rakuco (mentor)
Security: 4472ab39-6c66-11e6-9ca5-50e549ebab6c, CVE-2016-6232
MFH: 2016Q3
|
Number of commits found: 2 |