vulnerabilities, vuxml, Fwd: git: 7296fd2fe2b0 - main - security/vuxml: clean up sqlite3 version range mess

Greetings,

please see the attached commits I've made:

@Fernando:
- version ranges need to mention PORTEPOCH properly

- if you have a <ge> and <lt> tag for a limited "in between these 
versions" range, be sure to put them in the same range, else we will end 
up with two overlapping but open-ended ranges, effectively listing *all* 
versions vulnerable

- remember to list linux/emulation ports, too

@Emulation:
- additional difficulty: linux-rl9-sqlite was merged into linux_base-rl9 
which has its own Makefile.version for several packages, and one 
upstream version, so we don't have an easy top-level version to look at. 
I guess we'll resort to PORTREVISION.  Please check if sqlite3 was 
patched vs. earlier linux_base-rl9 versions for the relevant 
vulnerability or if it is vulnerable in RockyLinux9 and adjust the 
vuln/2025.xml version after the fix.

I've bluntly and summarily listed linux-c7 vulnerable, which has 
3.7.17-whatever but is also EOL and shouldn't be used.  I guess we 
should strip it from the distro.


ALSO, I've seen several entries where the <gt> tag is off. Some are 
right and mention <gt>1.2.3</gt> where a bug was introduced in 1.2.4, 
some seem implausible (navidrome >0.55 -- 0.55 was a big refactoring so 
is far more likely to have introduced bugs than a later version - we 
needn't care though because another vulnerability with wider range of 
affected versions overlaps the other vuln/2025.xml entry.).

Regards,
Matthias