From owner-cvs-ports@FreeBSD.ORG  Tue May 20 14:27:03 2003
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
Delivered-To: cvs-ports@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id EE85C37B401; Tue, 20 May 2003 14:27:02 -0700 (PDT)
Received: from dragon.nuxi.com (trang.nuxi.com [66.93.134.19])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id EC5D743F85; Tue, 20 May 2003 14:27:01 -0700 (PDT)
	(envelope-from obrien@NUXI.com)
Received: from dragon.nuxi.com (obrien@localhost [127.0.0.1])
	by dragon.nuxi.com (8.12.9/8.12.9) with ESMTP id h4KLQvTY071523;
	Tue, 20 May 2003 14:27:01 -0700 (PDT)
	(envelope-from obrien@dragon.nuxi.com)
Received: (from obrien@localhost)
	by dragon.nuxi.com (8.12.9/8.12.9/Submit) id h4KLQv4d071522;
	Tue, 20 May 2003 14:26:57 -0700 (PDT)
Date: Tue, 20 May 2003 14:26:57 -0700
From: "David O'Brien" <obrien@FreeBSD.org>
To: Oliver Lehmann <oliver@FreeBSD.org>
Message-ID: <20030520212657.GA71463@dragon.nuxi.com>
References: <200305202033.h4KKXiLP044664@repoman.freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200305202033.h4KKXiLP044664@repoman.freebsd.org>
User-Agent: Mutt/1.4i
X-Operating-System: FreeBSD 5.0-CURRENT
Organization: The NUXI BSD Group
X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3  90 76 5D 69 58 D9 98 7A
X-Pgp-Rsa-Keyid: 1024/34F9F9D5
cc: cvs-ports@FreeBSD.org
cc: cvs-all@FreeBSD.org
cc: ports-committers@FreeBSD.org
Subject: Re: cvs commit: ports/sysutils/cdrtools Makefile
	ports/sysutils/cdrtools/files patch-libscg::scsiopen.c
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: obrien@FreeBSD.org
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 20 May 2003 21:27:03 -0000

On Tue, May 20, 2003 at 01:33:44PM -0700, Oliver Lehmann wrote:
>   FreeBSD ports repository
>   Modified files:
>     sysutils/cdrtools    Makefile 
>   Added files:
>     sysutils/cdrtools/files patch-libscg::scsiopen.c 
>   Log:
>   Fix a securety issue which may cause a local root exploit
>   (if the cdrecord binary is suid 0).
>   For more information about this, feel free to take a look at
>   http://marc.theaimsgroup.com/?l=bugtraq&m=105285564307225&w=2

Why not just updated the port to use
ftp://ftp.berlios.de/pub/cdrecord/alpha/cdrtools-2.01a14.tar.gz