Update entries for mythtv and mythtv-frontend

PR: 225652
author: Jason E. Hale <jhale@FreeBSD.org> 2018-03-25 22:13:51 +0800
committer: Jason E. Hale <jhale@FreeBSD.org> 2018-03-25 22:13:51 +0800
commit: 7eaaec0185fa94ca39b744d4c2bfb2ae68142276 (patch)
tree: 4721864167630779df509c5fc5eab77f5280a269
parent: 22c4b23f3293f01f85785e2d449b5e2f68f2fca3 (diff)
download: freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.tar.gz
freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.tar.zst
freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.zip
1 files changed, 24 insertions, 13 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 0abb148bd813..d978bf9284f1 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -6893,6 +6893,12 @@ Using a handcrafted message, remote code execution seems to be possible.</p>
 	<name>ffmpeg</name>
 	<range><lt>3.3.4</lt></range>
       </package>
+      <package>
+	<name>mythtv</name>
+	<name>mythtv-frontend</name>
+	<!-- mythtv-29.x has ffmpeg-3.2 -->
+	<range><lt>29.1</lt></range>
+      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
@@ -6921,6 +6927,7 @@ Using a handcrafted message, remote code execution seems to be possible.</p>
     <dates>
       <discovery>2017-09-11</discovery>
       <entry>2017-10-12</entry>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -14611,6 +14618,12 @@ maliciously crafted GET request to the Horde server.</p>
 	<name>ffmpeg</name>
 	<range><lt>3.2.4,1</lt></range>
       </package>
+      <package>
+	<name>mythtv</name>
+	<name>mythtv-frontend</name>
+	<!-- mythtv-29.x has ffmpeg-3.2 -->
+	<range><lt>29.1</lt></range>
+      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
@@ -14632,6 +14645,7 @@ maliciously crafted GET request to the Horde server.</p>
     <dates>
       <discovery>2017-01-25</discovery>
       <entry>2017-02-12</entry>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -37344,8 +37358,7 @@ and CVE-2013-0155.</p>
 	<name>mythtv</name>
 	<name>mythtv-frontend</name>
 	<!-- mythtv-0.27.0.20140121 has ffmpeg-1.2.2+ (snapshot, f9c8726) -->
-	<!-- no known fixed version -->
-	<range><ge>0</ge></range>
+	<range><lt>0.28</lt></range>
       </package>
       <package>
 	<name>plexhometheater</name>
@@ -37385,6 +37398,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2015-12-20</discovery>
       <entry>2015-12-28</entry>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -39215,8 +39229,7 @@ and CVE-2013-0155.</p>
 	<name>mythtv</name>
 	<name>mythtv-frontend</name>
 	<!-- mythtv-0.27.0.20140121 has ffmpeg-1.2.2+ (snapshot, f9c8726) -->
-	<!-- no known fixed version -->
-	<range><ge>0</ge></range>
+	<range><lt>0.28</lt></range>
       </package>
       <package>
 	<name>plexhometheater</name>
@@ -39319,7 +39332,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2015-11-27</discovery>
       <entry>2015-12-02</entry>
-      <modified>2015-12-28</modified>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -42819,8 +42832,7 @@ and CVE-2013-0155.</p>
 	<name>mythtv</name>
 	<name>mythtv-frontend</name>
 	<!-- mythtv-0.27.0.20140121 has ffmpeg-1.2.2+ (snapshot, f9c8726) -->
-	<!-- no known fixed version -->
-	<range><ge>0</ge></range>
+	<range><lt>0.28</lt></range>
       </package>
       <package>
 	<name>plexhometheater</name>
@@ -42929,7 +42941,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2015-09-05</discovery>
       <entry>2015-09-20</entry>
-      <modified>2015-09-20</modified>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -44030,8 +44042,7 @@ and CVE-2013-0155.</p>
 	<name>mythtv</name>
 	<name>mythtv-frontend</name>
 	<!-- mythtv-0.27.0.20140121 has ffmpeg-1.2.2+ (snapshot, f9c8726) -->
-	<!-- no known fixed version -->
-	<range><ge>0</ge></range>
+	<range><lt>0.28</lt></range>
       </package>
     </affects>
     <description>
@@ -44057,7 +44068,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2015-04-12</discovery>
       <entry>2015-09-01</entry>
-      <modified>2015-09-20</modified>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
 
@@ -44106,8 +44117,7 @@ and CVE-2013-0155.</p>
 	<name>mythtv</name>
 	<name>mythtv-frontend</name>
 	<!-- mythtv-0.27.0.20140121 has ffmpeg-1.2.2+ (snapshot, f9c8726) -->
-	<!-- no known fixed version -->
-	<range><ge>0</ge></range>
+	<range><lt>0.28</lt></range>
       </package>
     </affects>
     <description>
@@ -44134,6 +44144,7 @@ and CVE-2013-0155.</p>
     <dates>
       <discovery>2014-12-19</discovery>
       <entry>2015-09-01</entry>
+      <modified>2018-03-25</modified>
     </dates>
   </vuln>
author	Jason E. Hale <jhale@FreeBSD.org>	2018-03-25 22:13:51 +0800
committer	Jason E. Hale <jhale@FreeBSD.org>	2018-03-25 22:13:51 +0800
commit	7eaaec0185fa94ca39b744d4c2bfb2ae68142276 (patch)
tree	4721864167630779df509c5fc5eab77f5280a269
parent	22c4b23f3293f01f85785e2d449b5e2f68f2fca3 (diff)
download	freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.tar.gz freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.tar.zst freebsd-ports-7eaaec0185fa94ca39b744d4c2bfb2ae68142276.zip