diff options
author | Olli Hauer <ohauer@FreeBSD.org> | 2013-12-01 15:10:18 +0000 |
---|---|---|
committer | Olli Hauer <ohauer@FreeBSD.org> | 2013-12-01 15:10:18 +0000 |
commit | 37df5f700f2cbd7c7d4de78e1e745b0a6071fbcc (patch) | |
tree | 1d97042842fa3d2249733476a61398823c34fdff /sysutils/jkill | |
parent | 3e00e55e12a24cc49676fcd125e76989ccf9efc7 (diff) | |
download | ports-37df5f700f2cbd7c7d4de78e1e745b0a6071fbcc.tar.gz ports-37df5f700f2cbd7c7d4de78e1e745b0a6071fbcc.zip |
- security update to 3.3.1
This is a maintenance release that fixes a serious bug in the built-in HTTP
server. It was discovered that the handle_request() routine did not properly
perform input sanitization which led into a number of security
vulnerabilities.
An unauthenticated, remote attacker could exploit this flaw to execute
arbitrary commands on the remote host.
All users still using older versions are advised to upgrade to this version,
which resolves this issue.
Approved by: crees (maintainer, per PM)
Security: 620cf713-5a99-11e3-878d-20cf30e32f6d
Notes
Notes:
svn path=/head/; revision=335393
Diffstat (limited to 'sysutils/jkill')
0 files changed, 0 insertions, 0 deletions