Wed, Nov 19, 2008 at 11:41:01PM +0300, Eygene Ryabinkin wrote: > The fix for the CVE-2008-4225 and CVE-2008-4226 was commited to the > textproc/libxml2 just an hour ago, but vulnerabilities seem to be left > undocumented. At least I was not able to find the corresponding PR and > reporting channels are not clear from the commit comment.
The entry was added shortly after this PR by tabthorpe@, so I think
that this PR can be closed now.
--
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook
{_.-``-' {_/ #
pgpdFYvBKLMUG.pgp
Description: PGP signature
