cvs commit: ports/security/vuxml vuln.xml
Remko Lodder
remko at elvandar.org
Mon Sep 5 07:45:58 UTC 2011
Dear Chris,
Please have a look, but consult us before you actually commit the changes..
Thanks
Remko
On Sep 4, 2011, at 10:44 PM, Chris Rees wrote:
> On 4 September 2011 21:15, Chris Rees <crees at freebsd.org> wrote:
>> crees 2011-09-04 20:15:52 UTC
>>
>> FreeBSD ports repository
>>
>> Modified files:
>> security/vuxml vuln.xml
>> Log:
>> - Document cfs buffer overflow vulnerability.
>> - While here, unbreak packaudit -- it doesn't like newlines in the
>> middle of tags. Perhaps a comment should say something?
>
> Actually, that's a bad long-term solution. The real solution would be
> to fix portaudit's XML parser.
>
> secteam, would you like me to have a go at it, or shall I let you
> investigate since you know the code?
>
> Chris
> _______________________________________________________
> Please think twice when forwarding, cc:ing, or bcc:ing
> security-team messages. Ask if you are unsure.
>
More information about the cvs-ports
mailing list