Date: Tue, 06 Jan 2009 13:51:29 +0900 From: Randy Bush <randy@psg.com> To: freebsd ports <freebsd-ports@freebsd.org> Subject: xterm vuln Message-ID: <4962E351.7060205@psg.com>
next in thread | raw e-mail | index | archive | help
so portaudit reported an xterm vuln. i cvsupped which did change things
in xterm.
# grep xterm cvsup.log
Edit ports/x11/xterm/Makefile
Edit ports/x11/xterm/distinfo
but when i run portupgrade
---> Upgrade of x11/xterm started at: Tue, 06 Jan 2009 04:48:44 +0000
---> Upgrading 'xterm-237_1' to 'xterm-238' (x11/xterm)
---> Build of x11/xterm started at: Tue, 06 Jan 2009 04:48:44 +0000
---> Building '/usr/ports/x11/xterm'
===> Cleaning for xterm-238
===> xterm-238 has known vulnerabilities:
=> xterm -- DECRQSS remote command execution vulnerability.
Reference:
<http://www.FreeBSD.org/ports/portaudit/d5e1aac8-db0b-11dd-ae30-001cc0377035.html>;
=> Please update your ports tree and try again.
*** Error code 1
whack me with the clue bat, please.
randy
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4962E351.7060205>