Date: Sun, 27 Oct 2013 20:48:50 +0100 From: Remko Lodder <remko@FreeBSD.org> To: Sunpoet Po-Chuan Hsieh <sunpoet@FreeBSD.org> Cc: svn-ports-head@freebsd.org, svn-ports-all@freebsd.org, ports-committers@freebsd.org Subject: Re: svn commit: r331796 - head/security/vuxml Message-ID: <0EEA6447-422B-4FF3-A3EE-50A2F23493D2@FreeBSD.org> In-Reply-To: <201310271819.r9RIJG9x076079@svn.freebsd.org> References: <201310271819.r9RIJG9x076079@svn.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_FD6DDAC1-8737-4A4F-B58C-1FB116535BB1 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=windows-1252 On 27 Oct 2013, at 19:19, Sunpoet Po-Chuan Hsieh <sunpoet@FreeBSD.org> = wrote: > Author: sunpoet > Date: Sun Oct 27 18:19:16 2013 > New Revision: 331796 > URL: http://svnweb.freebsd.org/changeset/ports/331796 >=20 > Log: > - Revert previous commit This cannot happen.=20 24741 <vuln vid=3D"b2a6fc0e-070f-11e0-a6e9-00215c6a37bb">$ 24742 <cancelled/>$ 24743 </vuln>$ Something like that should have been done=85 Can you please update it as such? Also, why is this being reverted? The = commit message does not state that, and there are issues within Wordpress (occasionally) so it does = not seem unreasonable something like below is actually a problem within Wordpress? Thanks Remko >=20 > Modified: > head/security/vuxml/vuln.xml >=20 > Modified: head/security/vuxml/vuln.xml > = =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D > --- head/security/vuxml/vuln.xml Sun Oct 27 18:19:13 2013 = (r331795) > +++ head/security/vuxml/vuln.xml Sun Oct 27 18:19:16 2013 = (r331796) > @@ -51,39 +51,6 @@ Note: Please add new entries to the beg >=20 > --> > <vuxml xmlns=3D"http://www.vuxml.org/apps/vuxml-1">; > - <vuln vid=3D"cd082cc6-1548-4b8d-a3aa-a007be611a29"> > - <topic>WordPress -- Cross-site scripting vulnerability</topic> > - <affects> > - <package> > - <name>de-wordpress</name> > - <name>ja-wordpress</name> > - <name>ru-wordpress</name> > - <name>wordpress</name> > - <name>zh-wordpress-zh_CN</name> > - <name>zh-wordpress-zh_TW</name> > - <range><lt>3.7</lt></range> > - </package> > - </affects> > - <description> > - <body xmlns=3D"http://www.w3.org/1999/xhtml">; > - <p>iBliss Security Advisory:</p> > - <blockquote = cite=3D"http://archives.neohapsis.com/archives/bugtraq/2013-09/0055.html">= > - <p>The walkthrouth web page does not validate the step = parameter leading to=20 > - a Cross-site scripting flaw. An no authenticated user is = required to=20 > - exploit these security flaws.</p> > - </blockquote> > - </body> > - </description> > - <references> > - <cvename>CVE-2013-5711</cvename> > - = <url>http://wordpress.org/plugins/design-approval-system/other_notes/</url= > > - </references> > - <dates> > - <discovery>2013-09-09</discovery> > - <entry>2013-10-27</entry> > - </dates> > - </vuln> > - > <vuln vid=3D"9065b930-3d8b-11e3-bd1a-e840f2096bd0"> > <topic>gnutls -- denial of service</topic> > <affects> > _______________________________________________ > svn-ports-all@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/svn-ports-all > To unsubscribe, send any mail to = "svn-ports-all-unsubscribe@freebsd.org" --=20 /"\ With kind regards, | remko@elvandar.org \ / Remko Lodder | remko@FreeBSD.org X FreeBSD | = http://www.evilcoder.org / \ The Power to Serve | Quis custodiet ipsos custodes --Apple-Mail=_FD6DDAC1-8737-4A4F-B58C-1FB116535BB1 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP using GPGMail -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iQIcBAEBAgAGBQJSbW4iAAoJEKjD27JZ84ywzz4P/jV0e8StTuGC0b4JVh/o0I2i SgUm7j/zyVFBK1dyJBhicUqld0RXV9aOaE+/qer091Va1p3PGHN+qTB7mOv0djrh +PLjDIha1Pu5Rwgs9ZGGfPfKm5G+IW7x9DcZeeb2aCgQQs1uV4BBsTGS2bMaBV3+ 3W6q1m48hjzSLBGUAk/tIm7t/cWFAsG3Q0K1no0ZUwnDOYFry/1YRQJcIYJGe6gG N8OWxp1d0jMkxWbuQ5vfkqwZEHlTO16oXi9RhC4WH8PpPl1b2cHXLxDKlNVoWrEa N368GQLqvtByLGzzkT2sZnsX3BXdPZ5+vLhzP6mnjRVYSuupK1GT/kIXFu89il5k lkgjElAsliV+/FhR4U1LVUbDO+sGjVcRO1Z1eqRCoJXwqkHGeV3exWeewXrbzuaY CPKG5sKr55IPOgH7h1WjqnlXOYvt79vDY0G3/dsrBrDLxGCEX/tr2edZ4vOequmZ N8Pz40jXITeDUzC5nHdIY5K5HBl9hCjDXnh/iH3HYB/BdGq2tft6Wj54VuXMrEQX vEGhwrvoj7Q5P3jLSvUiREnQI2BnEhxaEbf4V3MdXG8m8M6o2E38pDd6rnaho8Er sWxh/l/mg6wGsnzudMmViAweA2Fgl1PnsYQH10IktfMKn32aURJgyD/IuFnUaIf7 7IQ5yaiRmQ2AIQi4+Xok =x1rw -----END PGP SIGNATURE----- --Apple-Mail=_FD6DDAC1-8737-4A4F-B58C-1FB116535BB1--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0EEA6447-422B-4FF3-A3EE-50A2F23493D2>