On Thu, May 24, 2012 at 12:41:35PM -0700, Jason Helfman wrote: > On Wed, May 23, 2012 at 10:20:28AM -0700, Eitan Adler thus spake: > >On 21 May 2012 00:09, Marcelo Araujo <[email protected]> wrote: > >> Just to let more clear the reason there is no maintainer approval. > >> However, if there is some security thing related with the update, I believe > >> isn't necessary the maintainer approval. > > > >portmgr or secteam still needs to approve. > > > > > Not only was this a bugfix, but it also covered a CVE. Is that still > required for a timeout? > > http://www.openwall.com/lists/oss-security/2012/05/23/15 > > I also added this to a note on this pr: > http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/165035 > > That being said, is there going to be a vuxml write-up for this commit? > > -jgh > > -- > Jason Helfman > FreeBSD Committer | http://people.freebsd.org/~jgh | The Power To Serve
If there a security fix just go ahead and commit along with a vuxml entry. regards, Bapt
pgpxeHupWoykY.pgp
Description: PGP signature
