From owner-cvs-ports@FreeBSD.ORG Sat Jul 29 17:40:15 2006 Return-Path: X-Original-To: cvs-ports@freebsd.org Delivered-To: cvs-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C6AEE16A4E1; Sat, 29 Jul 2006 17:40:15 +0000 (UTC) (envelope-from remko@freebsd.org) Received: from caelis.elvandar.org (caelis.elvandar.org [217.148.169.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6363C43D5A; Sat, 29 Jul 2006 17:40:03 +0000 (GMT) (envelope-from remko@freebsd.org) Received: from localhost (caelis.elvandar.org [217.148.169.59]) by caelis.elvandar.org (Postfix) with ESMTP id A0C9A92FEB1; Sat, 29 Jul 2006 19:40:02 +0200 (CEST) Received: from caelis.elvandar.org ([217.148.169.59]) by localhost (caelis.elvandar.org [217.148.169.59]) (amavisd-new, port 10024) with ESMTP id 11009-09; Sat, 29 Jul 2006 19:40:02 +0200 (CEST) Message-ID: <44CB9D72.20005@FreeBSD.org> Date: Sat, 29 Jul 2006 19:40:02 +0200 From: Remko Lodder User-Agent: Thunderbird 1.5.0.5 (Macintosh/20060719) MIME-Version: 1.0 To: Sergey Matveychuk References: <200607291654.k6TGsY1C024356@repoman.freebsd.org> <44CB9972.1010505@FreeBSD.org> In-Reply-To: <44CB9972.1010505@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: by the elvandar.org maildomain Cc: cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org, ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/security/vuxml vuln.xml X-BeenThere: cvs-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: remko@FreeBSD.org List-Id: CVS commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Jul 2006 17:40:15 -0000 Sergey Matveychuk wrote: > Remko Lodder wrote: >> remko 2006-07-29 16:54:34 UTC >> >> FreeBSD ports repository (doc committer) >> >> Modified files: >> security/vuxml vuln.xml >> Log: >> Add a BID to the latest vuxml entry. >> Some minor changes to the markup of the entry. >> >> Revision Changes Path >> 1.1088 +17 -29 ports/security/vuxml/vuln.xml > > I think a correct ruby18* ports version is 1.8.4_8,1. > If I understand this correctly; you are talking about the vulnerable versions? I will be marking all 1.6 and 1.8 versions as vulnerable till the patches had been applied to our ports tree. I do not think it is safe to assume that some versions are not vulnerable while all sources mention it is only available in CVS. I will update the entry when the patches are there and we can exactly determine what version is not vulnerable. Thanks for the trigger Sergey! -- Kind regards, Remko Lodder ** remko@elvandar.org FreeBSD ** remko@FreeBSD.org /* Quis custodiet ipsos custodes */