From owner-svn-ports-all@freebsd.org  Wed Jul 11 17:13:01 2018
Return-Path: <owner-svn-ports-all@freebsd.org>
Delivered-To: svn-ports-all@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 30F62102ADAA
 for <svn-ports-all@mailman.ysv.freebsd.org>;
 Wed, 11 Jul 2018 17:13:01 +0000 (UTC) (envelope-from njm@njm.me.uk)
Received: from smtp002.apm-internet.net (smtp002.apm-internet.net
 [85.119.248.221])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id B93C07CA06
 for <svn-ports-all@freebsd.org>; Wed, 11 Jul 2018 17:13:00 +0000 (UTC)
 (envelope-from njm@njm.me.uk)
Received: (qmail 95244 invoked from network); 11 Jul 2018 17:06:17 -0000
X-APM-Authkey: 18389/1(18389/1) 2
Received: from unknown (HELO meld.njm.me.uk) (90.194.145.213)
 by smtp002.apm-internet.net with SMTP; 11 Jul 2018 17:06:17 -0000
Received: from triton.njm.me.uk (triton.njm.me.uk [192.168.144.133])
 by meld.njm.me.uk (8.15.2/8.15.2) with ESMTP id w6BH6Gh3002318;
 Wed, 11 Jul 2018 18:06:16 +0100 (BST) (envelope-from njm@njm.me.uk)
Received: from localhost (localhost [127.0.0.1])
 by triton.njm.me.uk (8.15.2/8.15.2) with ESMTP id w6BH6G4T079315;
 Wed, 11 Jul 2018 18:06:16 +0100 (BST) (envelope-from njm@njm.me.uk)
Date: Wed, 11 Jul 2018 18:06:16 +0100
From: "N.J. Mann" <njm@njm.me.uk>
To: Jung-uk Kim <jkim@FreeBSD.org>
cc: svn-ports-all@freebsd.org
Subject: Re: svn commit: r474467 - head/security/vuxml
Message-ID: <FA8EAA8E63D708A49EA6ED34@triton.njm.me.uk>
In-Reply-To: <201807111644.w6BGiQVJ014595@repo.freebsd.org>
References: <201807111644.w6BGiQVJ014595@repo.freebsd.org>
X-Mailer: Mulberry/4.0.8 (Linux/x86)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-BeenThere: svn-ports-all@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: SVN commit messages for the ports tree <svn-ports-all.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-ports-all>,
 <mailto:svn-ports-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-all/>
List-Post: <mailto:svn-ports-all@freebsd.org>
List-Help: <mailto:svn-ports-all-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-ports-all>,
 <mailto:svn-ports-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Jul 2018 17:13:01 -0000

Hi,

On Wednesday, July 11, 2018 16:44:26 +0000 Jung-uk Kim <jkim@FreeBSD.org> wrote:
> Author: jkim
> Date: Wed Jul 11 16:44:25 2018
> New Revision: 474467
> URL: https://svnweb.freebsd.org/changeset/ports/474467
> 
> Log:
>   Document the latest Flash Player vulnerabilities.
>   
>   https://helpx.adobe.com/security/products/flash-player/apsb18-24.html
> 
> Modified:
>   head/security/vuxml/vuln.xml
> 
> Modified: head/security/vuxml/vuln.xml
> ==============================================================================
> --- head/security/vuxml/vuln.xml	Wed Jul 11 16:36:45 2018	(r474466)
> +++ head/security/vuxml/vuln.xml	Wed Jul 11 16:44:25 2018	(r474467)
> @@ -58,6 +58,38 @@ Notes:
>    * Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
>  -->
>  <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
> +  <vuln vid="e78732b2-8528-11e8-9c42-6451062f0f7a">
> +    <topic>Flash Player -- multiple vulnerabilities</topic>
> +    <affects>
> +      <package>
> +	<name>linux-flashplayer</name>
> +	<range><lt>30.0.0.134</lt></range>
> +      </package>
> +    </affects>
> +    <description>
> +      <body xmlns="http://www.w3.org/1999/xhtml">
> +	<p>Adobe reports:</p>
> +	<blockquote cite="https://helpx.adobe.com/security/products/flash-player/apsb18-24.html">
> +	  <ul>
> +	    <li>This update resolves an out-of-boubds read vulnerability that

                                        ^^^^^^^^^^^^^
out-of-bounds


Best wishes,
Nick.
--