From owner-freebsd-ports-bugs@freebsd.org  Tue Sep  3 22:47:11 2019
Return-Path: <owner-freebsd-ports-bugs@freebsd.org>
Delivered-To: freebsd-ports-bugs@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6CFA4DBBE4
 for <freebsd-ports-bugs@mailman.nyi.freebsd.org>;
 Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::50:13])
 by mx1.freebsd.org (Postfix) with ESMTP id 46NMXH2JFYz4VHy
 for <freebsd-ports-bugs@freebsd.org>; Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: by mailman.nyi.freebsd.org (Postfix)
 id 4CF30DBBE3; Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
Delivered-To: ports-bugs@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4CBA1DBBE2
 for <ports-bugs@mailman.nyi.freebsd.org>; Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org
 [IPv6:2610:1c1:1:606c::19:3])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "mxrelay.nyi.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 46NMXH1N9Rz4VHx
 for <ports-bugs@FreeBSD.org>; Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2610:1c1:1:606c::50:1d])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 132B3A132
 for <ports-bugs@FreeBSD.org>; Tue,  3 Sep 2019 22:47:11 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
 by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id x83MlA54050887
 for <ports-bugs@FreeBSD.org>; Tue, 3 Sep 2019 22:47:10 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
Received: (from www@localhost)
 by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id x83MlA3D050886
 for ports-bugs@FreeBSD.org; Tue, 3 Sep 2019 22:47:10 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: www set sender to
 bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: ports-bugs@FreeBSD.org
Subject: [Bug 240322] [PATCH] security/vuxml add FreeBSD Security Advisories
 in to vuln.xml
Date: Tue, 03 Sep 2019 22:47:10 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: new
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: 
X-Bugzilla-Severity: Affects Many People
X-Bugzilla-Who: 000.fbsd@quip.cz
X-Bugzilla-Status: New
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: ports-secteam@FreeBSD.org
X-Bugzilla-Flags: maintainer-feedback?
X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform
 op_sys bug_status bug_severity priority component assigned_to reporter
 flagtypes.name attachments.created
Message-ID: <bug-240322-7788@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs/>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Sep 2019 22:47:11 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D240322

            Bug ID: 240322
           Summary: [PATCH] security/vuxml add FreeBSD Security Advisories
                    in to vuln.xml
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: ports-secteam@FreeBSD.org
          Reporter: 000.fbsd@quip.cz
             Flags: maintainer-feedback?(ports-secteam@FreeBSD.org)
          Assignee: ports-secteam@FreeBSD.org

Created attachment 207171
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D207171&action=
=3Dedit
FreeBSD SA entries

As noted on https://vuxml.freebsd.org/freebsd/=20
"Security issues that affect the FreeBSD operating system or applications in
the FreeBSD Ports Collection are documented using the Vulnerabilities and
Exposures Markup Language (VuXML)."

But they are not. Security issues in base system a.k.a Security Advisories =
are
not being added by Security Team.

In my not so humble opinion they should be added in to vuln.xml at the same
time as they are published on web
https://www.freebsd.org/security/advisories.html

Anyway I created patch to add last entries from August 2019.

Please commit it soon so other users can use vuxml entries to check theirs
systems by security/base-audit

--=20
You are receiving this mail because:
You are the assignee for the bug.=