False vuxml alarms (ImageMagick)
Andrey Chernov
ache at nagual.pp.ru
Thu Aug 12 03:22:22 PDT 2004
On Thu, Aug 12, 2004 at 12:10:57PM +0200, Oliver Eikemeier wrote:
> The vulnerability database is open for every committer to commit to. But
> before changing the entry: what makes you believe version 6.0.2.7 is not
> vulnerable? http://www.imagemagick.org/www/Changelog.html seems to be a
> good indicator that it is...
Do you mean vuln.xml corresponding entry (ImageMagick) should be removed?
I mean this part printed, it is wrong:
>>>>>libpng stack-based buffer overflow and other code concerns.
>>> Reference:
>>><http://www.FreeBSD.org/ports/portaudit/f9e3e60b-e650-11d8-9b0a-000347a4fa7d.
>>>html>
because libpng is already fixed.
--
Andrey Chernov | http://ache.pp.ru/
More information about the freebsd-ports
mailing list