notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
All times are UTC
Ukraine
non port: devel/kf5-kauth/files
SVNWeb

Number of commits found: 4

Tue, 12 Feb 2019
[ 17:48 tcberner search for other commits by this committer ] Original commit   Revision:492794 (Only the first 10 of 161 ports in this commit are shown above. View all ports for this commit)
Update KDE Frameworks to 5.55.0

Release Announcement:
  https://www.kde.org/announcements/kde-frameworks-5.55.0.php

PR:		235620
Exp-run by:	antoine
Sun, 10 Feb 2019
[ 18:04 tcberner search for other commits by this committer ] Original commit   Revision:492623
devel/kf5-kauth: add fix for CVE-2019-7443

From https://www.kde.org/info/security/advisory-20190209-1.txt :

KDE Project Security Advisory
=============================

Title:          kauth: Insecure handling of arguments in helpers
Risk Rating:    Medium
CVE:            CVE-2019-7443
Versions:       KDE Frameworks < 5.55.0
Date:           9 February 2019

Overview
========
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 20 May 2017
[ 10:24 tcberner search for other commits by this committer ] Original commit   Revision:441306 (Only the first 10 of 101 ports in this commit are shown above. View all ports for this commit)
Update KDE Frameworks to 5.34.0

PR:		219314
Reviewed by:	rakuco
Exp-run by:	antoine
Approved by:	rakuco (mentor, implicit)
Differential Revision:	https://reviews.freebsd.org/D10747
Wed, 10 May 2017
[ 12:03 tcberner search for other commits by this committer ] Original commit   Revision:440556
Add upstream fixes for CVE-2017-8422 to x11/kdelibs4 and devel/kf5-kauth

KAuth contains a logic flaw in which the service invoking dbus
is not properly checked.

This allows spoofing the identity of the caller and with some
carefully crafted calls can lead to gaining root from an
unprivileged account.

https://www.kde.org/info/security/advisory-20170510-1.txt

Reviewed by:	rakuco
Approved by:	rakuco (mentor)
Obtained from:	https://www.kde.org/info/security/advisory-20170510-1.txt
MFH:		2017Q2
Security:	CVE-2017-8422
Differential Revision:	https://reviews.freebsd.org/D10660

Number of commits found: 4