Date: Mon, 26 Sep 2011 16:14:54 +0000 From: "Philip M. Gollucci" <pgollucci@p6m7g8.com> To: Doug Barton <dougb@FreeBSD.org> Cc: freebsd-apache@FreeBSD.org Subject: Re: FreeBSD port(s) you maintain which are currently vulnerable Message-ID: <4E80A4FE.6000605@p6m7g8.com> In-Reply-To: <4E801894.6060907@FreeBSD.org> References: <4E621BDD.9000207@FreeBSD.org> <4E621D2C.2090204@FreeBSD.org> <4E6642E0.5050101@p6m7g8.com> <4E801894.6060907@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
AFAIK, we should whack it when we remove www/apache20. Feel free to match the dates, or one of us will get to it. On 09/26/11 06:15, Doug Barton wrote: > On 09/06/2011 08:57, Philip M. Gollucci wrote: >> On 09/03/11 12:27, Doug Barton wrote: >>> /usr/ports/devel/apr0 >>> /usr/ports/russian/apache13 >>> /usr/ports/russian/apache13-modssl >>> /usr/ports/www/apache13-ssl >>> /usr/ports/www/apache20 >> >> We'll deal with these. > > Thanks! > > I see deprecated for: > russian/apache13 > russian/apache13-modssl > www/apache13-ssl > www/apache20 > > Nothing for: > devel/apr0 > > Is that one going to be fixed? > Affected package: apr-0.9.19.0.9.19_1 > Type of problem: apr -- multiple vulnerabilities. > Reference: > http://portaudit.FreeBSD.org/eb9212f7-526b-11de-bbf2-001b77d09812.html > > > Doug > -- ------------------------------------------------------------------------ 1024D/DB9B8C1C B90B FBC3 A3A1 C71A 8E70 3F8C 75B8 8FFB DB9B 8C1C Philip M. Gollucci (pgollucci@p6m7g8.com) c: 703.336.9354 VP Infrastructure, Apache Software Foundation Committer, FreeBSD Foundation Consultant, P6M7G8 Inc. Director Operations, Ridecharge Inc. Work like you don't need the money, love like you'll never get hurt, and dance like nobody's watching.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4E80A4FE.6000605>