ruby-1.8.2.p2_1 has known vulnerabilities-- CGI DoS
Kris Kennaway
kris at obsecurity.org
Fri Nov 19 03:35:56 PST 2004
On Fri, Nov 19, 2004 at 11:14:46AM +0100, Feczak Szabolcs wrote:
> Please mark the port forbidden according to
> http://www.freebsd.org/ports/portaudit/d656296b-33ff-11d9-a9e7-0001020eed82.html
> till the update comes
That probably wouldn't be appropriate since the vulnerability affects
only one aspect of the ruby port that is irrelevant for most users
(consider that most people use ruby for portupgrade). portaudit
already knows about this problem, which is the appropriate place for
minor problems like this.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20041119/af2e5a36/attachment-0001.bin
More information about the freebsd-ports
mailing list