Date: Tue, 10 Mar 2009 11:55:49 -0500 From: Thomas Abthorpe <tabthorpe@freebsd.org> To: freebsd-questions@freebsd.org Cc: new_guy <byte8bits@gmail.com> Subject: Re: CVE-2008-2939 and FreeBSD Message-ID: <200903101255.50386.tabthorpe@freebsd.org> In-Reply-To: <22434745.post@talk.nabble.com> References: <22434745.post@talk.nabble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On March 10, 2009 09:57:43 am new_guy wrote: > I can't find any info on the Web. Has CVE-2008-2939 been addressed in > FreeBSD7.1 Apache2.2? I can't find any reference to that CVE number. > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2939 This issue has indeed been addressed, http://www.freshports.org/commit.php?category=www&port=apache22&files=yes&message_id=200808312300.m7VN0RJV025926@repoman.freebsd.org > > I've subscribed to the security notification list, and I've searched the > archives, but no go. Often these ports vulnerabilities are documented via security/vuxml, and can be found at http://www.vuxml.org/freebsd/. The vuxml has not been created for this instance :( Sending a courtesy email to ports-security@FreeBSD.org with relevant info is always appreciated, sending a PR generated with output of security/vuxml is even better! Thomas - -- Thomas Abthorpe | FreeBSD Committer tabthorpe@FreeBSD.org | http://people.freebsd.org/~tabthorpe -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (FreeBSD) iEYEARECAAYFAkm2m5YACgkQ5Gm/jNBp8qBdxwCfUAMzoPX3QTdH5aJfXyhHO67+ pWQAn1OWH32rvLPFkfVqoDPH7+aIfSlE =JURb -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200903101255.50386.tabthorpe>