Date: Thu, 4 Apr 2024 12:42:20 +0200 From: Emmanuel Vadot <manu@bidouilliste.com> To: Jan Beich <jbeich@FreeBSD.org> Cc: Emmanuel Vadot <manu@FreeBSD.org>, ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: Re: git: 9661a37b4dff - main - security/vuxml: Document recent xorg-server and xwayland vulnerabilities Message-ID: <20240404124220.3a2e694ff4db5ffe6861c08a@bidouilliste.com> In-Reply-To: <zfu9-pha7-wny@FreeBSD.org> References: <202404040628.4346SlPx033968@gitrepo.freebsd.org> <zfu9-pha7-wny@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 04 Apr 2024 12:13:20 +0200 Jan Beich <jbeich@FreeBSD.org> wrote: > Emmanuel Vadot <manu@FreeBSD.org> writes: > > > + <references> > > + <cvename>CVE-2024-31080</cvename> > > + <cvename>CVE-2024-31081</cvename> > > + <cvename>CVE-2024-31083</cvename> > > + <url>https://lists.x.org/archives/xorg-announce/2024-April/003497.html</url>; > > + </references> > > Why CVE-2024-31082 is omitted in <references> and <description>? Because quoting: This function is only found in the Xquartz server for MacOS systems, and not in Xwayland, Xorg, or any other X servers. I don't see the value in documenting a CVE that doesn't affect us. -- Emmanuel Vadot <manu@bidouilliste.com> <manu@freebsd.org>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20240404124220.3a2e694ff4db5ffe6861c08a>