libreswan: list old CVE's in TODO in pkg-vulnerabilities format

[Andrew Cagney <andrew.cagney%gmail.com@localhost>]

Module Name:	pkgsrc-wip
Committed By:	Andrew Cagney <andrew.cagney%gmail.com@localhost>
Pushed By:	cagney
Date:		Tue Apr 2 19:06:18 2024 +0000
Changeset:	d948dfb877a799821d2e5f23a82c99d9354964ab

Modified Files:
	libreswan/TODO

Log Message:
libreswan: list old CVE's in TODO in pkg-vulnerabilities format

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=d948dfb877a799821d2e5f23a82c99d9354964ab

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 libreswan/TODO | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diffs:
diff --git a/libreswan/TODO b/libreswan/TODO
index d275bbaa86..4adf5b0ba2 100644
--- a/libreswan/TODO
+++ b/libreswan/TODO
@@ -6,3 +6,19 @@
   have their own packaing quirks), FreeBSD, NetBSD, OpenBSD
 
   not sure about this package
+
+- add following entries to pkg-vulnerabilities
+
+libreswan<4.13nb1	denial-of-service	https://libreswan.org/security/CVE-2024-2357/CVE-2024-2357.txt
+libreswan<4.12nb1	denial-of-service	https://libreswan.org/security/CVE-2023-38712/CVE-2023-38712.txt
+libreswan<4.12nb1	denial-of-service	https://libreswan.org/security/CVE-2023-38711/CVE-2023-38711.txt
+libreswan<4.12nb1	denial-of-service	https://libreswan.org/security/CVE-2023-38710/CVE-2023-38710.txt
+libreswan<4.9nb3	denial-of-service	https://libreswan.org/security/CVE-2023-30570/CVE-2023-30570.txt
+libreswan<4.9nb2	denial-of-service	https://libreswan.org/security/CVE-2023-23009/CVE-2023-23009.txt
+libreswan<4.6		denial-of-service	https://libreswan.org/security/CVE-2022-23094/CVE-2022-23094.txt
+
+Notes:
+
+4.7		earliest pkgsrc version, 4.6 is just a baseline
+CVE-2023-2295	was a bug in Red Hat's Libreswan package, not Libreswan
+4.9nb2 4.9nb3	were cut from libreswan's mainline