Authentication-Results: name.execsw.org; dkim=pass (1024-bit key) header.d=netbsd.org header.i=@netbsd.org header.b=RPgDKatz; dkim=pass (1024-bit key) header.d=netbsd.org header.i=@netbsd.org header.b=cyPjUMJf Received: by mail.netbsd.org (Postfix, from userid 605) id BC65F84E79; Wed, 8 May 2024 11:19:53 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netbsd.org; s=20240131; t=1715167193; bh=IZNcSjXYTvWBlqkVHEwDR7T5WzDW8LBOnkZXsK/PhQg=; h=Date:From:Subject:To:Reply-To:List-Id:List-Unsubscribe; b=RPgDKatz1/Cb9zIpiZbbKj+VCJvYcq7XVdx2RP17G/51I0SKbxXXq7XPwPs/G6/qu qyBF3q64HdBGq9VfHDm5DnRwH9+UwQbK5B04qPaQn1tXxdH0dkTihCAvzMs8oapaOP HwWQE2CRWLohW+L3mDNuDvQrL/hn4wMBtqlwswhw= Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id AAE0884E72 for ; Wed, 8 May 2024 11:19:52 +0000 (UTC) X-Virus-Scanned: amavisd-new at netbsd.org Authentication-Results: mail.netbsd.org (amavisd-new); dkim=pass (1024-bit key) header.d=netbsd.org Received: from mail.netbsd.org ([IPv6:::1]) by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025) with ESMTP id lE6RIM2PwOpR for ; Wed, 8 May 2024 11:19:52 +0000 (UTC) Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984]) by mail.netbsd.org (Postfix) with ESMTP id 0340284D1C for ; Wed, 8 May 2024 11:19:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netbsd.org; s=20240131; t=1715167192; bh=IZNcSjXYTvWBlqkVHEwDR7T5WzDW8LBOnkZXsK/PhQg=; h=Date:From:Subject:To:Reply-To; b=cyPjUMJfakoxB9GUZBeGUSB4qCYqNkZiSHSjJXWDJRvIxtrhaUXekLQ72bsYZL6o9 n8i/nrwu+0YBLJU9UJdsbZHDkUqwerf9BCw+o0r8/k9u/whs5nGvU7/rPuNtrP7ab/ DTonymLy2k09mlBDpOvfpDGYPcaws1Y7l86q4NwA= Received: by cvs.NetBSD.org (Postfix, from userid 500) id EEA5FFA2C; Wed, 8 May 2024 11:19:51 +0000 (UTC) Content-Transfer-Encoding: 7bit Content-Type: multipart/mixed; boundary="_----------=_171516719195970" MIME-Version: 1.0 Date: Wed, 8 May 2024 11:19:51 +0000 From: "Havard Eidnes" Subject: CVS commit: pkgsrc/doc To: pkgsrc-changes@NetBSD.org Reply-To: he@netbsd.org X-Mailer: log_accum Message-Id: <20240508111951.EEA5FFA2C@cvs.NetBSD.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: Precedence: bulk List-Unsubscribe: This is a multi-part message in MIME format. --_----------=_171516719195970 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Module Name: pkgsrc Committed By: he Date: Wed May 8 11:19:51 UTC 2024 Modified Files: pkgsrc/doc: pkg-vulnerabilities Log Message: Add entry for net/unbound / CVE-2024-33655, and mark as denial-of-service even though it probably is more "contributing to denial-of-service". Temporarily use cve.mitre.org, which at least lists CVE as "assigned". To generate a diff of this commit: cvs rdiff -u -r1.188 -r1.189 pkgsrc/doc/pkg-vulnerabilities Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files. --_----------=_171516719195970 Content-Disposition: inline Content-Length: 861 Content-Transfer-Encoding: binary Content-Type: text/x-diff; charset=us-ascii Modified files: Index: pkgsrc/doc/pkg-vulnerabilities diff -u pkgsrc/doc/pkg-vulnerabilities:1.188 pkgsrc/doc/pkg-vulnerabilities:1.189 --- pkgsrc/doc/pkg-vulnerabilities:1.188 Tue May 7 11:07:14 2024 +++ pkgsrc/doc/pkg-vulnerabilities Wed May 8 11:19:51 2024 @@ -1,4 +1,4 @@ -# $NetBSD: pkg-vulnerabilities,v 1.188 2024/05/07 11:07:14 wiz Exp $ +# $NetBSD: pkg-vulnerabilities,v 1.189 2024/05/08 11:19:51 he Exp $ # #FORMAT 1.0.0 # @@ -26000,3 +26000,4 @@ p5-Email-MIME<1.954 denial-of-service ht uriparser<0.9.8 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-34402 uriparser<0.9.8 integer-overflow https://nvd.nist.gov/vuln/detail/CVE-2024-34403 tinyproxy<1.11.1nb2 remote-code-execution https://nvd.nist.gov/vuln/detail/CVE-2023-49606 +unbound<1.20.0 denial-of-service https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33655 --_----------=_171516719195970--