Undocument linux-*-expat vulnerabilities.

linux-*-expat is only used by linux-*-fontconfig to read configuration
files written in XML and by dbus-binding-tool(1) from linux-*-dbus-glib, a
development tool that generates C code from an Introspection XML file to
expose a GObject via D-Bus.

These vulnerabilities are therefore not believed to be exploitable on
FreeBSD and only cause annoying warnings and prevent installation of
linux-*-expat.  It also does not look like Red Hat will provide fixes for
these any time soon.

PR:		210155

1 files changed, 2 insertions, 14 deletions

diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 242a7db1d71..421968fb37b 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -8688,11 +8688,6 @@ and CVE-2013-0155.</p>
 	<name>expat</name>
 	<range><lt>2.1.1_1</lt></range>
       </package>
-      <package>
-	<name>linux-c6-expat</name>
-	<name>linux-f10-expat</name>
-	<range><ge>0</ge></range>
-      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
@@ -8716,6 +8711,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2016-03-18</discovery>
       <entry>2016-06-09</entry>
+      <modified>2016-11-06</modified>
     </dates>
   </vuln>
 
@@ -9579,14 +9575,6 @@ and CVE-2013-0155.</p>
 	<name>expat</name>
 	<range><lt>2.1.1</lt></range>
       </package>
-      <package>
-	<name>linux-c6-expat</name>
-	<range><lt>2.1.1</lt></range>
-      </package>
-      <package>
-	<name>linux-f10-expat</name>
-	<range><lt>2.1.1</lt></range>
-      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
@@ -9609,7 +9597,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2016-05-17</discovery>
       <entry>2016-05-20</entry>
-      <modified>2016-06-05</modified>
+      <modified>2016-11-06</modified>
     </dates>
   </vuln>