Problem with cups/xpdf
Josef El-Rayes
josef at FreeBSD.org
Tue Nov 16 11:19:00 PST 2004
Josef El-Rayes <josef at freebsd.org>:
> Michael Nottebrock <michaelnottebrock at gmx.net>:
> > > I am trying to upgrade my cups-port with an up-to-date ports-tree. It fails
> > > because of the xpdf-vulnurability. But my xpdf-port is the most recent one
> > > and I think that the vulnurability was handelt in this version (if I can
> > > believ the cvs-comment).
> > >
> > > ===> cups-base-1.1.22.0 has known vulnerabilities:
> > > >> xpdf -- integer overflow vulnerabilities.
> > >
> > > Reference:
> > > <http://www.FreeBSD.org/ports/portaudit/ad2f3337-26bf-11d9-9289-000c41e2cda
> > >d .html>
> >
> > The vuxml entry is wrong, vid ad2f3337-26bf-11d9-9289-000c41e2cdad has
> > <range><ge>0</ge></range> but needs <range><lt>1.1.21</lt></range>.
> >
>
> Yes, you are absolutely right, I will correct the wrong range(s).
>
Okay I was a bit too fast, where did you find that the cups people fixed
this issue in their new release?
-josef
--
Josef El-Rayes (__)
Email: josef at daemon.li \\\'',)
Web: http://daemon.li/ \/ \ ^
FreeBSD Security Team .\._/_)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 481 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20041116/a3b7a3d7/attachment.bin
More information about the freebsd-ports
mailing list