Date: Thu, 27 Jul 2017 09:55:29 +0000 (UTC) From: Martin Matuska <mm@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r446730 - head/security/vuxml Message-ID: <201707270955.v6R9tTYV002977@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: mm Date: Thu Jul 27 09:55:29 2017 New Revision: 446730 URL: https://svnweb.freebsd.org/changeset/ports/446730 Log: security/vuxml: fix indent in last entry Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Thu Jul 27 09:53:52 2017 (r446729) +++ head/security/vuxml/vuln.xml Thu Jul 27 09:55:29 2017 (r446730) @@ -71,11 +71,11 @@ Notes: <p>NVD reports:</p> <blockquote cite="https://nvd.nist.gov/vuln/detail/CVE-2017-7418">; <p>ProFTPD ... controls whether the home directory of a user could - contain a symbolic link through the AllowChrootSymlinks - configuration option, but checks only the last path component when - enforcing AllowChrootSymlinks. Attackers with local access could - bypass the AllowChrootSymlinks control by replacing a path - component (other than the last one) with a symbolic link.</p> + contain a symbolic link through the AllowChrootSymlinks + configuration option, but checks only the last path component when + enforcing AllowChrootSymlinks. Attackers with local access could + bypass the AllowChrootSymlinks control by replacing a path + component (other than the last one) with a symbolic link.</p> </blockquote> </body> </description>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201707270955.v6R9tTYV002977>