Date: Tue, 18 Nov 2008 10:01:20 -0500 (EST) From: "Steven M. Christey" <coley@linus.mitre.org> To: Eygene Ryabinkin <rea-fbsd@codelabs.ru> Cc: Jille Timmermans <jille@quis.cx>, bug-followup@freebsd.org, freebsd-security@freebsd.org, mloveless@mitre.org, cve@mitre.org, coley@mitre.org Subject: Re: ports/128956: [patch] [vuxml] multiple vulnerabilities in PHP 5.2.6 Message-ID: <Pine.GSO.4.51.0811180957530.22800@faron.mitre.org> In-Reply-To: <9a6isDG2HABVFiTQKRYgHLbugj0@N7cbPDipnvOyJMD9YzFbYf8QNqE> References: <20081118103433.38D5817115@shadow.codelabs.ru> <4922B371.6070002@quis.cx> <TqoTo5jliabZzOUld/zrRy5vtzI@%2BC9avPjAe6kfv7rH%2BxyHzR2RFw8> <4922B6F9.2000408@quis.cx> <9a6isDG2HABVFiTQKRYgHLbugj0@N7cbPDipnvOyJMD9YzFbYf8QNqE>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 18 Nov 2008, Eygene Ryabinkin wrote: > Steven, CVE-supporters, good day. > > Today I was submitted FreeBSD's VuXML entry for CVE-2008-3659 and it > seem to be errorneously saying about "PHP 5.6". Could you please try to > follow the discuission and say something about the entry's description > text? It's pretty clear that the description was a typo. It doesn't follow our typical CVE description style of escalating versions when we list version ranges. Most likely I introduced this typo in the original description. I've internally changed it to "5.x through 5.2.6." This will show up on the public CVE web site within a day or two. Thank you for informing us! - Steve
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.51.0811180957530.22800>