Date: Wed, 23 Sep 2015 14:22:29 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 203227] vuln.xml incorrectly flagging ruby20 as insecure Message-ID: <bug-203227-13-kUxQ8GYjPs@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-203227-13@https.bugs.freebsd.org/bugzilla/> References: <bug-203227-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203227 --- Comment #7 from Mathieu Arnold <mat@FreeBSD.org> --- (In reply to Mark Felder from comment #5) > (In reply to Mathieu Arnold from comment #2) > > I'm not sure there's anything ports-secteam can do about this then. The > vuxml entries match on PKGNAME and if this change alters PKGNAME the vuxml > data will not accurately match. > > This sounds like both Perl and Ruby need to change their behavior because > this is very unexpected. Sorry, what ? I'm sorry, but no, the *default* Perl or Ruby package is always called "perl5" or "ruby", and the non default Perl ports are called perl5.xx, and the non default Ruby ports are called rubyXX. This is not going to change, especially as I'm quite sure vuxml can cope easily. -- You are receiving this mail because: You are on the CC list for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-203227-13-kUxQ8GYjPs>