From owner-freebsd-emulation@FreeBSD.ORG  Thu May 29 22:50:02 2014
Return-Path: <owner-freebsd-emulation@FreeBSD.ORG>
Delivered-To: freebsd-emulation@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id AA3C5DF2
 for <freebsd-emulation@freebsd.org>; Thu, 29 May 2014 22:50:02 +0000 (UTC)
Received: from mho-01-ewr.mailhop.org (mho-03-ewr.mailhop.org [204.13.248.66])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 81DB920A5
 for <freebsd-emulation@freebsd.org>; Thu, 29 May 2014 22:50:02 +0000 (UTC)
Received: from [149.142.83.254] (helo=localhost)
 by mho-01-ewr.mailhop.org with esmtpsa (TLSv1:AES256-SHA:256)
 (Exim 4.72) (envelope-from <aorchid@mac.com>)
 id 1Wq996-0005Cf-FH; Thu, 29 May 2014 22:50:00 +0000
X-Mail-Handler: Dyn Standard SMTP by Dyn
X-Originating-IP: 149.142.83.254
X-Report-Abuse-To: abuse@dyndns.com (see
 http://www.dyndns.com/services/sendlabs/outbound_abuse.html for abuse
 reporting information)
X-MHO-User: U2FsdGVkX198/EcoAyXD6I6t4+M0LDUl
From: Aric Gregson <aorchid@mac.com>
To: Carlos Jacobo Puga Medina <cjpugmed@gmail.com>
Subject: Re: linux-f10-* Multiple Vulnerabilities per Portaudit
Organization: http://xochitlfilms.com
References: <CAHHLbRPr_y3QYj3Z5az8T=+v2ho63TrnA7qpGonoh4GhQrT67w@mail.gmail.com>
Date: Thu, 29 May 2014 15:49:59 -0700
In-Reply-To: <CAHHLbRPr_y3QYj3Z5az8T=+v2ho63TrnA7qpGonoh4GhQrT67w@mail.gmail.com>
 (Carlos Jacobo Puga Medina's message of "Thu, 29 May 2014 20:44:26
 +0200")
Message-ID: <86sins2oa0.fsf@freeenv.ad.medctr.ucla.edu>
User-Agent: Gnus/5.130011 (Ma Gnus v0.11) Emacs/24.4.50 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain
Cc: freebsd-emulation@freebsd.org
X-BeenThere: freebsd-emulation@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: Development of Emulators of other operating systems
 <freebsd-emulation.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-emulation>, 
 <mailto:freebsd-emulation-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-emulation/>
List-Post: <mailto:freebsd-emulation@freebsd.org>
List-Help: <mailto:freebsd-emulation-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-emulation>, 
 <mailto:freebsd-emulation-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 29 May 2014 22:50:02 -0000

Carlos Jacobo Puga Medina <cjpugmed@gmail.com> writes:

> Hi,
>
> Apply the following patch to update linux-c6-flashplugin11 to
> 11.2r202.359

Thank you very much for the patch! It indeed solved the flash issue, but
there seem to be so many vulnerabilities within the f10 collection that
this may never fly. It died with another vulnerability in -f10-png:

linux-f10-png-1.2.37_2 is vulnerable:
png -- memory corruption/possible remote code execution
CVE: CVE-2011-3048

Thanks, Aric

ps also wondering if this would be the correct list to ask about
citrix_ica issues. It will not run. Seems like some sort of permission
error. I posted to ports@freebsd.org as suggested. 

-- 
    ~O
    /\_,
###-\  |_
(*) / (*)