Date: Thu, 20 Nov 2008 01:04:31 +0300 From: Eygene Ryabinkin <rea-fbsd@codelabs.ru> To: bug-followup@freebsd.org Cc: freebsd-security@freebsd.org, tabthorpe@freebsd.org Subject: Re: ports/128998: [vuxml] document vulnerabilities in textproc/libxml2 Message-ID: <geU/TcBy7FzPXe7ySlH7OLe92aM@iXA9ZWPrtc2I2BMzBXoToMd7YdQ> In-Reply-To: <20081119204101.5FBD7F181F@phoenix.codelabs.ru> References: <20081119204101.5FBD7F181F@phoenix.codelabs.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --]
Wed, Nov 19, 2008 at 11:41:01PM +0300, Eygene Ryabinkin wrote:
> The fix for the CVE-2008-4225 and CVE-2008-4226 was commited to the
> textproc/libxml2 just an hour ago, but vulnerabilities seem to be left
> undocumented. At least I was not able to find the corresponding PR and
> reporting channels are not clear from the commit comment.
The entry was added shortly after this PR by tabthorpe@, so I think
that this PR can be closed now.
--
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook
{_.-``-' {_/ #
[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (FreeBSD)
iEYEARECAAYFAkkkjW8ACgkQthUKNsbL7YiaWgCfZG6GxIlzLc2eJmTVlRAlSINr
5TUAn2/sY5m9IGybwp2ymuhsrzUxLYjV
=DGME
-----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?geU/TcBy7FzPXe7ySlH7OLe92aM>