Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id 0AD8F84F8E
	for <pkgsrc-changes@NetBSD.org>; Tue, 10 Oct 2023 19:32:46 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Received: from mail.netbsd.org ([IPv6:::1])
	by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025)
	with ESMTP id zsOrdy6C_i5W for <pkgsrc-changes@netbsd.org>;
	Tue, 10 Oct 2023 19:32:45 +0000 (UTC)
Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984])
	by mail.netbsd.org (Postfix) with ESMTP id 5495784E6D
	for <pkgsrc-changes@NetBSD.org>; Tue, 10 Oct 2023 19:32:45 +0000 (UTC)
Received: by cvs.NetBSD.org (Postfix, from userid 500)
	id 4E4B6FADC; Tue, 10 Oct 2023 19:32:45 +0000 (UTC)
Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1696966365132830"
MIME-Version: 1.0
Date: Tue, 10 Oct 2023 19:32:45 +0000
From: "Thomas Merkel" <tm@netbsd.org>
Subject: CVS commit: pkgsrc/doc
To: pkgsrc-changes@NetBSD.org
Approved: commit_and_comment
Reply-To: tm@netbsd.org
X-Mailer: log_accum
Message-Id: <20231010193245.4E4B6FADC@cvs.NetBSD.org>

This is a multi-part message in MIME format.

--_----------=_1696966365132830
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	tm
Date:		Tue Oct 10 19:32:45 UTC 2023

Modified Files:
	pkgsrc/doc: pkg-vulnerabilities

Log Message:
doc: pkg-vulnerabilities +routinator, +sniproxy, +sofia-sip, +spice-server, +terraform


To generate a diff of this commit:
cvs rdiff -u -r1.39 -r1.40 pkgsrc/doc/pkg-vulnerabilities

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1696966365132830
Content-Disposition: inline
Content-Length: 1280
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/doc/pkg-vulnerabilities
diff -u pkgsrc/doc/pkg-vulnerabilities:1.39 pkgsrc/doc/pkg-vulnerabilities:1.40
--- pkgsrc/doc/pkg-vulnerabilities:1.39	Tue Oct 10 19:25:06 2023
+++ pkgsrc/doc/pkg-vulnerabilities	Tue Oct 10 19:32:44 2023
@@ -1,4 +1,4 @@
-# $NetBSD: pkg-vulnerabilities,v 1.39 2023/10/10 19:25:06 tm Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.40 2023/10/10 19:32:44 tm Exp $
 #
 #FORMAT 1.0.0
 #
@@ -25670,3 +25670,9 @@ bitcoin<24.1	denial-of-service	https://n
 bitcoin-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-37192
 gnuplot-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-25969
 screen<4.9.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-24626
+terraform>=1.0.8<1.5.7	overwrite-arbitrary-files	https://nvd.nist.gov/vuln/detail/CVE-2023-4782
+sniproxy<0.6.1	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25076
+spice-server-[0-9]*	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2020-23793
+routinator<0.12.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-39915
+routinator>=0.9.0<0.12.2	path-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-39916
+sofia-sip<1.13.15	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-32307


--_----------=_1696966365132830--