From owner-freebsd-ports@FreeBSD.ORG  Mon Dec 27 20:21:06 2004
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: freebsd-ports@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3F92816A4CE
	for <freebsd-ports@freebsd.org>; Mon, 27 Dec 2004 20:21:06 +0000 (GMT)
Received: from 82-168-140-74-bbxl.xdsl.tiscali.nl
	(82-168-140-74-bbxl.xdsl.tiscali.nl [82.168.140.74])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7849D43D4C
	for <freebsd-ports@freebsd.org>;
	Mon, 27 Dec 2004 20:21:05 +0000 (GMT)
	(envelope-from rene@82-168-140-74-bbxl.xdsl.tiscali.nl)
Received: from 82-168-140-74-bbxl.xdsl.tiscali.nl (localhost [127.0.0.1])
	iBRKMWlV015772	for <freebsd-ports@freebsd.org>;
	Mon, 27 Dec 2004 21:22:32 +0100 (CET)
	(envelope-from rene@82-168-140-74-bbxl.xdsl.tiscali.nl)
Received: (from rene@localhost)iBRKMWg1015771
	for freebsd-ports@freebsd.org; Mon, 27 Dec 2004 21:22:32 +0100 (CET)
	(envelope-from rene)
Date: Mon, 27 Dec 2004 21:22:31 +0100
From: Rene Ladan <r.c.ladan@student.tue.nl>
To: freebsd-ports@freebsd.org
Message-ID: <20041227202231.GA15731@82-168-140-74-bbxl.xdsl.tiscali.nl>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="LZvS9be/3tNcYl/X"
Content-Disposition: inline
User-Agent: Mutt/1.4.2.1i
Subject: open-motif-2.2.3 and X.Org 6.8.1 security
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Dec 2004 20:21:06 -0000


--LZvS9be/3tNcYl/X
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi,

I still get this one in my daily security check:

----- Forwarded message from Charlie Root <root@host>

Date: Mon, 27 Dec 2004 03:05:12 +0100 (CET)

[..snip..]

Checking for a current audit database:

Downloading fresh database.
auditfile.tbz                                           16 kB   29 kBps
New database installed.
Database created: Mon Dec 27 02:40:22 CET 2004

Checking for packages with security vulnerabilities:

Affected package: open-motif-2.2.3
Type of problem: xpm -- image decoding vulnerabilities.
Reference: <http://www.FreeBSD.org/ports/portaudit/ef253f8b-0727-11d9-b45d-=
000c41e2cdad.html>

[..snip..]

----- End forwarded message -----

With X.Org 6.8.1 installed, is this still a vulnerability?

Regards,
Rene

--=20
"It won't fit on the line."
		-- me, 2001

--LZvS9be/3tNcYl/X
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (FreeBSD)

iD8DBQFB0G8Hvz70qa4zXcwRAgl6AJ9FR3yjvOFitAvxHj4hdVbNvuG6WgCdFz6C
TRoOTjyT7Nlbh6JzzX5OzKc=
=YeGg
-----END PGP SIGNATURE-----

--LZvS9be/3tNcYl/X--