svn commit: r304727 - in head/editors/emacs23: . files
Eitan Adler
eadler at freebsd.org
Sun Sep 23 12:19:58 UTC 2012
On 23 September 2012 00:35, Ashish SHUKLA <ashish at freebsd.org> wrote:
> On Sun, 23 Sep 2012 04:20:59 +0000, Alexey Dokuchaev <danfe at FreeBSD.org> said:
>> On Sun, Sep 23, 2012 at 12:31:34AM +0000, Ashish SHUKLA wrote:
>>> New Revision: 304727
>>> URL: http://svn.freebsd.org/changeset/ports/304727
>>>
>>> Log:
>>> - Fix remote code execution vulnerability
>>> - Bump PORTEPOCH
>
>> Why it was bumped?
>
> Because as per VuXML report[1], the versions affected by vulnerability are
> <24.2, and AFAIK, the only way to override this for Emacs 23.x is by bumping
> PORTEPOCH.
The VuXML must be changed to include a <gt> then and the PORTEPOCH
doesn't override it.
People with an older emacs installed will still get the warning. VuXML
are used for *installed* ports,
not just what's in the ports tree.
--
Eitan Adler
Source & Ports committer
X11, Bugbusting teams
More information about the svn-ports-all
mailing list