Date: Wed, 25 Jul 2007 00:26:57 +0200 From: "Simon L. Nielsen" <simon@FreeBSD.org> To: Xin LI <delphij@FreeBSD.org> Cc: cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org, ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/security/vuxml vuln.xml Message-ID: <20070724222656.GD1003@zaphod.nitro.dk> In-Reply-To: <200707241417.l6OEH7oG049577@repoman.freebsd.org> References: <200707241417.l6OEH7oG049577@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2007.07.24 14:17:07 +0000, Xin LI wrote: > delphij 2007-07-24 14:17:07 UTC > > FreeBSD ports repository > > Modified files: > security/vuxml vuln.xml > Log: > The previous vuxml entry applies to jakarta-tomcat 4.0.x as well, so mark > it as affected as well. Since there is no newer release I have used 4.1.0 > as the "fixed" version. Has it actually been fixed in 4.1.0? If not you should just not set a top version to avoid a new release which actually doesn't fix the issue being marked secure. -- Simon L. Nielsen
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070724222656.GD1003>