Date: Fri, 13 Sep 2002 09:34:24 -0500 From: "Jacques A. Vidrine" <nectar@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: ports/mail/qmailadmin Makefile Message-ID: <20020913143424.GB56353@madman.nectar.cc> In-Reply-To: <20020913135407.GC384@straylight.oblivion.bg> References: <200209111859.g8BIxuxs074949@freefall.freebsd.org> <20020913135407.GC384@straylight.oblivion.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Sep 13, 2002 at 04:54:07PM +0300, Peter Pentchev wrote: > On Wed, Sep 11, 2002 at 11:59:56AM -0700, Jacques Vidrine wrote: > > nectar 2002/09/11 11:59:56 PDT > > > > Modified files: > > mail/qmailadmin Makefile > > Log: > > Setuid binary is exploitable. > > http://security-archive.merton.ox.ac.uk/bugtraq-200208/0117.html > > Er.. I believe that the security flaw that this refers to was fixed > prior to the release of qmailadmin-1.0.6, as stated in my message with > the commit that updated the port to 1.0.6; actually, that was my primary > reason for the port update :) > > I've removed the FORBIDDEN line now. Sorry about that ... I must have unwittingly been looking at an out-of-date repository, and then made the actual commit on Freefall. Or something. :-) Cheers, -- Jacques A. Vidrine <nectar@celabo.org> http://www.celabo.org/ NTT/Verio SME . FreeBSD UNIX . Heimdal Kerberos jvidrine@verio.net . nectar@FreeBSD.org . nectar@kth.se To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020913143424.GB56353>