From owner-svn-ports-head@freebsd.org Fri May 4 14:47:28 2018 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 59FBBFAF3DE; Fri, 4 May 2018 14:47:28 +0000 (UTC) (envelope-from adridg@freebsd.org) Received: from smtp05.mail.online.nl (smtp05.mail.online.nl [194.134.25.75]) by mx1.freebsd.org (Postfix) with ESMTP id F13866B393; Fri, 4 May 2018 14:47:27 +0000 (UTC) (envelope-from adridg@freebsd.org) Received: from beastie.bionicmutton.org (s55969a9e.adsl.online.nl [85.150.154.158]) by smtp05.mail.online.nl (Postfix) with ESMTP id 4E86620005D; Fri, 4 May 2018 16:40:00 +0200 (CEST) From: Adriaan de Groot To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: Re: svn commit: r469031 - head/security/vuxml Date: Fri, 04 May 2018 16:39:55 +0200 Message-ID: <1646308.MrA3AYOr8r@beastie.bionicmutton.org> Organization: FreeBSD In-Reply-To: <201805041428.w44ESwIQ040062@repo.freebsd.org> References: <201805041428.w44ESwIQ040062@repo.freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1691817.5LnDzjkzzz"; micalg="pgp-sha256"; protocol="application/pgp-signature" X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.25 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 May 2018 14:47:28 -0000 --nextPart1691817.5LnDzjkzzz Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="us-ascii" On Friday, 4 May 2018 16:28:58 CEST you wrote: > Author: adridg > Date: Fri May 4 14:28:58 2018 > New Revision: 469031 > URL: https://svnweb.freebsd.org/changeset/ports/469031 > > Log: > Security notice regarding kwallet-pam (KDE Plasma5). > > https://www.kde.org/info/security/advisory-20180503-1.txt > > The port is not built by default through the regular KDE packages, > and has been in the ports tree only a week; the impact is expected > to be low. > > Approved by: tcberner (mentor, implicit) Should have also had: Security: CVE-2018-10380 (which is mentioned in the linked advisory, and in the followup-commit to the affected port). [ade] --nextPart1691817.5LnDzjkzzz Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part. Content-Transfer-Encoding: 7Bit -----BEGIN PGP SIGNATURE----- iHUEABEIAB0WIQTVFBoRsP760fy+Jisy7lRaPghTTwUCWuxwuwAKCRAy7lRaPghT T53SAP9wdluv7SpCAcDfGijse6Pyw8+OWjom5yis98n4BnEbQAEA5KhHz8c8ZThC bdsqHxuD06CqcTcwR7wpdVqVt0TRvBo= =7AO4 -----END PGP SIGNATURE----- --nextPart1691817.5LnDzjkzzz--