Problem with cups/xpdf
Michael Nottebrock
michaelnottebrock at gmx.net
Tue Nov 16 06:12:46 PST 2004
On Tuesday, 16. November 2004 14:45, Jonathan Weiss wrote:
> Cheers,
>
>
>
> I am trying to upgrade my cups-port with an up-to-date ports-tree. It fails
> because of the xpdf-vulnurability. But my xpdf-port is the most recent one
> and I think that the vulnurability was handelt in this version (if I can
> believ the cvs-comment).
>
> ===> cups-base-1.1.22.0 has known vulnerabilities:
> >> xpdf -- integer overflow vulnerabilities.
>
> Reference:
> <http://www.FreeBSD.org/ports/portaudit/ad2f3337-26bf-11d9-9289-000c41e2cda
>d .html>
The vuxml entry is wrong, vid ad2f3337-26bf-11d9-9289-000c41e2cdad has
<range><ge>0</ge></range> but needs <range><lt>1.1.21</lt></range>.
Security Team cc'd.
--
,_, | Michael Nottebrock | lofi at freebsd.org
(/^ ^\) | FreeBSD - The Power to Serve | http://www.freebsd.org
\u/ | K Desktop Environment on FreeBSD | http://freebsd.kde.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20041116/29ef487c/attachment.bin
More information about the freebsd-ports
mailing list