From owner-cvs-ports@FreeBSD.ORG  Tue Jul 24 22:26:40 2007
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
Delivered-To: cvs-ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EFE5716A418;
	Tue, 24 Jul 2007 22:26:40 +0000 (UTC)
	(envelope-from simon@benji.nitro.dk)
Received: from mx.nitro.dk (zarniwoop.nitro.dk [83.92.207.38])
	by mx1.freebsd.org (Postfix) with ESMTP id A9C6913C46B;
	Tue, 24 Jul 2007 22:26:40 +0000 (UTC)
	(envelope-from simon@benji.nitro.dk)
Received: from benji.nitro.dk (unknown [192.168.3.39])
	by mx.nitro.dk (Postfix) with ESMTP id C03172DE28C;
	Tue, 24 Jul 2007 22:26:39 +0000 (UTC)
Received: by benji.nitro.dk (Postfix, from userid 2000)
	id 5FB8BFD9F; Wed, 25 Jul 2007 00:26:57 +0200 (CEST)
Date: Wed, 25 Jul 2007 00:26:57 +0200
From: "Simon L. Nielsen" <simon@FreeBSD.org>
To: Xin LI <delphij@FreeBSD.org>
Message-ID: <20070724222656.GD1003@zaphod.nitro.dk>
References: <200707241417.l6OEH7oG049577@repoman.freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200707241417.l6OEH7oG049577@repoman.freebsd.org>
User-Agent: Mutt/1.5.16 (2007-06-09)
Cc: cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org, ports-committers@FreeBSD.org
Subject: Re: cvs commit: ports/security/vuxml vuln.xml
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Jul 2007 22:26:41 -0000

On 2007.07.24 14:17:07 +0000, Xin LI wrote:
> delphij     2007-07-24 14:17:07 UTC
> 
>   FreeBSD ports repository
> 
>   Modified files:
>     security/vuxml       vuln.xml 
>   Log:
>   The previous vuxml entry applies to jakarta-tomcat 4.0.x as well, so mark
>   it as affected as well.  Since there is no newer release I have used 4.1.0
>   as the "fixed" version.

Has it actually been fixed in 4.1.0?  If not you should just not set a
top version to avoid a new release which actually doesn't fix the
issue being marked secure.

-- 
Simon L. Nielsen