Re: CVS commit: pkgsrc

To: "Emmanuel Dreyfus" <manu%netbsd.org@localhost>
Subject: Re: CVS commit: pkgsrc
From: "OBATA Akio" <obache%netbsd.org@localhost>
Date: Sun, 31 Aug 2008 10:50:44 +0900

On Sun, 31 Aug 2008 03:38:37 +0900, Emmanuel Dreyfus 
<manu%netbsd.org@localhost> wrote:

> OBATA Akio <obache%netbsd.org@localhost> wrote:
>
>> in SA31478 (CVE-2008-3652):
>>   The vulnerability is reported in version 0.7.1.
>> Is it typo? CVE-2008-3651 (SA31450) should be fixed by 0.7.1 though.
>
> 0.7.1 fixes both CVE.

SA313478 point to following diff:

http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/isakmp.c.diff?r1=1.20.6.11&r2=1.20.6.12&f=h
It seems fixed by rev 1.20.6.12.
But ipsec-tools-0_7_1 is tagged with 1.20.6.11 and ipsec-tools-0.7.1.tar.bz2 is 
also include 1.20.6.11.
Have I overlooked something?

-- 
"Of course I love NetBSD":-)
OBATA Akio / obache%NetBSD.org@localhost

References:
- Re: CVS commit: pkgsrc
  - From: Emmanuel Dreyfus

Prev by Date: CVS commit: pkgsrc/graphics
Next by Date: CVS commit: pkgsrc/sysutils/open-vm-tools
Previous by Thread: Re: CVS commit: pkgsrc
Next by Thread: CVS commit: [pkgsrc-2008Q2] pkgsrc/audio/amarok
Indexes:

Home | Main Index | Thread Index | Old Index