Date: Thu, 21 Feb 2019 19:49:00 +0000 (UTC) From: =?UTF-8?Q?Romain_Tarti=c3=a8re?= <romain@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r493527 - head/security/vuxml Message-ID: <201902211949.x1LJn0Ge021412@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: romain Date: Thu Feb 21 19:49:00 2019 New Revision: 493527 URL: https://svnweb.freebsd.org/changeset/ports/493527 Log: Document sysutils/puppetserver* vulnerabilities. PuppetServer bundles Bouncy Castle, so add affected ports to the Bouncy Castle entry. sysutils/puppetserver is EOL and will likely never get a fix; sysutils/puppetserver5 may get fixed in a future release of the 5.x branch; sysutils/puppetserver6 was fixed in the latest release. With hat: puppet Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Thu Feb 21 19:34:18 2019 (r493526) +++ head/security/vuxml/vuln.xml Thu Feb 21 19:49:00 2019 (r493527) @@ -7287,6 +7287,18 @@ a PingInterval period.</p> <name>bouncycastle15</name> <range><lt>1.60</lt></range> </package> + <package> + <name>puppetserver</name> + <range><ge>0</ge></range> + </package> + <package> + <name>puppetserver5</name> + <range><ge>0</ge></range> + </package> + <package> + <name>puppetserver6</name> + <range><lt>6.2.1</lt></range> + </package> </affects> <description> <body xmlns="http://www.w3.org/1999/xhtml">;
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201902211949.x1LJn0Ge021412>