Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id C2A2D84F66
	for <pkgsrc-changes@NetBSD.org>; Tue, 10 Oct 2023 14:09:15 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Received: from mail.netbsd.org ([IPv6:::1])
	by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025)
	with ESMTP id TUDSDgdNZn0i for <pkgsrc-changes@netbsd.org>;
	Tue, 10 Oct 2023 14:09:15 +0000 (UTC)
Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984])
	by mail.netbsd.org (Postfix) with ESMTP id 4467384F2E
	for <pkgsrc-changes@NetBSD.org>; Tue, 10 Oct 2023 14:09:15 +0000 (UTC)
Received: by cvs.NetBSD.org (Postfix, from userid 500)
	id 3DFBCFADC; Tue, 10 Oct 2023 14:09:15 +0000 (UTC)
Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1696946955226090"
MIME-Version: 1.0
Date: Tue, 10 Oct 2023 14:09:15 +0000
From: "Thomas Merkel" <tm@netbsd.org>
Subject: CVS commit: pkgsrc/doc
To: pkgsrc-changes@NetBSD.org
Approved: commit_and_comment
Reply-To: tm@netbsd.org
X-Mailer: log_accum
Message-Id: <20231010140915.3DFBCFADC@cvs.NetBSD.org>

This is a multi-part message in MIME format.

--_----------=_1696946955226090
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	tm
Date:		Tue Oct 10 14:09:15 UTC 2023

Modified Files:
	pkgsrc/doc: pkg-vulnerabilities

Log Message:
doc: pkg-vulnerabilities +ImageMagick, +gifsicle, +gpac, +gradle, +libcue, +mosquitto, +tiff, +vim, +webkit-gtk


To generate a diff of this commit:
cvs rdiff -u -r1.30 -r1.31 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1696946955226090
Content-Disposition: inline
Content-Length: 1493
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.30 pkgsrc/doc/pkg-vulnerabilities:1.31
--- pkgsrc/doc/pkg-vulnerabilities:1.30	Tue Oct 10 13:56:11 2023
+++ pkgsrc/doc/pkg-vulnerabilities	Tue Oct 10 14:09:14 2023
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.30 2023/10/10 13:56:11 tm Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.31 2023/10/10 14:09:14 tm Exp $
 #
 #FORMAT 1.0.0
 #
@@ -25572,3 +25572,12 @@ moodle<3.11.1	denial-of-service	https://
 moodle<3.11.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-36403
 samba4<4.17.4	brute-force-attack	https://nvd.nist.gov/vuln/detail/CVE-2021-20251
 pev-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2021-45423
+vim<9.0.1969	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-5344
+mosquitto<2.0.16	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3592
+gpac-[0-9]*	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-5377
+tiff<4.5.1	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3576
+ImageMagick<7.1.1.19	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-3428
+gradle<7.6.3	insecure-file-permissions	https://nvd.nist.gov/vuln/detail/CVE-2023-44387
+webkit-gtk<2.42	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-39928
+gifsicle-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44821
+libcue<2.2.1nb1	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-43641


--_----------=_1696946955226090--