FreeBSD Bugzilla – Attachment 253300 Details for
Bug 281250
security/vuxml: recent nginx entry fails to account for PORTEPOCH
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
Fix the nginx vulnerable package range
0001-security-vuxml-correct-vulnerable-package-range-for-.patch (text/plain), 1019 bytes, created by
Alan Somers
on 2024-09-03 14:36:12 UTC
(
hide
)
Description:
Fix the nginx vulnerable package range
Filename:
MIME Type:
Creator:
Alan Somers
Created:
2024-09-03 14:36:12 UTC
Size:
1019 bytes
patch
obsolete
>From e1de305f9beccad39b47e1b518b91c4243428b7a Mon Sep 17 00:00:00 2001 >From: Alan Somers <asomers@FreeBSD.org> >Date: Tue, 3 Sep 2024 08:33:32 -0600 >Subject: [PATCH] security/vuxml: correct vulnerable package range for nginx > >14dc2636e72c396459a6559868033910ee8a4532 added a new vuxml entry, but >forgot to account for PORTEPOCH. > >CVE-2024-7347 >--- > security/vuxml/vuln/2024.xml | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > >diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml >index b19e07afa115..2556e051276e 100644 >--- a/security/vuxml/vuln/2024.xml >+++ b/security/vuxml/vuln/2024.xml >@@ -419,11 +419,11 @@ > <affects> > <package> > <name>nginx-devel</name> >- <range><ge>1.5.13</ge><lt>1.27.1</lt></range> >+ <range><ge>1.5.13,3</ge><lt>1.27.1,3</lt></range> > </package> > <package> > <name>nginx</name> >- <range><ge>1.6.0</ge><lt>1.26.2</lt></range> >+ <range><ge>1.6.0,3</ge><lt>1.26.2,3</lt></range> > </package> > </affects> > <description> >-- >2.45.2 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=253300">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 281250
: 253300