Bug 243702 - security/vuxml: Add January FreeBSD Security Advisories SA-20:01.libfetch, SA-20:02.ipsec and SA-20:03.thrmisc
Summary: security/vuxml: Add January FreeBSD Security Advisories SA-20:01.libfetch, SA...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Security Team
URL:
Keywords: needs-qa, security
Depends on:
Blocks:
 
Reported: 2020-01-29 09:38 UTC by Miroslav Lachman
Modified: 2020-02-14 09:42 UTC (History)
2 users (show)

See Also:


Attachments
vuln.xml patch with SAs (3.34 KB, patch)
2020-01-29 09:38 UTC, Miroslav Lachman
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Miroslav Lachman 2020-01-29 09:38:20 UTC
Created attachment 211160 [details]
vuln.xml patch with SAs

FreeBSD SA entries

Add new FreeBSD SA entries in to vuln.xml

Port security/base-audit depends on SA entries in vuln.xml. Pleases commit this soon.
Comment 1 Miroslav Lachman 2020-02-13 19:15:58 UTC
2 weeks passed and again - nobody cares.
Comment 2 commit-hook freebsd_committer 2020-02-14 01:16:21 UTC
A commit references this bug:

Author: philip
Date: Fri Feb 14 01:16:13 UTC 2020
New revision: 526079
URL: https://svnweb.freebsd.org/changeset/ports/526079

Log:
  security/vuxml: Add January FreeBSD SAs

  SA-20:01.libfetch
  SA-20:02.ipsec
  SA-20:03.thrmisc

  PR:		243702
  Submitted by:	Miroslav Lachman <000.fbsd@quip.cz>

Changes:
  head/security/vuxml/vuln.xml
Comment 3 Philip Paeps freebsd_committer 2020-02-14 01:21:05 UTC
(In reply to Miroslav Lachman from comment #1)

We care.

The security-officer checklist to release security advisories is not perfect.  Work is ongoing to improve this.

Thank you for your submission and for keeping our feet close to the fire.  Apologies for the delay.  Again.
Comment 4 Miroslav Lachman 2020-02-14 09:42:54 UTC
(In reply to Philip Paeps from comment #3)
I know everybody here is volunteer and has just a bit of time for FreeBSD. But  2 weeks to publish information about critical security advisories is a way too much time.
If there is anything I can help with to improve the situation with SO checklist please let me know.

Thank you for committing!