Date: Tue, 20 Mar 2007 14:32:10 -0400 From: Kris Kennaway <kris@obsecurity.org> To: David Thiel <lx@FreeBSD.org> Cc: cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org, ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/www/webcalendar Makefile distinfo Message-ID: <20070320183210.GA15384@xor.obsecurity.org> In-Reply-To: <200703201828.l2KISn1V037775@repoman.freebsd.org> References: <200703201828.l2KISn1V037775@repoman.freebsd.org>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Tue, Mar 20, 2007 at 06:28:49PM +0000, David Thiel wrote: > lx 2007-03-20 18:28:49 UTC > > FreeBSD ports repository > > Modified files: > www/webcalendar Makefile distinfo > Log: > Update to 1.0.5, fixing a remote variable overwrite vulnerability. > See http://secunia.com/advisories/24403/ for more details. > > PR: ports/110587 > Submitted by: Greg Larkin (maintainer) > Approved by: edwin (mentor) FYI the Security: tag should be used in such situations so that the security team flag it for inclusion in the vulnerability database. Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFGACipWry0BWjoQKURAhQqAJwIeM41UUwNcvRcTWVD57mrP0wlxACeLCfK lka+dYRiDWeiu+N+W6GN4Lk= =7rqn -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070320183210.GA15384>