svn commit: r511802 - head/security/vuxml
Tobias Kortkamp
tobik at freebsd.org
Wed Sep 11 09:04:13 UTC 2019
On Wed, Sep 11, 2019 at 08:30:57AM +0000, Bernard Spil wrote:
> Author: brnrd
> Date: Wed Sep 11 08:30:57 2019
> New Revision: 511802
> URL: https://svnweb.freebsd.org/changeset/ports/511802
>
> Log:
> security/vuxml: Document OpenSSL vulnerabilities
>
> Modified:
> head/security/vuxml/vuln.xml
>
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml Wed Sep 11 08:30:16 2019 (r511801)
> +++ head/security/vuxml/vuln.xml Wed Sep 11 08:30:57 2019 (r511802)
> @@ -58,6 +58,39 @@ Notes:
> * Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
> -->
> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
> + <vuln vid="9e0c6f7a-d46d-11e9-a1c7-b499baebfeaf">
> + <topic>OpenSSL -- Multiple vulnerabilities</topic>
> + <affects>
> + <package>
> + <name>openssl</name>
> + <range><lt>1.0.2t</lt></range>
Hi,
the version range here is not correct. security/openssl has
PORTEPOCH=1. It should be
<range><lt>1.0.2t,1</lt></range>
or no one will ever be informed about it through pkg audit.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 618 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/svn-ports-all/attachments/20190911/169e9432/attachment.sig>
More information about the svn-ports-all
mailing list