svn commit: r475053 - head/security/vuxml
Tijl Coosemans
tijl at FreeBSD.org
Sat Jul 21 08:55:29 UTC 2018
On Sat, 21 Jul 2018 08:51:37 +0000 (UTC) Tijl Coosemans <tijl at FreeBSD.org> wrote:
> Author: tijl
> Date: Sat Jul 21 08:51:37 2018
> New Revision: 475053
> URL: https://svnweb.freebsd.org/changeset/ports/475053
>
> Log:
> Remove linux expat packages from latest expat entry. Red Hat has marked
> these "will not fix" because of the low impact so there's no point in
> nagging users about this.
>
> https://access.redhat.com/security/cve/cve-2016-9063
> https://access.redhat.com/security/cve/cve-2017-9233
>
> Modified:
> head/security/vuxml/vuln.xml
>
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml Sat Jul 21 08:30:08 2018 (r475052)
> +++ head/security/vuxml/vuln.xml Sat Jul 21 08:51:37 2018 (r475053)
> @@ -756,14 +756,6 @@ ed by aCaB.</li>
> <name>libwww</name>
> <range><lt>5.4.2</lt></range>
> </package>
> - <package>
> - <name>linux-c6-expat</name>
> - <range><le>2.0.1_5</le></range>
> - </package>
> - <package>
> - <name>linux-c7-expat</name>
> - <range><le>2.1.0_2</le></range>
> - </package>
> </affects>
> <description>
> <body xmlns="http://www.w3.org/1999/xhtml">
It should be possible to mark cases like this wontfix so tools can ignore
them by default but still list them when requested.
More information about the svn-ports-head
mailing list