Date: Fri, 17 Oct 2008 01:26:18 -0700 From: Benjamin Lee <ben@b1c1l1.com> To: Colin Brace <cb@lim.nl> Cc: freebsd-questions@freebsd.org Subject: Re: updating a port with problems (libxml2) Message-ID: <48F84C2A.9010904@b1c1l1.com> In-Reply-To: <20028504.post@talk.nabble.com> References: <20028504.post@talk.nabble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig7FDE356EC34C1FE6460077EF Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 10/17/08 01:01, Colin Brace wrote: > Hi all, >=20 > I use portsnap to keep the port tree of my FreeBSD 7 box up to date. > According to portaudit, which I run nightly, there is a problem with th= e > current version of libxml2. So, as usual, I run "sudo portsnap fetch &= & > sudo portsnap update", and then:=20 Note that 'portsnap fetch update' will accomplish the same thing. > $ cd /usr/ports/textproc/libxml2 > $ sudo make deinstall > $ sudo make reinstall clean >=20 > But this last command results in an error: >=20 > =3D=3D=3D> libxml2-2.6.32 has known vulnerabilities: > =3D> libxml2 -- two vulnerabilities. > Reference: > <http://www.FreeBSD.org/ports/portaudit/d71da236-9a94-11dd-8f42-001c251= 4716c.html> > =3D> Please update your ports tree and try again. >=20 > It would appear that the port has not yet been updated. Is this some > temporary glitch? Otherwise, the approach I use is not very robust, sin= ce I > have now managed to deinstall a library upon which a dozen or so progra= ms > depend. However, this is the first time this has happened. >=20 > Comments, suggestions most welcome. To get libxml2 reinstalled before the port is bumped you'll want to try 'make -DDISABLE_VULNERABILITIES reinstall'. In general, it's easier to use portupgrade(1). See "Using the Ports Collection"[1] in the FreeBSD Handbook. [1] http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports-using.htm= l --=20 Benjamin Lee --------------enig7FDE356EC34C1FE6460077EF Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQIcBAEBAgAGBQJI+EwxAAoJEN/n9makEYTholsQAJiWe9BJvrrcYnQlN7hsDom7 8Umksq+Ems/yLZ0OItDf6SdwVHesQYQxGY1hQLA68n8OS5S0UOmvf1JW8TUm5OP1 Bu2SXb6LTcwuwoBHC7viZlRAVCU7eKM1k4Qw8wnJxiPYf8QsLwDc7pmqc8e0u/Hx 3j3rKulE9Nqn1W2P+kDUSBYp6CUvmJaZd+1LWvs/DJM8Ns6nmyBXoERPrKz+AjgB VTcj8ObadurDAhWAnSqN5DUssT8VfQNFp7SLnsOjZR6O65sOCK2qvFVgFlSq12Vx YBBAuPxgGqDZtV8DSm8BJCvqbtxt71izxspVLSh3mJUgaaXkt4BgplYWvd3neCC/ FEUu7ksr/fQNtg+axx2jUdTOH11ehA2lhD363cU4kuHoPzg6OAoKv2EqfhdIFRWX zjNquq63Wep7Bez5Vj2lrbiwo8+DgGalShj5FwnuUd3wzRMoV0HAaMYIbBAHvXpK RhSxLas+bQyMF+bWIrC5DIlK1HBEMZVamWTpBklLqjB7FbNqzRs8NN2hUxD4an/a KLSC6vx1iG6UJFdY4JemKt5tSy0WTQhK9KhEdCOYFfzUNyXBLrCqmRE0h+891InY Mt2m8yG5vcU6N0fMXyzlLyKg5GxDFlNU5P2JGc77vEN4DFFWOq3unseiQymSjhfH yQ3DcZ6xjRX0Nlf1J6kr =dQ6S -----END PGP SIGNATURE----- --------------enig7FDE356EC34C1FE6460077EF--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48F84C2A.9010904>