diff options
| author | remko <remko@FreeBSD.org> | 2013-11-13 22:07:04 +0800 |
|---|---|---|
| committer | remko <remko@FreeBSD.org> | 2013-11-13 22:07:04 +0800 |
| commit | 3ed782d95d03e1705c0d334b56810380c79171d6 (patch) | |
| tree | 804271125d7e67e426a03a7cfdce12e3f8306cc3 /security | |
| parent | 2fb9235854e3657fefce9b698bada9b0207f832d (diff) | |
| download | freebsd-ports-gnome-3ed782d95d03e1705c0d334b56810380c79171d6.tar.gz freebsd-ports-gnome-3ed782d95d03e1705c0d334b56810380c79171d6.tar.zst freebsd-ports-gnome-3ed782d95d03e1705c0d334b56810380c79171d6.zip | |
Fix the OpenSSH entry, a version entry should be marked
on a per rule basis, and not on it's own lines, because
that would bogusly match other versions then intended.
When in doubt, please let me review your changes!!
hat: secteam
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 10 |
1 files changed, 4 insertions, 6 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 19588739fc6e..72df124e56ee 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -147,18 +147,16 @@ Note: Please add new entries to the beginning of this file. <affects> <package> <name>openssh-portable</name> - <range><lt>6.4.p1,1</lt></range> - <range><ge>6.2.p2,1</ge></range> + <range><ge>6.2.p2,1</ge><lt>6.4.p1,1</lt></range> </package> <package> <name>openssh-portable-base</name> - <range><lt>6.4.p1,1</lt></range> - <range><ge>6.2.p2,1</ge></range> + <range><ge>6.2.p2,1</ge><lt>6.4.p1,1</lt></range> </package> </affects> <description> <body xmlns="http://www.w3.org/1999/xhtml"> - <p>OpenSSH development team reports:</p> + <p>The OpenSSH development team reports:</p> <blockquote cite="http://www.openssh.com/txt/gcmrekey.adv"> <p>A memory corruption vulnerability exists in the post- authentication sshd process when an AES-GCM cipher @@ -184,7 +182,7 @@ Note: Please add new entries to the beginning of this file. <dates> <discovery>2013-11-07</discovery> <entry>2013-11-08</entry> - <modified>2013-11-11</modified> + <modified>2013-11-13</modified> </dates> </vuln> |