svn commit: r517534 - head/security/vuxml
Gunther Nikl
gnikl at justmail.de
Thu Nov 14 17:39:06 UTC 2019
Sunpoet Po-Chuan Hsieh <sunpoet at FreeBSD.org> wrote:
> Author: sunpoet
> Date: Wed Nov 13 23:45:36 2019
> New Revision: 517534
> URL: https://svnweb.freebsd.org/changeset/ports/517534
>
> Log:
> Document libmad vulnerability
>
> Modified:
> head/security/vuxml/vuln.xml
>
> [snip]
>
> + <dates>
> + <discovery>2017-04-30</discovery>
> + <entry>2019-11-13</entry>
> + </dates>
> + </vuln>
If I read https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=508133#15
correctly, then the discovery date cannot be right. The debian bug and
the patch itself are from December 2008! Apparently the CVE numbers
were assigned in 2017 only.
Regards,
Gunther Nikl
More information about the svn-ports-all
mailing list