Hi!

> For some weeks I noticed
> 
> oniguruma5-5.9.6_1 is vulnerable:
> oniguruma -- multiple vulnerabilities
> CVE: CVE-2017-9228
> CVE: CVE-2017-9228
> CVE: CVE-2017-9227
> CVE: CVE-2017-9226
> CVE: CVE-2017-9224
> WWW:https://vuxml.FreeBSD.org/freebsd/b396cf6c-62e6-11e7-9def-b499baebfeaf.html
> 
> Can you please provide a port update? Thanks.

Basically, the suggestion is to update dependent ports to oniguruma6,
and then remove oniguruma5. See

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=220438

for more details. That's a little bit of work and we're short
on folks doing it 8-}

-- 
p...@opsec.eu            +49 171 3101372                         3 years to go !
_______________________________________________
freebsd-ports@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscr...@freebsd.org"

Reply via email to