My understanding has always been vuXML is for ports / packages and the advisories page is for base.
-----Original Message----- From: [email protected] <[email protected]> On Behalf Of Miroslav Lachman Sent: July 9, 2019 2:14 PM To: [email protected] Subject: [EXTERNAL] Status of FreeBSD vulnerabilities in VUXML database This Message originated outside of the organization. What is the official status of FreeBSD Security Advisories and entries in VUXML database? I am asking especially because new FreeBSD base system vulnerabilities are not being added to the vuxml database. The last was added 2019-04-23 according to https://vuxml.freebsd.org/freebsd/ Why? VUXML is FreeBSD's own pet so why new SAs are not added there the same day they are published as SA on https://www.freebsd.org/security/advisories.html? It makes base-audit periodic useless. https://www.freshports.org/security/base-audit/ Kind regards Miroslav Lachman _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]" _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
