www/dotproject out of date and vulnerable
Fred Cox
sailorfred at yahoo.com
Mon Sep 18 19:00:05 PDT 2006
www/dotproject is still 2.0.2, even though 2.0.4 came
out in June to address an XSS vulnerability. See
http://www.dotproject.net/ for details.
I've sent mail to the maintainer and the contact for
portaudit, with no response in over 2 weeks and 1 week
respectively. Portaudit does not report any problem
with dotproject.
What's the next step?
Fred Cox
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the freebsd-ports
mailing list