Date: Thu, 6 May 2004 11:01:33 -0500 From: "Jacques A. Vidrine" <nectar@FreeBSD.org> To: Oliver Eikemeier <eik@FreeBSD.org> Cc: ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/security/vuxml vuln.xml Message-ID: <20040506160133.GB790@madman.celabo.org> In-Reply-To: <200405061543.i46FhrL2015423@repoman.freebsd.org> References: <200405061543.i46FhrL2015423@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, May 06, 2004 at 08:43:53AM -0700, Oliver Eikemeier wrote:
> eik 2004/05/06 08:43:53 PDT
>
> FreeBSD ports repository
>
> Modified files:
> security/vuxml vuln.xml
> Log:
> exim buffer overflow when verify = header_syntax is used
>
> Revision Changes Path
> 1.90 +27 -0 ports/security/vuxml/vuln.xml
Thanks!
Actually, there are two bugs: CAN-2004-0399 CAN-2004-0400
Were both of these fixed?
Also, the package names and versions are not quite right.
You wrote:
<package>
<name>exim{,-ldap2,-mysql,-postgresql}</name>
<range>
<lt>exim-4.33+20_1</lt>
</range>
</package>
The name is not valid.
The version should not include the name again.
I think what you meant was:
<package>
<name>exim</name>
<name>exim-ldap2</name>
<name>exim-mysql</name>
<name>exim-postgresql</name>
<range><lt>4.33+20_1</lt></range>
</package>
Cheers,
--
Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040506160133.GB790>