From owner-svn-ports-head@FreeBSD.ORG  Sun Aug 10 03:08:51 2014
Return-Path: <owner-svn-ports-head@FreeBSD.ORG>
Delivered-To: svn-ports-head@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 975)
 id 5CFEAAD; Sun, 10 Aug 2014 03:08:51 +0000 (UTC)
Date: Sun, 10 Aug 2014 03:08:51 +0000
From: "Sergey A. Osokin" <osa@FreeBSD.org>
To: =?koi8-r?B?UmVuw6k=?= Ladan <rene@freebsd.org>
Subject: Re: svn commit: r364460 - head/www/nginx
Message-ID: <20140810030851.GA69380@FreeBSD.org>
References: <53e66a49.2ebf.35c2c6fd@svn.freebsd.org>
 <53E6B967.1030608@freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <53E6B967.1030608@freebsd.org>
User-Agent: Mutt/1.5.23 (2014-03-12)
Cc: svn-ports-head@freebsd.org, svn-ports-all@freebsd.org,
 ports-committers@freebsd.org
X-BeenThere: svn-ports-head@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: SVN commit messages for the ports tree for head
 <svn-ports-head.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/svn-ports-head>,
 <mailto:svn-ports-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-head/>
List-Post: <mailto:svn-ports-head@freebsd.org>
List-Help: <mailto:svn-ports-head-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/svn-ports-head>,
 <mailto:svn-ports-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 10 Aug 2014 03:08:51 -0000

Hi Rene,

On Sun, Aug 10, 2014 at 02:14:31AM +0200, René Ladan wrote:
> On 09-08-2014 20:36, Sergey A. Osokin wrote:
> > Author: osa
> > Date: Sat Aug  9 18:36:56 2014
> > New Revision: 364460
> > URL: http://svnweb.freebsd.org/changeset/ports/364460
> > QAT: https://qat.redports.org/buildarchive/r364460/
> >
> > Log:
> >   Update from 1.6.0 to 1.6.1.
> >   
> >   <ChangeLog>
> >   
> >   *) Security: pipelined commands were not discarded after STARTTLS
> >      command in SMTP proxy (CVE-2014-3556); the bug had appeared in 1.5.6.
> >      Thanks to Chris Boulton.
> The vuxml file says < 1.6.4,2 is vulnerable, I assume that is a typo?

Yes, the issue has been fixed.

> Also, can you add CPE information to the Makefile (see
> https://wiki.freebsd.org/Ports/CPE ) ?

Will do.

-- 
Sergey A. Osokin
osa@FreeBSD.org