Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched Security: CVE-2015-3152 Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
This commit is contained in:
Mark Felder
parent
af4ddc5081
commit
e86f7b7cc4
Notes:
svn2git
2021-03-31 03:12:20 +00:00
svn path=/head/; revision=392457
2 changed files with 17 additions and 1 deletions
|
|
@ -1,13 +1,14 @@
|
|||
# $FreeBSD$
|
||||
|
||||
PORTNAME= percona
|
||||
PORTREVISION= 1
|
||||
PKGNAMESUFFIX= 55-client
|
||||
|
||||
COMMENT= Multithreaded SQL database (client)
|
||||
|
||||
MASTERDIR= ${.CURDIR}/../percona55-server
|
||||
|
||||
PKGMESSAGE= mustnotexist
|
||||
PKGMESSAGE= ${.CURDIR}/pkg-message
|
||||
PATCHDIR= ${.CURDIR}/files
|
||||
PLIST= ${.CURDIR}/pkg-plist
|
||||
|
||||
|
|
|
|||
15
databases/percona55-client/pkg-message
Normal file
15
databases/percona55-client/pkg-message
Normal file
|
|
@ -0,0 +1,15 @@
|
|||
* * * * * * * * * * * * * * * * * * * * * * * *
|
||||
|
||||
Please be aware the database client is vulnerable
|
||||
to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM".
|
||||
You may find more information at the following URL:
|
||||
|
||||
http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html
|
||||
|
||||
Although this database client is not listed as
|
||||
"affected", it is vulnerable and will not be
|
||||
receiving a patch. Please take note of this when
|
||||
deploying this software.
|
||||
|
||||
* * * * * * * * * * * * * * * * * * * * * * * *
|
||||
|
||||
Loading…
Reference in a new issue