Bug 261804 - security/vuxml: libX11 CVE-2021-31535 missing PORTEPOCH
Summary: security/vuxml: libX11 CVE-2021-31535 missing PORTEPOCH
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Many People
Assignee: Ports Security Team
URL:
Keywords: easy, needs-patch, security
Depends on:
Blocks:
 
Reported: 2022-02-08 21:33 UTC by Paul Reynolds
Modified: 2022-02-09 02:35 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (ports-secteam)
koobs: maintainer-feedback? (jkim)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Paul Reynolds 2022-02-08 21:33:23 UTC 
vuxml entry for CVE-2021-315335 is missing PORTEPOCH leading to the vulnerability not being flagged for versions that have it.
Comment 1 Kubilay Kocak freebsd_committer freebsd_triage 2022-02-08 21:45:08 UTC 
^Triage: via ports 51990d40050a8fb47d2296d87f205423613f0707 and bug 256034
Comment 2 commit-hook freebsd_committer freebsd_triage 2022-02-09 02:34:31 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=392e232f514fe1b797d41b73481ebdaed0a171a1

commit 392e232f514fe1b797d41b73481ebdaed0a171a1
Author:     Jung-uk Kim <jkim@FreeBSD.org>
AuthorDate: 2022-02-09 02:32:47 +0000
Commit:     Jung-uk Kim <jkim@FreeBSD.org>
CommitDate: 2022-02-09 02:32:47 +0000

    security/vuxml: Add missing PORTEPOCH for x11/libX11

    PR:             261804

 security/vuxml/vuln-2021.xml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)
Comment 3 Jung-uk Kim freebsd_committer freebsd_triage 2022-02-09 02:35:08 UTC 
Fixed, thanks!