cvs commit: ports/security/vuxml vuln.xml
Xin Li
delphij at delphij.net
Mon Apr 30 18:15:16 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 04/30/12 11:08, Chris Rees wrote:
> On 30 April 2012 17:51, Xin LI <delphij at freebsd.org> wrote:
>> delphij 2012-04-30 17:51:46 UTC
>>
>> FreeBSD ports repository
>>
>> Modified files: security/vuxml vuln.xml Log: Document samba
>> incorrect permission checks vulnerability.
>
> + <range><gt>3.4.*</gt><lt>3.4.17</lt></range> + </package> +
> <package> + <name>samba35</name> +
> <range><gt>3.5.*</gt><lt>3.5.15</lt></range> + </package> +
> <package> + <name>samba36</name> +
> <range><gt>3.6.*</gt><lt>3.6.5</lt></range>
>
> Don't you want to use <ge /> for the minimum versions in each
> range?
That's a good question, frankly I'm not sure...
I used gt here because * means -NaN to me (and there is no >= -NaN but
only > -NaN), plus, older entries do this, too. It would probably a
good idea to use <ge>3.6.0<ge> instead, though.
Cheers,
- --
Xin LI <delphij at delphij.net> https://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (FreeBSD)
iQEcBAEBCAAGBQJPntazAAoJEG80Jeu8UPuzgPUH/iUojCv1Vjovrv3VB6oY+kWO
uS7AQRibXZ8OxkmgAZ9R3Ruf7PvNMposQk6uv07XiJ1gMX2cmdsPWAL3CFWGsP6i
0eFti5ZglFrmxYEULjLxIyTlcPFnk5GSGxA1ruK1SVTp2KHvQojY+A3ciDCFgvnA
Ab4iR2F+kEh8mVeKjGrCx2amEITOkoi5hLLNxFiQs3bQ8qeZtb7ibFXcOOXvKml2
lfgwIQBjSXB76wugjJsECor+45h7/cWX9a5XvQSxmWpL2JsSQhZp61gyU0bHBJ+O
oXNhLVGcNh1+esLPrpln9t1G2TMAPxP7rMhTPBM51nj1+aYp1+pjN2vzsjrLFN8=
=82CH
-----END PGP SIGNATURE-----
More information about the cvs-ports
mailing list