From owner-freebsd-questions@FreeBSD.ORG Sun Aug 19 18:11:19 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 23FFF106564A for ; Sun, 19 Aug 2012 18:11:19 +0000 (UTC) (envelope-from doug@safeport.com) Received: from fledge.watson.org (fledge.watson.org [65.122.17.41]) by mx1.freebsd.org (Postfix) with ESMTP id D72CE8FC08 for ; Sun, 19 Aug 2012 18:11:18 +0000 (UTC) Received: from fledge.watson.org (localhost.watson.org [127.0.0.1]) by fledge.watson.org (8.14.5/8.14.5) with ESMTP id q7JHwxjJ079838 for ; Sun, 19 Aug 2012 13:58:59 -0400 (EDT) (envelope-from doug@safeport.com) Received: from localhost (doug@localhost) by fledge.watson.org (8.14.5/8.14.5/Submit) with ESMTP id q7JHwxNJ079835 for ; Sun, 19 Aug 2012 13:58:59 -0400 (EDT) (envelope-from doug@safeport.com) X-Authentication-Warning: fledge.watson.org: doug owned process doing -bs Date: Sun, 19 Aug 2012 13:58:59 -0400 (EDT) From: doug@safeport.com X-X-Sender: doug@fledge.watson.org To: freebsd-questions@freebsd.org In-Reply-To: <201208190551.59457.lumiwa@gmail.com> Message-ID: References: <201208181825.33758.lumiwa@gmail.com> <201208190551.59457.lumiwa@gmail.com> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.3 (fledge.watson.org [127.0.0.1]); Sun, 19 Aug 2012 13:58:59 -0400 (EDT) Subject: Re: libxul X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: doug@fledge.watson.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 19 Aug 2012 18:11:19 -0000 On Sun, 19 Aug 2012, ajtiM wrote: > On Saturday 18 August 2012 21:16:09 Antonio Olivares wrote: >> On Sat, Aug 18, 2012 at 6:25 PM, ajtiM wrote: >>> Hi! >>> >>> There are vulnerabilities in libxul-1.9.2 very long time and looks like >>> nothing is better. Are there a new libxul version somewhere to download, >>> please? >>> >>> >>> >>> portaudit -Fda >>> auditfile.tbz 100% of 79 kB 316 kBps >>> New database installed. >>> Database created: Sat Aug 18 18:15:04 CDT 2012 >>> Affected package: libxul-1.9.2.28_1 >>> Type of problem: mozilla -- multiple vulnerabilities. >>> Reference: http://portaudit.FreeBSD.org/dbf338d0-dce5-11e1- >>> b655-14dae9ebcf89.html >>> >>> Affected package: libxul-1.9.2.28_1 >>> Type of problem: mozilla -- multiple vulnerabilities. >>> Reference: http://portaudit.FreeBSD.org/bfecf7c1- >>> af47-11e1-9580-4061862b8c22.html >>> >>> Affected package: libxul-1.9.2.28_1 >>> Type of problem: mozilla -- multiple vulnerabilities. >>> Reference: >>> http://portaudit.FreeBSD.org/380e8c56-8e32-11e1-9580-4061862b8c22.html >>> >>> 3 problem(s) in your installed packages found. >>> >>> You are advised to update or deinstall the affected package(s) >>> immediately. Mitja >>> -------- >>> http://jpgmag.com/people/lumiwa >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to >>> "freebsd-questions-unsubscribe@freebsd.org" >> >> I was wanting to ask this question for a long time, but you have >> beaten me to it :) I was going to ask specifically if firefox does >> depend on libxul that it is necessary? Otherwise, why do we have to >> see this every time we update our ports? I have seen that there's a >> configuration option for libxul so that it can install, but using >> portmaster the option is not the same or not present? >> >> Anyone want to take a shot at explaining this never ending libxul-* saga? >> >> Regards, >> >> >> Antonio > > I think Firefox doesn't depend but I installled VLC player and VLC Mozilla > plugins needs libxul. I used beforeMplayer and Gecko plgins which need libxul > too and because that I switched to VLC because I thought that I am "free" of > libxul but no. > Mitja I have: FreeBSD 9.0-RELEASE #0 thunderbird-9.0 xfce-4.8 xdm-1.1.11 xorg-7.5.1 with no libxul. You can find the 'offending' port by either using pkg_tree or pkg_info -rRx libxul.