Update to 3.1.0.13. This update fixes the remote denial of service vulnerabilities documented in vid e1156e90-7ad6-11de-b26a-0048543d60ce. Update for vuln.xml is below. I corrected the minimum affected version to >= 3.1.0.1 to make clear that every 3.1 version is affected, not just the version we offered first via FreeBSD ports. The issue was corrected upstream in 3.1.0.12. --- vuln.xml.orig 2009-08-04 23:08:35.000000000 +0200 +++ vuln.xml 2009-08-04 23:09:39.000000000 +0200 @@ -146,7 +146,7 @@ <package> <name>squid</name> <range><ge>3.0.1</ge><lt>3.0.17</lt></range> - <range><ge>3.1.0.8</ge></range> + <range><ge>3.1.0.1</ge><lt>3.1.0.12</range> </package> </affects> <description> Fix: Apply this patch:
Responsible Changed From-To: freebsd-ports-bugs->miwi I'll take it.
miwi 2009-08-04 23:15:48 UTC FreeBSD ports repository Modified files: www/squid31 Makefile distinfo Log: - Update to 3.1.0.13 PR: 137437 Submitted by: Thomas-Martin Seck <tmseck@web.de> (maintainer) Revision Changes Path 1.230 +22 -22 ports/www/squid31/Makefile 1.176 +3 -3 ports/www/squid31/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed. Thanks!