svn commit: r336101 - head/security/vuxml

Remko Lodder remko at FreeBSD.org
Wed Dec 11 20:56:08 UTC 2013 

On 10 Dec 2013, at 20:45, Sunpoet Po-Chuan Hsieh <sunpoet at FreeBSD.org> wrote:

> Author: sunpoet
> Date: Tue Dec 10 19:45:12 2013
> New Revision: 336101
> URL: http://svnweb.freebsd.org/changeset/ports/336101
> 
> Log:
>  - Group affected packages
>  - Sort CVE
>  - Fix indent
> 
>  Notified by:	remko

Thanks a lot!

> 
> Modified:
>  head/security/vuxml/vuln.xml
> 
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml	Tue Dec 10 19:42:51 2013	(r336100)
> +++ head/security/vuxml/vuln.xml	Tue Dec 10 19:45:12 2013	(r336101)
> @@ -102,44 +102,20 @@ Note:  Please add new entries to the beg
>     <affects>
>       <package>
> 	<name>rubygem-actionmailer</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> 	<name>rubygem-actionpack</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> -	<name>rubygem-actionpack4</name>
> -	<range><lt>4.0.2</lt></range>
> -      </package>
> -      <package>
> 	<name>rubygem-activemodel</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> 	<name>rubygem-activerecord</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> 	<name>rubygem-activeresource</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> 	<name>rubygem-activesupport</name>
> +	<name>rubygem-rails</name>
> +	<name>rubygem-railties</name>
> 	<range><lt>3.2.16</lt></range>
>       </package>
>       <package>
> +	<name>rubygem-actionpack4</name>
> 	<name>rubygem-activesupport4</name>
> 	<range><lt>4.0.2</lt></range>
>       </package>
> -      <package>
> -	<name>rubygem-rails</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
> -      <package>
> -	<name>rubygem-railties</name>
> -	<range><lt>3.2.16</lt></range>
> -      </package>
>     </affects>
>     <description>
>       <body xmlns="http://www.w3.org/1999/xhtml">
> @@ -147,33 +123,33 @@ Note:  Please add new entries to the beg
> 	<blockquote cite="http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/">
> 	  <p>Rails 3.2.16 and 4.0.2 have been released! These two
> 	    releases contain important security fixes, so please upgrade
> -		as soon as possible! In order to make upgrading as smooth as
> -		possible, we've only included commits directly related to
> -		each security issue.</p>
> +	    as soon as possible! In order to make upgrading as smooth as
> +	    possible, we've only included commits directly related to
> +	    each security issue.</p>
> 	  <p>The security fixes in 3.2.16 are:</p>
> 	  <ul>
> -	    <li>CVE-2013-6417</li>
> 	    <li>CVE-2013-4491</li>
> -	    <li>CVE-2013-6415</li>
> 	    <li>CVE-2013-6414</li>
> +	    <li>CVE-2013-6415</li>
> +	    <li>CVE-2013-6417</li>
> 	  </ul>
> 	  <p>The security fixes in 4.0.2 are:</p>
> 	  <ul>
> -	    <li>CVE-2013-6417</li>
> 	    <li>CVE-2013-4491</li>
> -	    <li>CVE-2013-6415</li>
> 	    <li>CVE-2013-6414</li>
> +	    <li>CVE-2013-6415</li>
> 	    <li>CVE-2013-6416</li>
> +	    <li>CVE-2013-6417</li>
> 	  </ul>
> 	</blockquote>
>       </body>
>     </description>
>     <references>
> -	  <cvename>CVE-2013-6417</cvename>
> -	  <cvename>CVE-2013-4491</cvename>
> -	  <cvename>CVE-2013-6415</cvename>
> -	  <cvename>CVE-2013-6414</cvename>
> -	  <cvename>CVE-2013-6416</cvename>
> +      <cvename>CVE-2013-4491</cvename>
> +      <cvename>CVE-2013-6414</cvename>
> +      <cvename>CVE-2013-6415</cvename>
> +      <cvename>CVE-2013-6416</cvename>
> +      <cvename>CVE-2013-6417</cvename>
>       <url>http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/</url>
>     </references>
>     <dates>
> _______________________________________________
> svn-ports-all at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/svn-ports-all
> To unsubscribe, send any mail to "svn-ports-all-unsubscribe at freebsd.org"

-- 

/"\   Best regards,                      | remko at FreeBSD.org
\ /   Remko Lodder                       | remko at EFnet
 X    http://www.evilcoder.org/          |
/ \   ASCII Ribbon Campaign              | Against HTML Mail and News

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freebsd.org/pipermail/svn-ports-head/attachments/20131211/ed617f97/attachment.sig>

More information about the svn-ports-head mailing list