Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 25 Jun 2026 16:37:47 +0000
From:      bugzilla-noreply@freebsd.org
To:        bugs@FreeBSD.org
Subject:   [Bug 281443] [Security] some unpatched code is in your repo
Message-ID:  <bug-281443-227-oxZIKanTXw@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-281443-227@https.bugs.freebsd.org/bugzilla/>

index | next in thread | previous in thread | raw e-mail

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=281443

Dag-Erling Smørgrav <des@FreeBSD.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |des@FreeBSD.org
         Resolution|---                         |Not A Bug
             Status|New                         |Closed

--- Comment #3 from Dag-Erling Smørgrav <des@FreeBSD.org> ---
#2 was in tcpdump and was fixed in 4.99.4.  The most recent releases that had
4.99.3 or older were 13.1 and 12.4.  Both of these expired more than a year
before this ticket was opened.

#5 was in apr-util which was removed from main before 14.0 but was still
present in 13.5, although we almost certainly never used the vulnerable code
since apr-util was only used to support svnlite which had no use for blowfish.

All in all a complete waste of time.

-- 
You are receiving this mail because:
You are the assignee for the bug.

home | help

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-281443-227-oxZIKanTXw>