Received: by mail.netbsd.org (Postfix, from userid 605) id A8A7284E9A; Mon, 19 Feb 2024 09:26:06 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netbsd.org; s=20240131; t=1708334766; bh=hbVio07kTddIdk3a6IVJjhwT4j/s5i28HP2OgG7c/2w=; h=Date:From:Subject:To:Reply-To:List-Id:List-Unsubscribe; b=gPS/wliDhkjhEc8unwyAIF6tRMs0v4rM/0rWNsqYRHYlRdAyx2x55u5RXm+gAeo+A 5byy1BtRPx7WTBUt40bkwkKBwD1lPfK+BoWEC/6AVuRVFpvBtLrmvv5/icb+hNzCEU Bl2NiI1hRJZsqkK6anbgL/S4E34d4FLdOz7e2beo= Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 9902384D8C for ; Mon, 19 Feb 2024 09:26:05 +0000 (UTC) X-Virus-Scanned: amavisd-new at netbsd.org Authentication-Results: mail.netbsd.org (amavisd-new); dkim=pass (1024-bit key) header.d=netbsd.org Received: from mail.netbsd.org ([IPv6:::1]) by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025) with ESMTP id 4S7t1wBUd99f for ; Mon, 19 Feb 2024 09:26:05 +0000 (UTC) Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984]) by mail.netbsd.org (Postfix) with ESMTP id E3AAF84D50 for ; Mon, 19 Feb 2024 09:26:04 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netbsd.org; s=20240131; t=1708334765; bh=hbVio07kTddIdk3a6IVJjhwT4j/s5i28HP2OgG7c/2w=; h=Date:From:Subject:To:Reply-To; b=P6MesesRXS6fQDOqFclR44I0fTe+KKBHAszORgp8bRuT1YqUJQJvbANUJSmpprYxL KKfeNC8uaG2uBK9LvkHrqd7IGr+DvHnt+QRDsLUpTc5ogtN2vtSWujgaMunrLM3h6V Nl4vPqNIbs5Ioxoabk84kBn5OXlcx57Sd7NY4+cw= Received: by cvs.NetBSD.org (Postfix, from userid 500) id DB499F9F4; Mon, 19 Feb 2024 09:26:04 +0000 (UTC) Content-Transfer-Encoding: 7bit Content-Type: multipart/mixed; boundary="_----------=_1708334764298310" MIME-Version: 1.0 Date: Mon, 19 Feb 2024 09:26:04 +0000 From: "Leonardo Taccari" Subject: CVS commit: pkgsrc/doc To: pkgsrc-changes@NetBSD.org Reply-To: leot@netbsd.org X-Mailer: log_accum Message-Id: <20240219092604.DB499F9F4@cvs.NetBSD.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: Precedence: bulk List-Unsubscribe: This is a multi-part message in MIME format. --_----------=_1708334764298310 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Module Name: pkgsrc Committed By: leot Date: Mon Feb 19 09:26:04 UTC 2024 Modified Files: pkgsrc/doc: pkg-vulnerabilities Log Message: Use `<` instead of `<=` for latest py-dns entry Using `<=` can ends up in "accidentally" mark the vulnerability fixed due unrelated PKGREVISION bumps and should be always avoided. 2.6.1 was released in the meantime and we can use `<2.6.1` now. To generate a diff of this commit: cvs rdiff -u -r1.132 -r1.133 pkgsrc/doc/pkg-vulnerabilities Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files. --_----------=_1708334764298310 Content-Disposition: inline Content-Length: 974 Content-Transfer-Encoding: binary Content-Type: text/x-diff; charset=us-ascii Modified files: Index: pkgsrc/doc/pkg-vulnerabilities diff -u pkgsrc/doc/pkg-vulnerabilities:1.132 pkgsrc/doc/pkg-vulnerabilities:1.133 --- pkgsrc/doc/pkg-vulnerabilities:1.132 Sat Feb 17 13:51:03 2024 +++ pkgsrc/doc/pkg-vulnerabilities Mon Feb 19 09:26:04 2024 @@ -1,4 +1,4 @@ -# $NetBSD: pkg-vulnerabilities,v 1.132 2024/02/17 13:51:03 wiz Exp $ +# $NetBSD: pkg-vulnerabilities,v 1.133 2024/02/19 09:26:04 leot Exp $ # #FORMAT 1.0.0 # @@ -25897,4 +25897,4 @@ dnsmasq<2.90 denial-of-service https://n powerdns-recursor<4.8.6 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-50387 powerdns-recursor<4.8.6 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-50868 nss<3.98.0 information-leak https://nvd.nist.gov/vuln/detail/CVE-2023-5388 -py{27,37,38,39,310,311,312}-dns<=2.6 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-29483 +py{27,37,38,39,310,311,312}-dns<2.6.1 denial-of-service https://nvd.nist.gov/vuln/detail/CVE-2023-29483 --_----------=_1708334764298310--