Date: Wed, 12 Apr 2023 04:19:06 +0000 From: bugzilla-noreply@freebsd.org To: python@FreeBSD.org Subject: [Bug 270744] security/vuxml: 20 new entries for vulnerable ports Message-ID: <bug-270744-21822-AhidY6ztKK@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-270744-21822@https.bugs.freebsd.org/bugzilla/> References: <bug-270744-21822@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D270744 Philip Paeps <philip@FreeBSD.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Open |In Progress --- Comment #4 from Philip Paeps <philip@FreeBSD.org> --- Listing the flavours that currently exist leaves open the possibility that someone installs a vulnerable package for a future flavour of Python -- one that does not yet exist at the time the vulnerability is recorded. The long-term solution would be for "pkg audit" to become aware of flavours. For now, I think your proposed patch is good enough. --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-270744-21822-AhidY6ztKK>