From owner-freebsd-security@FreeBSD.ORG  Fri Apr 11 16:39:30 2014
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 9169C761
 for <freebsd-security@freebsd.org>; Fri, 11 Apr 2014 16:39:30 +0000 (UTC)
Received: from mail-lb0-x236.google.com (mail-lb0-x236.google.com
 [IPv6:2a00:1450:4010:c04::236])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 18CAF116B
 for <freebsd-security@freebsd.org>; Fri, 11 Apr 2014 16:39:29 +0000 (UTC)
Received: by mail-lb0-f182.google.com with SMTP id n15so3786541lbi.27
 for <freebsd-security@freebsd.org>; Fri, 11 Apr 2014 09:39:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=googlemail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :cc:content-type;
 bh=pNUYG+XfUoJOnXJT5kgl5Xz4BkcWo8VzUf3w9tvqePQ=;
 b=PDVpJDSEmyQq9FKJsCQGnVigGdvywVqk2zHhNz74gIoF8yl13H5HlYTZYuplFoITgE
 jw8XoUTzKwahXZmwf+1c4bs2pOuHlcMadtvzhGkEcqRmxDBQX8+9XFQoPndRgZ8aYUIX
 pKXo9Gi7wR/mULL3Jq8ChsVHJYFrARY5FfrnZ1JcaQ6Dir0LovHOHSuS5OXyVWKE7mzd
 I7Shpob6S3kx8Ii9ncnilu1gRzEKBmzEHMPzaBw8Hv/gv+CzBQeJFaYFG/COn9GHArEv
 6fwSW014/vlUR+CbYThuW4svTJ9dQdrQTevxVunx428j1rNlHwxbXMktm9Dw8Ok3i0Fn
 tDNw==
MIME-Version: 1.0
X-Received: by 10.152.116.99 with SMTP id jv3mr17359419lab.19.1397234367912;
 Fri, 11 Apr 2014 09:39:27 -0700 (PDT)
Received: by 10.112.129.164 with HTTP; Fri, 11 Apr 2014 09:39:27 -0700 (PDT)
In-Reply-To: <DUB126-W77A08013F5277DB2C69816A9540@phx.gbl>
References: <DUB126-W5BC501CB4B718B4504D74A9540@phx.gbl>
 <alpine.DEB.2.00.1404111341450.13520@strudel.ki.iif.hu>
 <DUB126-W864CD6C2BD872D72C58222A9540@phx.gbl>
 <D0491050-C6C0-4124-966C-3153FB618532@icloud.com>
 <DUB126-W77A08013F5277DB2C69816A9540@phx.gbl>
Date: Fri, 11 Apr 2014 17:39:27 +0100
Message-ID: <CAFHbX1+0zpEQcm1apFFxNHsTKHmLuDZX3oNN+ewxRqLHSckZ_w@mail.gmail.com>
Subject: Re: CVE-2014-0160?
From: Tom Evans <tevans.uk@googlemail.com>
To: sbremal@hotmail.com
Content-Type: text/plain; charset=UTF-8
Cc: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>,
 Kimmo Paasiala <kpaasial@icloud.com>
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Apr 2014 16:39:30 -0000

On Fri, Apr 11, 2014 at 2:26 PM,  <sbremal@hotmail.com> wrote:
> I receive daily email from the host which normally shows port audits and vulnerabilities. However, I did not sport anything related to CVE-2014-0160 in this email. I expected the same info comes in this email about the base system as well.
>
> How do you normally inform about recent vulnerability in the base system? (I believe newspaper and TV is not the best way...)

If you use or administer FreeBSD you should subscribe to (and read
daily!) security@ and stable@.

Cheers

Tom