Date: Thu, 14 Feb 2008 11:03:59 +0200 From: Andriy Gapon <avg@icyb.net.ua> To: remko@elvandar.org Cc: freebsd-security@freebsd.org, Martin Wilke <miwi@freebsd.org> Subject: Re: portaudit: xfce vulnerabilities Message-ID: <47B403FF.3060508@icyb.net.ua> In-Reply-To: <44255.194.74.82.3.1202971755.squirrel@galain.elvandar.org> References: <47B2F3E0.1080806@icyb.net.ua> <44255.194.74.82.3.1202971755.squirrel@galain.elvandar.org>
next in thread | previous in thread | raw e-mail | index | archive | help
on 14/02/2008 08:49 Remko Lodder said the following: > On Wed, February 13, 2008 2:42 pm, Andriy Gapon wrote: >> It seems that there is a mistake on this page: >> http://www.freebsd.org/ports/portaudit/024edd06-c933-11dc-810c-0016179b2dd5.html >> >> All reference URLs say that the vulnerability existed before version >> 4.4.2 and it is fixed in version 4.4.2. >> But affected version are described as: >> xfce4-panel >4.4.1_1 >> libxfce4gui >4.4.1_1 >> >> Shouldn't there be "equal or less" instead of "greater"? >> >> -- >> Andriy Gapon >> _______________________________________________ > > Hey Andriy, > > Thanks for the report, from what I know miwi was going to look at this to > match <lt>4.4.2</lt> so that nothing else is affected.. Remko, thanks, this makes more sense. Though, could this process be sped up a tiny bit? I am sure this is confusing users trying to upgrade from the vulnerable version. -- Andriy Gapon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?47B403FF.3060508>