From nobody Thu Jun 23 10:13:46 2022 X-Original-To: dev-commits-ports-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 7B9F58721D6; Thu, 23 Jun 2022 10:15:51 +0000 (UTC) (envelope-from herbert@gojira.at) Received: from mail.bsd4all.net (mail.bsd4all.net [IPv6:2a01:4f8:13b:240c::25]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-384) client-digest SHA384) (Client CN "mail.bsd4all.net", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4LTGNh6D9Xz3Qs4; Thu, 23 Jun 2022 10:15:48 +0000 (UTC) (envelope-from herbert@gojira.at) Date: Thu, 23 Jun 2022 12:13:46 +0200 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=gojira.at; s=mail202005; t=1655979341; bh=h4bn65zfdOZfcQrRUzCpMrOnwE9gdTVaxVuDSTP+cPA=; h=Date:Message-ID:From:To:Subject:MIME-Version:Content-Type; b=D7pGJuKqdYO6Lgf3lYBzmDE9DmtIpUbkoieOFMeS73s6fFPF0INSYOLRoYeRTxfUW HY124cEXndB/Y9+CfNAVoVsSyU4R6XPZx49ocs3TwSRJ1m+J6Sn/mMu8TlYNgOuySE GtWWJTMzuZ4oJ+nKy0dT2wjdjtR6J55uSzsUm1kNveNlXiv/s3eKUv0HhZU9xIG6SY zWTZiDVKWZuIFEbIadMKqTL18YKr5fvjkOQ5FM+bn7RBkcKOGpK2YxAZ2tmLRnMrQ3 weUL6jKtJL6TWkWQsZIEXU37OYpPPkok4Ilp5/kp9jPJZrVUNghZ4W+TT1a/OcThFZ IfW8lJ5Jinc+A== Message-ID: <87sfnvelgl.wl-herbert@gojira.at> From: "Herbert J. Skuhra" To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: Re: git: 28676937f7e1 - main - security/vuxml: Document Jenkins Security Advisory 2022-06-22 In-Reply-To: <202206221911.25MJBpc8036885@gitrepo.freebsd.org> References: <202206221911.25MJBpc8036885@gitrepo.freebsd.org> User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/29.0 Mule/6.0 List-Id: Commits to the main branch of the FreeBSD ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-main@freebsd.org X-BeenThere: dev-commits-ports-main@freebsd.org MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Rspamd-Queue-Id: 4LTGNh6D9Xz3Qs4 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gojira.at header.s=mail202005 header.b=D7pGJuKq; dmarc=none; spf=pass (mx1.freebsd.org: domain of herbert@gojira.at designates 2a01:4f8:13b:240c::25 as permitted sender) smtp.mailfrom=herbert@gojira.at X-Spamd-Result: default: False [-0.45 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.94)[-0.943]; R_DKIM_ALLOW(-0.20)[gojira.at:s=mail202005]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a01:4f8:13b:240c::25]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[gojira.at]; DKIM_TRACE(0.00)[gojira.at:+]; NEURAL_SPAM_LONG(0.99)[0.989]; MID_CONTAINS_FROM(1.00)[]; NEURAL_HAM_SHORT(-1.00)[-1.000]; MLMMJ_DEST(0.00)[dev-commits-ports-all,dev-commits-ports-main]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:24940, ipnet:2a01:4f8::/32, country:DE] X-ThisMailContainsUnwantedMimeParts: N On Wed, 22 Jun 2022 21:11:51 +0200, Li-Wen Hsu wrote: > > The branch main has been updated by lwhsu: > > URL: https://cgit.FreeBSD.org/ports/commit/?id=28676937f7e12203df395188b61af15f451fa006 > > commit 28676937f7e12203df395188b61af15f451fa006 > Author: Li-Wen Hsu > AuthorDate: 2022-06-22 19:05:48 +0000 > Commit: Li-Wen Hsu > CommitDate: 2022-06-22 19:11:40 +0000 > > security/vuxml: Document Jenkins Security Advisory 2022-06-22 > > Sponsored by: The FreeBSD Foundation > --- > security/vuxml/vuln-2022.xml | 41 +++++++++++++++++++++++++++++++++++++++++ > 1 file changed, 41 insertions(+) Hi, why are https://vuxml.freebsd.org/freebsd/index.html and https://vuxml.freebsd.org/freebsd/rss.xml again not up-to-date and why is 'pkg audit -F' not updating? I think at least six entries are missing. $ ls -l /var/db/pkg/vuln.xml -r--r--r-- 1 root wheel 7146577 Jun 13 03:56 /var/db/pkg/vuln.xml # pkg audit -F vulnxml file up-to-date 0 problem(s) in 0 installed package(s) found. Building and validating security/vuxml works. Thanks. -- Herbert