Date: Wed, 23 Sep 2015 16:03:02 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 203227] vuln.xml incorrectly flagging ruby20 as insecure Message-ID: <bug-203227-13-PLL21ntaMi@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-203227-13@https.bugs.freebsd.org/bugzilla/> References: <bug-203227-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203227 --- Comment #9 from Mark Felder <feld@FreeBSD.org> --- In order for this to work correctly I would have to alter the vuxml like this: <package> <name>ruby</name> <name>ruby20</name> <name>ruby22</name> <range><ge>2.0</ge><lt>2.0.0.645,1</lt></range> <range><ge>2.1</ge><lt>2.1.6,1</lt></range> <range><ge>2.2</ge><lt>2.2.2,1</lt></range> </package> Which would produce this: Affected packages 2.0 <= ruby < 2.0.0.645,1 2.1 <= ruby < 2.1.6,1 2.2 <= ruby < 2.2.2,1 2.0 <= ruby20 < 2.0.0.645,1 2.1 <= ruby20 < 2.1.6,1 2.2 <= ruby20 < 2.2.2,1 2.0 <= ruby22 < 2.0.0.645,1 2.1 <= ruby22 < 2.1.6,1 2.2 <= ruby22 < 2.2.2,1 -- You are receiving this mail because: You are on the CC list for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-203227-13-PLL21ntaMi>