pkg/49149: Nginx Vulnerability information is wrong

To: pkg-manager%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,pkgsrc-bugs%netbsd.org@localhost
Subject: pkg/49149: Nginx Vulnerability information is wrong
From: netbsd%seirios.org@localhost
Date: Mon, 25 Aug 2014 05:25:00 +0000 (UTC)

>Number:         49149
>Category:       pkg
>Synopsis:       Nginx Vulnerability information is wrong
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Mon Aug 25 05:25:00 +0000 2014
>Originator:     HEO SeonMeyong
>Release:        NetBSD 6.1 and pkgsrc-current
>Organization:
>Environment:
NetBSD web001 6.1_STABLE NetBSD 6.1_STABLE (XS_DOMU) #2: Thu Aug 21 19:29:13 
JST 2014  seirios@dev001:/export/NetBSD/Obj/rel/sys/arch/amd64/compile/XS_DOMU 
amd64
>Description:
http://ftp.netbsd.org/pub/NetBSD/packages/vulns/pkg-vulnerabilities has 
following line.

php>=5.5<5.6                    local-privilege-escalation      
http://secunia.com/advisories/56800/

But php 5.5.16 has fixed this vulnerabilities, so please change this entry.
>How-To-Repeat:

>Fix:
I don't know how to fix but I think

php>=5.5<5.5.16                 local-privilege-escalation      
http://secunia.com/advisories/56800/

Prev by Date: Re: pkg/49143 (Add missing README file to mail/mailman PLIST)
Next by Date: pkg/49151: Pull up request for PHP 5.5.15 to 5.5.16
Previous by Thread: Re: pkg/49143 (Add missing README file to mail/mailman PLIST)
Next by Thread: pkg/49151: Pull up request for PHP 5.5.15 to 5.5.16
Indexes:

Home | Main Index | Thread Index | Old Index