Clarrification on whether portsnap was affected by the 2012 compromise
John Bayly
john.bayly at tipstrade.net
Tue Nov 20 10:49:24 UTC 2012
Regarding the 2012 compromise, I'm a little confused as to what was and
wasn't affected:
>From the release:
> or of any ports compiled from trees obtained via any means other than
> through svn.freebsd.org or one of its mirrors
Does that mean that any ports updated using the standard "portsnap
fetch" may have been affected, I'm guessing yes.
Many thanks,
John
More information about the freebsd-security
mailing list