www/dotproject out of date and vulnerable
Simon L. Nielsen
simon at FreeBSD.org
Tue Sep 19 12:34:05 PDT 2006
On 2006.09.19 12:23:55 -0700, Fred Cox wrote:
> Also, where do I go to get www/dotproject-2.0.2 marked
> as vulnerable in the portaudit database?
Your mail to secteam@ slipped through the cracks. Sorry about that.
To mark something vulnerable in portaudit it needs to be added to the
VuXML document. See
http://www.freebsd.org/doc/en_US.ISO8859-1/books/porters-handbook/security-notify.html
for information on doing this. We (FreeBSD Security Team) try to
document as much as possible in VuXML, but unfortunately there are
currently simply too make new issues coming in for us to keep up in as
timely a fashion as we would like.
--
Simon L. Nielsen
FreeBSD Deputy Security Officer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20060919/3b2f007b/attachment.pgp
More information about the freebsd-ports
mailing list