I've also added the affected system information for CVE-2014-0076 and corrected a issue with the affected <range> values. -r On (04/11/14 17:13), Ryan Steinmetz wrote: > >On (04/11/14 21:56), Matthew Seaman wrote: >>http://vuxml.freebsd.org/freebsd/b72bad1c-20ed-11e3-be06-000c29ee3065.html >> >>This is applied inconsistently though. While there is an entry for >>OpenSSL Heartbleed, it doesn't contain any reference to the FreeBSD base >>system and the security advisories (at least, not at the time I was >>writing this...) >> > >Entry updated, thank you for pointing this out. > >http://svnweb.freebsd.org/ports/head/security/vuxml/vuln.xml?r1=351042&r2=351041&pathrev=351042 > >-r > >>It's also not a feature of pkg audit or any other tool I am aware of >>that it can warn about base system vulnerabilities. Such functionality >>would be very welcome though. >> >> Cheers, >> >> Matthew >> >>-- >>Dr Matthew J Seaman MA, D.Phil. >>PGP: http://www.infracaninophile.co.uk/pgpkey >> >> > > > >-- >Ryan Steinmetz >PGP: 9079 51A3 34EF 0CD4 F228 EDC6 1EF8 BA6B D028 46D7 >_______________________________________________ >[email protected] mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-security >To unsubscribe, send any mail to "[email protected]" -- Ryan Steinmetz PGP: 9079 51A3 34EF 0CD4 F228 EDC6 1EF8 BA6B D028 46D7 _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"