Re: Remove x11/mrxvt?

2017-06-24 Thread Frederic Cambus
On Fri, Jun 23, 2017 at 07:17:03PM -0400, Daniel Jakots wrote:

> > Mrxvt is based on rxvt which we recently removed due to the fact that
> > upstream is dead and that thee code is vulnerable to CVE-2017-7483
> > [1].
> > 
> > Mrxvt is vulnerable as well, and latest release is from 2008.
> > 
> > Comments? OK to remove?
> > 
> > [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7483
>
> on our top secret chan:
> 2017-06-06 21:31:04 danjwhile removing rxvt I saw mrxvt
> 2017-06-06 21:31:18 danjHOMEPAGE is http://materm.sourceforge.net
> 2017-06-06 21:31:28 danjshould it get removed too? :3
> 2017-06-06 21:32:38 danjthere's dust everywhere :)
> 
> so ok with me (I can do the proxy and give you another ok from someone
> else if needed :3)

In that case, you are the one who should perform the surgery :)

OK fcambus@ to remove.



Re: Remove x11/mrxvt?

2017-06-23 Thread Anthony J. Bentley
Frederic Cambus writes:
> Hi ports@,
> 
> Mrxvt is based on rxvt which we recently removed due to the fact that
> upstream is dead and that thee code is vulnerable to CVE-2017-7483 [1].
> 
> Mrxvt is vulnerable as well, and latest release is from 2008.
> 
> Comments? OK to remove?
> 
> [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7483

ok bentley@



Re: Remove x11/mrxvt?

2017-06-23 Thread Daniel Jakots
On Sat, 24 Jun 2017 00:15:17 +0200, Frederic Cambus 
wrote:

> Hi ports@,
> 
> Mrxvt is based on rxvt which we recently removed due to the fact that
> upstream is dead and that thee code is vulnerable to CVE-2017-7483
> [1].
> 
> Mrxvt is vulnerable as well, and latest release is from 2008.
> 
> Comments? OK to remove?
> 
> [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7483
> 

on our top secret chan:
2017-06-06 21:31:04 danjwhile removing rxvt I saw mrxvt
2017-06-06 21:31:18 danjHOMEPAGE is http://materm.sourceforge.net
2017-06-06 21:31:28 danjshould it get removed too? :3
2017-06-06 21:32:38 danjthere's dust everywhere :)

so ok with me (I can do the proxy and give you another ok from someone
else if needed :3)



Remove x11/mrxvt?

2017-06-23 Thread Frederic Cambus
Hi ports@,

Mrxvt is based on rxvt which we recently removed due to the fact that
upstream is dead and that thee code is vulnerable to CVE-2017-7483 [1].

Mrxvt is vulnerable as well, and latest release is from 2008.

Comments? OK to remove?

[1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7483