From nobody Tue Jul 2 16:44:58 2024 X-Original-To: dev-commits-ports-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WD80D0PYbz5NjbM; Tue, 02 Jul 2024 16:45:00 +0000 (UTC) (envelope-from leres@freebsd.org) Received: from smtp.freebsd.org (smtp.freebsd.org [96.47.72.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "smtp.freebsd.org", Issuer "R10" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WD80C6dwpz4FFR; Tue, 2 Jul 2024 16:44:59 +0000 (UTC) (envelope-from leres@freebsd.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1719938699; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=aewjEcJAfyHAmEu7Kj+MCKJwyCatCYNVaTcCf27Hv1A=; b=SOOQ9BxX7cMzDVpoTN4N+sWWJNiD8zD1V9+EZPWU2gNXqPm+k3oZb6zHqNhgQZCKgf5cq8 TxNxeFCAeYCdfz273XNR/jTArAPGCroJu86wRbp/jAY766I+IieJZUtobXZxh4vp9xwURZ ANMMdKHRTI/foOkHPTwqttqn0jYCsu1gl9Zt3i09kKBeVJaeaE1rIwbzYkkZDPponweQQx VZTwk3ve3pxT105WM+ycmCYhqziodXl9iDp2YbfJVP1EBfi6sHwd4r+X9ZedPIAlbym4ts fPu5lg9J1gyvdil1jctZ3dArYO9IZAScMylK4m+Tg4VaQdzTWc65zX+N3dYEfQ== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1719938699; a=rsa-sha256; cv=none; b=GXKxwiMSVJEwD+dEvCq6+wYV7OCn+RacpkQBx/tVrar1CXXW3E8KHXxD/qa9Q1oBRUAoYu KBpHKR4c9ze353dVpvi9LtG6Hc2t4rxv25W4X3dfYJTlQeiQoIR8AQEFAu1mUzGR4kVNyC rGdkFyMWyC6rxzEnaDbnAmCAYqM61AyW48lOfjVcgate5VzRoejzXuB83z9UN+J4EBZPjn eAlJ0HxH/38inpBQzAu2xsWQgayl0SvUNDWGgdwtf6pp16dQuLXLylpmv4ItMZrxLlMM7G BzxbmGj27NgApSpvQMR6YX/PZZwlrGcjikiwTFoHIOgJCshZwD/+0r4qpBOe1A== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1719938699; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=aewjEcJAfyHAmEu7Kj+MCKJwyCatCYNVaTcCf27Hv1A=; b=O9naHQhIQ7jLNvPKGCEkhYEm3eT1zHYYNy5lFdTuLFCWamg8hy3y5QJKD99QWrRTyOJxyr ZrdcRr02BrBgO5mbVdSSe7DMkzDoQmxtp9sG5ZIzWbhdI9wj4NfnzAJiTuRtLZF42Ki9Dn Ci0S4Dme4W2xdshQrLFpwA/P4ZdHjeMmxfPLcKX8hGyPTkB6S9RCEMXK6StqJ7RdzMf0U/ sWM1cOngjoqmD6dZt5K3DW5SIDb4qCqjUa84Mm3teJu1CA0sNFHnZLmk12ooOwDH2ryoQa HJZe9XDxQbR/BOw4SFDOT+dElixjULYH9vI5My6HsQfN0GPbbcnIgZuParTUtQ== Received: from [IPV6:fd:1965::2] (unknown [IPv6:2600:1700:ab1b:6800:2e0:edff:fece:8f27]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) (Authenticated sender: leres) by smtp.freebsd.org (Postfix) with ESMTPSA id 4WD80C3Kn7z189f; Tue, 2 Jul 2024 16:44:59 +0000 (UTC) (envelope-from leres@freebsd.org) Message-ID: <9275bc57-cbc5-423f-aa69-6876cc7671ff@freebsd.org> Date: Tue, 2 Jul 2024 09:44:58 -0700 List-Id: Commits to the main branch of the FreeBSD ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: dev-commits-ports-main@freebsd.org Sender: owner-dev-commits-ports-main@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: git: b4f09ace0fb2 - main - security/vuxml: Fix range for OpenSSH vuln. To: Bryan Drewery , ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org References: <202407021613.462GDtC2009246@gitrepo.freebsd.org> From: Craig Leres Content-Language: en-US In-Reply-To: <202407021613.462GDtC2009246@gitrepo.freebsd.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit On 7/2/24 09:13, Bryan Drewery wrote: > The branch main has been updated by bdrewery: > > URL: https://cgit.FreeBSD.org/ports/commit/?id=b4f09ace0fb2a43504a5d63501ddf3503a67da76 > > commit b4f09ace0fb2a43504a5d63501ddf3503a67da76 > Author: Bryan Drewery > AuthorDate: 2024-07-02 16:13:40 +0000 > Commit: Bryan Drewery > CommitDate: 2024-07-02 16:13:51 +0000 > > security/vuxml: Fix range for OpenSSH vuln. > > Security: f1a00122-3797-11ef-b611-84a93843eb75 > --- > security/vuxml/vuln/2024.xml | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml > index cb0b4fc0ffb3..373d4938fd97 100644 > --- a/security/vuxml/vuln/2024.xml > +++ b/security/vuxml/vuln/2024.xml > @@ -73,7 +73,7 @@ > > > openssh-portable > - 9.7_1,1 > + 9.7_2,1 > > > I believe this is still wrong, it should be 9.7.p1_2,1 (my systems still report as vulnerable after updating). Craig fun 52 # pkg info | fgrep openssh openssh-portable-9.7.p1_2,1 The portable version of OpenBSD's OpenSSH fun 53 # pkg audit -qF -f /var/db/pkg/vuln.xml openssh-portable-9.7.p1_2,1