libreswan: (again) remove mistaken CVEs in TODO

To: pkgsrc-wip-changes%NetBSD.org@localhost
Subject: libreswan: (again) remove mistaken CVEs in TODO
From: Andrew Cagney <andrew.cagney%gmail.com@localhost>
Date: Mon, 04 Sep 2023 13:57:46 +0000

Module Name:	pkgsrc-wip
Committed By:	Andrew Cagney <andrew.cagney%gmail.com@localhost>
Pushed By:	cagney
Date:		Mon Sep 4 13:57:46 2023 +0000
Changeset:	8c32c7b0adb69848d718b1d5e924754c83e10cea

Modified Files:
	libreswan/TODO

Log Message:
libreswan: (again) remove mistaken CVEs in TODO

To quote CVE-2023-3871[012]:
  Not vulnerable      : libreswan 3.0 - 3.19, 4.12+
and to quote commit: libreswan: update to 4.12nb1
  * SECURITY IKEv2: Fixes https://libreswan.org/security/CVE-2023-38710
  * SECURITY IKEv1: Fixes https://libreswan.org/security/CVE-2023-38711
  * SECURITY IKEv1: Fixes https://libreswan.org/security/CVE-2023-38712

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=8c32c7b0adb69848d718b1d5e924754c83e10cea

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 libreswan/TODO | 3 ---
 1 file changed, 3 deletions(-)

diffs:
diff --git a/libreswan/TODO b/libreswan/TODO
index 01ee7a26ff..119ea5fdfd 100644
--- a/libreswan/TODO
+++ b/libreswan/TODO
@@ -17,6 +17,3 @@
 
 - fix handling of config files - install into share/examples/libreswan
   and use CONF_FILES
-
-This package has known vulnerabilities, please investigate and fix if possible:
-  CVE-2023-38710, CVE-2023-38711, CVE-2023-38712

Prev by Date: ape: Update to 3.5.3.143
Next by Date: libxtend: Update to 0.1.9.15
Previous by Thread: libreswan: (again) remove mistaken CVEs in TODO
Next by Thread: libreswan: import version 5.0pre0.20230808
Indexes:

Home | Main Index | Thread Index | Old Index