Bug 208876

Summary: ftp/proftpd - CVE-2016-3125
Product: Ports & Packages Reporter: Sevan Janiyan <venture37>
Component: Individual Port(s)Assignee: Martin Matuska <mm>
Status: Closed FIXED    
Severity: Affects Only Me CC: junovitch, ports-secteam
Priority: --- Flags: bugzilla: maintainer-feedback? (mm)
Version: Latest   
Hardware: Any   
OS: Any   

Description Sevan Janiyan 2016-04-18 00:18:43 UTC 
missing vuxml entry
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3125
Comment 1 commit-hook freebsd_committer freebsd_triage 2016-04-20 11:47:21 UTC 
A commit references this bug:

Author: mm
Date: Wed Apr 20 11:46:35 UTC 2016
New revision: 413680
URL: https://svnweb.freebsd.org/changeset/ports/413680

Log:
  Document security vulnerability in proftpd mod_tls.

  PR:		208876
  Security:	CVE-2016-3125

Changes:
  head/security/vuxml/vuln.xml
Comment 2 Jason Unovitch freebsd_committer freebsd_triage 2016-04-28 01:08:23 UTC 
The PR referenced for the actual update and merge-quarterly+ was bug #208909 and that's all done.  Let's treat this as just the security/vuxml update.