portaudit: xfce vulnerabilities
Andriy Gapon
avg at icyb.net.ua
Thu Feb 14 01:04:51 PST 2008
on 14/02/2008 08:49 Remko Lodder said the following:
> On Wed, February 13, 2008 2:42 pm, Andriy Gapon wrote:
>> It seems that there is a mistake on this page:
>> http://www.freebsd.org/ports/portaudit/024edd06-c933-11dc-810c-0016179b2dd5.html
>>
>> All reference URLs say that the vulnerability existed before version
>> 4.4.2 and it is fixed in version 4.4.2.
>> But affected version are described as:
>> xfce4-panel >4.4.1_1
>> libxfce4gui >4.4.1_1
>>
>> Shouldn't there be "equal or less" instead of "greater"?
>>
>> --
>> Andriy Gapon
>> _______________________________________________
>
> Hey Andriy,
>
> Thanks for the report, from what I know miwi was going to look at this to
> match <lt>4.4.2</lt> so that nothing else is affected..
Remko, thanks, this makes more sense.
Though, could this process be sped up a tiny bit?
I am sure this is confusing users trying to upgrade from the vulnerable
version.
--
Andriy Gapon
More information about the freebsd-security
mailing list