Date: Wed, 08 Sep 2004 08:36:40 +0200 From: des@des.no (=?iso-8859-1?q?Dag-Erling_Sm=F8rgrav?=) To: kerochan ii <kerochan2@gmail.com> Cc: freebsd-audit@freebsd.org Subject: Re: portaudit false positive Message-ID: <xzpd60xxo5j.fsf@dwp.des.no> In-Reply-To: <3b793f1a040907174043f4cad4@mail.gmail.com> (kerochan ii's message of "Tue, 7 Sep 2004 20:40:44 -0400") References: <3b793f1a040907174043f4cad4@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
kerochan ii <kerochan2@gmail.com> writes: > portaudit started warning me about a vulnerability in the cvs server > in the base system. > It reports that the affected package is FreeBSD-502010. > I realised that this is actually a vulnerability fixed months ago, and > because i'm tracking RELENG_5_2 and thus running 5.2.1-p9, it was > fixed on my system before portaudit even reported vulnerabilities in > base. No. For various reasons, this vulnerability still hasn't been fixed in RELENG_5_2 or RELENG_4_10. DES --=20 Dag-Erling Sm=F8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpd60xxo5j.fsf>