cvs commit: ports/security/vuxml vuln.xml

[Dag-ErlingSmørgrav]

Oliver Eikemeier <eik at FreeBSD.org> writes:
>   Log:
>   XFree86-Server-4.3.0_14 is the fixed version

Thanks.

I should point out though I have personally verified that the exploit
in the advisory does not work against 4.3.0_13 nor 4.3.99.15_1.  The
only practical difference I noticed between the first and second
version of the patch was better error reporting.  Still, there might
be other ways to exploit the bugs that were fixed in the final patch.

DES
-- 
Dag-Erling Smørgrav - des at des.no