Created attachment 154889 [details] adding CPE information to Makefile www/httpclient has had vulnerabilities with a CPE identifier assigned (e.g. CVE-2012-6153). This patch adds CPE information as suggested in the FreeBSD wiki[0]. I am not entirely sure whether or not this patch actually applies, i.e. if www/httpclient is identical with the Apache commons httpclient. I leave it to the maintainer to reject this patch if appropriate. [0] https://wiki.freebsd.org/Ports/CPE
A commit references this bug: Author: robak Date: Thu Apr 9 21:03:56 UTC 2015 New revision: 383679 URL: https://svnweb.freebsd.org/changeset/ports/383679 Log: java/jakarta-commons-httpclient: add CPE information - Maintainer's timeout (ale@FreeBSD.org) PR: 198970 Submitted by: Shun <shun.fbsd.pr@dropcut.net> Changes: head/java/jakarta-commons-httpclient/Makefile
(In reply to commit-hook from comment #1) The commit message above landed here by mistake, it was meant to land in different PR.
A commit references this bug: Author: robak Date: Fri Apr 10 08:58:43 UTC 2015 New revision: 383713 URL: https://svnweb.freebsd.org/changeset/ports/383713 Log: www/httpclient: add CPE information - Maintainer's timeout (ale@FreeBSD.org) PR: 198970 Submitted by: Shun <shun.fbsd.pr@dropcut.net> Changes: head/www/httpclient/Makefile
Committed, thanks for your work!