From owner-svn-ports-all@freebsd.org  Tue Jan 30 08:57:02 2018
Return-Path: <owner-svn-ports-all@freebsd.org>
Delivered-To: svn-ports-all@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id B2647EE3218;
 Tue, 30 Jan 2018 08:57:02 +0000 (UTC)
 (envelope-from freebsd@toco-domains.de)
Received: from toco-domains.de (mail.toco-domains.de
 [IPv6:2a01:4f8:150:50a5::6])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 55C9A82906;
 Tue, 30 Jan 2018 08:57:02 +0000 (UTC)
 (envelope-from freebsd@toco-domains.de)
Received: from [0.0.0.0] (mail.toco-domains.de [IPv6:2a01:4f8:150:50a5::6])
 by toco-domains.de (Postfix) with ESMTPA id C1BE91AAF11D;
 Tue, 30 Jan 2018 09:56:58 +0100 (CET)
Subject: Re: svn commit: r460325 - head/security/vuxml
To: Niclas Zeising <zeising@FreeBSD.org>, ports-committers@freebsd.org,
 svn-ports-all@freebsd.org, svn-ports-head@freebsd.org
References: <201801291917.w0TJHnPS028123@repo.freebsd.org>
From: Torsten Zuehlsdorff <freebsd@toco-domains.de>
Message-ID: <f6842f13-a1ea-6282-6348-84ee65c8e6c2@toco-domains.de>
Date: Tue, 30 Jan 2018 09:56:57 +0100
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101
 Thunderbird/52.5.2
MIME-Version: 1.0
In-Reply-To: <201801291917.w0TJHnPS028123@repo.freebsd.org>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-BeenThere: svn-ports-all@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: SVN commit messages for the ports tree <svn-ports-all.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-ports-all>,
 <mailto:svn-ports-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-all/>
List-Post: <mailto:svn-ports-all@freebsd.org>
List-Help: <mailto:svn-ports-all-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-ports-all>,
 <mailto:svn-ports-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jan 2018 08:57:02 -0000



On 29.01.2018 20:17, Niclas Zeising wrote:
> Author: zeising
> Date: Mon Jan 29 19:17:49 2018
> New Revision: 460325
> URL: https://svnweb.freebsd.org/changeset/ports/460325
> 
> Log:
>    FIx range for dovecot
>    
>    2.2.33.2_2 is vulnerable.
> 
> Modified:
>    head/security/vuxml/vuln.xml
> 
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml	Mon Jan 29 19:16:12 2018	(r460324)
> +++ head/security/vuxml/vuln.xml	Mon Jan 29 19:17:49 2018	(r460325)
> @@ -93,7 +93,7 @@ Notes:
>       <affects>
>         <package>
>   	<name>dovecot</name>
> -	<range><gt>2.0</gt><lt>2.2.33</lt></range>
> +	<range><gt>2.0</gt><le>2.2.33.2_2</le></range>
>   	<range><ge>2.3</ge><le>2.3.0</le></range>
>         </package>
>       </affects>

Doesn't this change need a <modified> for the entry?

Greeting,
Torsten