From owner-freebsd-ports@FreeBSD.ORG Tue Nov 16 19:01:21 2004 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1A27116A4D0; Tue, 16 Nov 2004 19:01:03 +0000 (GMT) Received: from daemon.li (daemon.li [213.203.244.86]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9300F43D55; Tue, 16 Nov 2004 19:00:20 +0000 (GMT) (envelope-from josef@daemon.li) Received: from localhost (localhost [127.0.0.1]) (uid 1000) by daemon.li with local; Tue, 16 Nov 2004 19:00:17 +0000 Date: Tue, 16 Nov 2004 19:00:16 +0000 From: Josef El-Rayes To: Michael Nottebrock Message-ID: <20041116190015.GA29946@daemon.li> Mail-Followup-To: Michael Nottebrock , freebsd-ports@freebsd.org, Jonathan Weiss , security@freebsd.org References: <200411161512.38168.michaelnottebrock@gmx.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=_daemon.li-29968-1100631617-0001-2" Content-Disposition: inline In-Reply-To: <200411161512.38168.michaelnottebrock@gmx.net> User-Agent: Mutt/1.3.28i cc: Jonathan Weiss cc: freebsd-ports@freebsd.org cc: security@freebsd.org Subject: Re: Problem with cups/xpdf X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Nov 2004 19:01:21 -0000 This is a MIME-formatted message. If you see this text it means that your E-mail software does not support MIME-formatted messages. --=_daemon.li-29968-1100631617-0001-2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Michael Nottebrock : > > I am trying to upgrade my cups-port with an up-to-date ports-tree. It f= ails > > because of the xpdf-vulnurability. But my xpdf-port is the most recent = one > > and I think that the vulnurability was handelt in this version (if I can > > believ the cvs-comment). > > > > =3D=3D=3D> cups-base-1.1.22.0 has known vulnerabilities: > > >> xpdf -- integer overflow vulnerabilities. > > > > Reference: > > >d .html> >=20 > The vuxml entry is wrong, vid ad2f3337-26bf-11d9-9289-000c41e2cdad has=20 > 0 but needs 1.1.21. >=20 Yes, you are absolutely right, I will correct the wrong range(s). Greets, Josef --=20 Josef El-Rayes (__) Email: josef@daemon.li \\\'',)=20 Web: http://daemon.li/ \/ \ ^ FreeBSD Security Team .\._/_) --=_daemon.li-29968-1100631617-0001-2 Content-Type: application/pgp-signature Content-Transfer-Encoding: 7bit Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iQEVAwUBQZpOPFnFItmnnbU8AQK7VAf/a39iO3oP1qmmZRBsIDfNDug/F2eS3Dxd 6DvGY39IxbOqzoYBjmzIXFxXDcBMIkgzUD/vb+tntbwvItcHiLbqklzdQ/Lzp7Km QmdJWa5y6Pm6qTWztvToMMTc2sYBikKtpph+iTFTGHwEWORXJjJxi1AFj1WeBQuL PH8c6C44w7JX8miahr5GVAklaPUJ4GUAowOCzood6OInHxM5y3IPwMFjlpTVUf5E 4BrhQ05PgYHOIYgRhihYcp6EFAd9NlImFMkGeVoJbFS5HCOHGt6JwEZwpv/Cejmi WQlPcJpoUbeQmu/Cvsm5b0Z5WYbIUhH0mQxfDlo8T7s63CNxrGh0FA== =OFp7 -----END PGP SIGNATURE----- --=_daemon.li-29968-1100631617-0001-2--