On 25/08/2021 17:35, Gordon Tetlow via freebsd-security wrote:
[...]
Hi Gordon, I was thinking more in terms of just a mention that RELENG_11 is indeed vulnerable, no ?I hear you. We don't really have a way of doing that with our existing SA setup. It's oriented to releasing patches; it is not equipped to notify users of vulnerabilities that we do not have a patch for. Let me think on how we might support such a thing and discuss with the team.
Will it be published (marked as vulnerable) in vuln.xml so users of security/base-audit will be notified?
Kind regards Miroslav Lachman _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
