Date: Tue, 24 Jul 2018 08:22:57 +0200 From: Franco Fichtner <franco@lastsummer.de> To: Mathieu Arnold <mat@FreeBSD.org> Cc: FreeBSD Ports <ports@freebsd.org>, ports-secteam@FreeBSD.org, brnrd@FreeBSD.org Subject: Re: LibreSSL CVE-2018-0732 correction Message-ID: <77BD2B66-E8BD-4AF3-8EA7-23A7C49890E5@lastsummer.de> In-Reply-To: <20180723192914.elydx54y6w6q22ic@atuin.in.mat.cc> References: <9FACEB69-15B0-4022-8F0B-EE1FD801DBB3@lastsummer.de> <20180723192914.elydx54y6w6q22ic@atuin.in.mat.cc>
next in thread | previous in thread | raw e-mail | index | archive | help
> On 23. Jul 2018, at 9:29 PM, Mathieu Arnold <mat@FreeBSD.org> wrote: > > On Mon, Jul 23, 2018 at 09:14:48PM +0200, Franco Fichtner wrote: >> Hi, >> >> What's the policy for picking these up? Is there the same >> kind of maintainer timeout at play here? Feedback welcome. >> >> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=229037 > > security/vuxml is maintained by ports-secteam@, so it's their turf. Or > the maintainer of the offending port, or the person who did the first > commit to vuln.xml file about this entry. > In any way, the vuln.xml file is open to anyone to commit, so anyone can > do it. Great, so who will do it? Cheers, Franco
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?77BD2B66-E8BD-4AF3-8EA7-23A7C49890E5>