Re: git: 4164ab866d06 - main - lang/njs: Fix CPE information

Reply: Sergey A. Osokin: "Re: git: 4164ab866d06 - main - lang/njs: Fix CPE information"
In reply to: Sergey A. Osokin: "Re: git: 4164ab866d06 - main - lang/njs: Fix CPE information"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <decke_at_freebsd.org>
Date: Fri, 18 Mar 2022 21:04:55 UTC

---- On Fri, 18 Mar 2022 19:01:43 +0100 osa@freebsd.org wrote ----Hi Bernhard,On Fri, Mar 18, 2022 at 03:55:49PM +0000, Bernhard Froehlich wrote:[...]>> -CPE_VENDOR=    f5> -CPE_PRODUCT=    njs> +CPE_VENDOR=    nginxWhy?--Sergey A. OsokinBecause the CPE entry was wrong and does not exist in the CPE dictionary. Have a look at a recent CVE for njs and you will see that they use nginx:njshttps://nvd.nist.gov/vuln/detail/CVE-2021-46463