Date: Sun, 11 Apr 2010 15:32:53 +0200 From: Andrea Venturoli <ml@netfence.it> To: freebsd-ports@freebsd.org, gary.jennejohn@freenet.de, alp@rsu.ru Subject: Re: postgres and CVE-2010-0442 Message-ID: <4BC1CF85.30806@netfence.it> In-Reply-To: <20100325162831.GB24672@lonesome.com> References: <4BAB6135.4030800@rsu.ru> <20100325154420.6c91a7b9@ernst.jennejohn.org> <20100325162831.GB24672@lonesome.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 03/25/10 17:28, Mark Linimon wrote: > On Thu, Mar 25, 2010 at 03:44:20PM +0100, Gary Jennejohn wrote: >> It's only been a week since it was assigned to the maintainer (girgen@) >> to look at. >> >> It's too soon for a maintainer timeout, although I suppose if this is >> considered to be an enormous security risk it could be committed without >> waiting. > > I'd say go ahead and commit it. We often waive the two-week period for > security problems. Sorry to step in. 8.4 has been corrected since a while, but what about 8.2 and 8.3? Is the new (non vulnerable) version going to arrive in the port tree anytime soon or should we plan a version upgrade? bye & Thanks av.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4BC1CF85.30806>