Date: Wed, 12 Apr 2023 04:19:06 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: [Bug 270744] security/vuxml: 20 new entries for vulnerable ports Message-ID: <bug-270744-21822-AhidY6ztKK@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-270744-21822@https.bugs.freebsd.org/bugzilla/> References: <bug-270744-21822@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270744 Philip Paeps <philip@FreeBSD.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Open |In Progress --- Comment #4 from Philip Paeps <philip@FreeBSD.org> --- Listing the flavours that currently exist leaves open the possibility that someone installs a vulnerable package for a future flavour of Python -- one that does not yet exist at the time the vulnerability is recorded. The long-term solution would be for "pkg audit" to become aware of flavours. For now, I think your proposed patch is good enough. -- You are receiving this mail because: You are on the CC list for the bug.help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-270744-21822-AhidY6ztKK>