From owner-freebsd-ports-bugs@FreeBSD.ORG  Mon May  7 12:30:17 2012
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 8D72A106566C
	for <freebsd-ports-bugs@FreeBSD.org>;
	Mon,  7 May 2012 12:30:17 +0000 (UTC)
	(envelope-from freebsdports@chillibear.com)
Received: from mail.sundive.org (mail.sundive.org [212.13.197.214])
	by mx1.freebsd.org (Postfix) with ESMTP id 22D358FC16
	for <freebsd-ports-bugs@FreeBSD.org>;
	Mon,  7 May 2012 12:30:16 +0000 (UTC)
Received: from 133.44.112.87.dyn.plus.net ([87.112.44.133] helo=[192.168.0.44])
	by sundive.org with esmtpsa (TLSv1:DES-CBC3-SHA:168)
	(Exim 4.72 (FreeBSD)) (envelope-from <freebsdports@chillibear.com>)
	id 1SRMj2-0004x3-FX
	for freebsd-ports-bugs@FreeBSD.org; Mon, 07 May 2012 13:07:41 +0100
User-Agent: Microsoft-Entourage/12.32.0.111121
Date: Mon, 07 May 2012 13:07:14 +0100
From: Eric <freebsdports@chillibear.com>
To: <freebsd-ports-bugs@FreeBSD.org>
Message-ID: <CBCD7983.2762C%freebsdports@chillibear.com>
Thread-Topic: ports/167363: [MAINTAINER] update mail/rubygem-mail to 2.4.4
Thread-Index: Ac0sSfBVVcYHTFNnpk+h0cxSNeBUBA==
In-Reply-To: <201204271520.q3RFK9rw070481@freefall.freebsd.org>
Mime-version: 1.0
Content-type: multipart/mixed;
	boundary="B_3419240856_65176948"
X-Spam_score: -2.2
X-Spam_score_int: -21
X-Spam_bar: --
X-Spam: No
X-bounce-key: sundive.org-1;freebsdports@chillibear.com;1336393817;13166faa;
Cc: 
Subject: Re: ports/167363: [MAINTAINER] update mail/rubygem-mail to 2.4.4
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
	<mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 07 May 2012 12:30:17 -0000

> This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.

--B_3419240856_65176948
Content-type: text/plain;
	charset="US-ASCII"
Content-transfer-encoding: 7bit

Attached is a vuXML patch for this security issue that can be applied
against the vuln.xml file in security/vuxml

Hopefully it's all okay (first time vuxml), the only thing unclear from the
porters handbook were the 'lt' tags, where in the examples given they seemed
to be a true "less than" in one example and then a "less than or equal to"
in another.  To clarify in case I have it wrong version 2.4.4 of the Gem
_fixes_ the issue, so versions before that have the problem.  This vuxml has
only been visually verified - I found several steps in section '11.3.3' in
the porters handbook didn't seem to work 'out of the box'.


--B_3419240856_65176948
Content-type: application/octet-stream; name="vuln.xml.patch"
Content-disposition: attachment;
	filename="vuln.xml.patch"
Content-transfer-encoding: base64

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--B_3419240856_65176948--