From owner-freebsd-ports@FreeBSD.ORG  Mon Mar  6 12:16:26 2006
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
X-Original-To: freebsd-ports@freebsd.org
Delivered-To: freebsd-ports@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 53B3F16A420
	for <freebsd-ports@freebsd.org>; Mon,  6 Mar 2006 12:16:26 +0000 (GMT)
	(envelope-from marius@newtrinity.zeist.de)
Received: from newtrinity.zeist.de (newtrinity.zeist.de [217.24.217.8])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B400843D46
	for <freebsd-ports@freebsd.org>; Mon,  6 Mar 2006 12:16:25 +0000 (GMT)
	(envelope-from marius@newtrinity.zeist.de)
Received: from newtrinity.zeist.de (localhost [127.0.0.1])
	by newtrinity.zeist.de (8.12.11/8.12.11/ZEIST.DE) with ESMTP id
	k26CGMdk088225; Mon, 6 Mar 2006 13:16:22 +0100 (CET)
	(envelope-from marius@newtrinity.zeist.de)
Received: (from marius@localhost)
	by newtrinity.zeist.de (8.12.11/8.12.10/Submit) id k26CGGF6088224;
	Mon, 6 Mar 2006 13:16:16 +0100 (CET) (envelope-from marius)
Date: Mon, 6 Mar 2006 13:16:16 +0100
From: Marius Strobl <marius@alchemy.franken.de>
To: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua>
Message-ID: <20060306131616.A88082@newtrinity.zeist.de>
References: <20060306103204.C51066@atlantis.atlantis.dp.ua>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5.1i
In-Reply-To: <20060306103204.C51066@atlantis.atlantis.dp.ua>;
	from dmitry@atlantis.dp.ua on Mon, Mar 06, 2006 at 10:43:33AM
	+0200
X-AntiVirus-modified: yes
X-AntiVirus: checked by AntiVir Milter (version: 1.1.2-1; AVE: 6.33.1.3;
	VDF: 6.33.1.67; host: newtrinity.zeist.de)
Cc: freebsd-ports@freebsd.org
Subject: Re: ssh2-nox11 vs vid=594ad3c5-a39b-11da-926c-0800209adf0e
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Mar 2006 12:16:26 -0000

On Mon, Mar 06, 2006 at 10:43:33AM +0200, Dmitry Pryanishnikov wrote:
> 
> Hello!
> 
>   I've noticed the freshly-added entry in vuln.xml regarding SSH.COM SFTP 
> server vulnerability (vid=594ad3c5-a39b-11da-926c-0800209adf0e) only by
> inspecting cvs-ports. Portaudit doesn't show my ssh2-nox11-3.2.9.1_3
> packages as being vulnerable. Isn't this an overlook in vuln.xml entry?

Yes, is. I've just added the ssh2-nox11 slave port to the list of
affected ports. Thanks for the pointer.

Marius

-- 
This mail was scanned by AntiVir Milter.
This product is licensed for non-commercial use.
See www.antivir.de for details.