git: 69c471ebe007 - main - security/vuxml: Pet puppetdb entry

Dave Cottlehuber dch at FreeBSD.org
Mon Jun 28 15:01:54 UTC 2021 

The branch main has been updated by dch:

URL: https://cgit.FreeBSD.org/ports/commit/?id=69c471ebe0077879c98fb2d66ada7d414dbac592

commit 69c471ebe0077879c98fb2d66ada7d414dbac592
Author:     Dave Cottlehuber <dch at FreeBSD.org>
AuthorDate: 2021-06-28 14:50:55 +0000
Commit:     Dave Cottlehuber <dch at FreeBSD.org>
CommitDate: 2021-06-28 15:01:36 +0000

    security/vuxml: Pet puppetdb entry
    
    make clean validate reports a missing stanza
---
 security/vuxml/vuln-2021.xml | 22 ++++++++++++++--------
 1 file changed, 14 insertions(+), 8 deletions(-)

diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml
index 55a391078e51..c95c6dc15edd 100644
--- a/security/vuxml/vuln-2021.xml
+++ b/security/vuxml/vuln-2021.xml
@@ -33,19 +33,22 @@
     <topic>PuppetDB -- SQL Injection</topic>
     <affects>
       <package>
-	<name>puppetdb6</name>
-	<range><lt>6.17.0</lt></range>
+       <name>puppetdb6</name>
+       <range><lt>6.17.0</lt></range>
       </package>
       <package>
-	<name>puppetdb7</name>
-	<range><lt>7.4.1</lt></range>
+       <name>puppetdb7</name>
+       <range><lt>7.4.1</lt></range>
+      </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
-	<p>Puppet reports:</p>
-	<blockquote cite="https://puppet.com/docs/puppetdb/latest/release_notes.html#security-fixes">
-	  <p>Fixed an issue where someone with the ability to query PuppetDB could arbitrarily write, update, or delete data CVE-2021-27021 PDB-5138.</p>
-	</blockquote>
+       <p>Puppet reports:</p>
+       <blockquote cite="https://puppet.com/docs/puppetdb/latest/release_notes.html#security-fixes">
+	<p>Fixed an issue where someone with the ability to query PuppetDB
+	    could arbitrarily write, update, or delete data CVE-2021-27021
+	    PDB-5138.</p>
+       </blockquote>
       </body>
     </description>
     <references>
@@ -55,6 +58,9 @@
     </references>
     <dates>
       <discovery>2021-06-24</discovery>
+      <entry>2021-06-25</entry>
+    </dates>
+  </vuln>
 
   <vuln vid="4c9159ea-d4c9-11eb-aeee-8c164582fbac">
     <topic>Ansible -- Templating engine bug</topic>

More information about the dev-commits-ports-all mailing list