Date: Wed, 23 Sep 2015 17:37:21 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 203227] vuln.xml incorrectly flagging ruby20 as insecure Message-ID: <bug-203227-13-HDxWM0htVR@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-203227-13@https.bugs.freebsd.org/bugzilla/> References: <bug-203227-13@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203227 --- Comment #14 from Mark Felder <feld@FreeBSD.org> --- (In reply to Mark Felder from comment #9) actually I'm overthinking this. This change would be sufficient: <package> <name>ruby</name> <name>ruby20</name> <range><ge>2.0</ge><lt>2.0.0.645,1</lt></range> </package> <package> <name>ruby</name> <range><lt>2.1.6,1</lt></range> </package> <package> <name>ruby</name> <name>ruby22</name> <range><ge>2.2</ge><lt>2.2.2,1</lt></range> </package> which results in: Affected packages 2.0 <= ruby < 2.0.0.645,1 2.0 <= ruby20 < 2.0.0.645,1 ruby < 2.1.6,1 2.2 <= ruby < 2.2.2,1 2.2 <= ruby22 < 2.2.2,1 -- You are receiving this mail because: You are on the CC list for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-203227-13-HDxWM0htVR>