From owner-freebsd-questions@FreeBSD.ORG  Fri Jan  7 19:52:09 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1120716A4CE
	for <freebsd-questions@freebsd.org>;
	Fri,  7 Jan 2005 19:52:09 +0000 (GMT)
Received: from obsecurity.dyndns.org
	(CPE0050040655c8-CM00111ae02aac.cpe.net.cable.rogers.com [69.199.47.57])
	by mx1.FreeBSD.org (Postfix) with ESMTP id CADBF43D1D
	for <freebsd-questions@freebsd.org>;
	Fri,  7 Jan 2005 19:52:08 +0000 (GMT)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id BCA9F512B5; Fri,  7 Jan 2005 11:52:56 -0800 (PST)
Date: Fri, 7 Jan 2005 11:52:56 -0800
From: Kris Kennaway <kris@obsecurity.org>
To: Warner Joseph <Joseph.Warner@siemens.com>
Message-ID: <20050107195256.GD80494@xor.obsecurity.org>
References: <DAF0948B1D3A2D4080988C683F6BD90709DC4D3F@mlvv9mbe.usmlvv1p0a.smshsc.net>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="osDK9TLjxFScVI/L"
Content-Disposition: inline
In-Reply-To: <DAF0948B1D3A2D4080988C683F6BD90709DC4D3F@mlvv9mbe.usmlvv1p0a.smshsc.net>
User-Agent: Mutt/1.4.2.1i
cc: "'freebsd-questions@freebsd.org'" <freebsd-questions@freebsd.org>
Subject: Re: linux_base
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jan 2005 19:52:09 -0000


--osDK9TLjxFScVI/L
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Jan 07, 2005 at 02:44:39PM -0500, Warner Joseph wrote:
>=20
> Hi,
>=20
> I'm running 4.8-RELEASE-p27 and had a question
> regarding my current install of linux_base
>=20
> #portupgrade -l "<" doesn't reveal this package needs upgrading
> but portaudit -a says:
>=20
> Affected package: linux_base-6.1_6
> Type of problem: xpm -- image decoding vulnerabilities.
> Reference:
> <http://www.FreeBSD.org/ports/portaudit/ef253f8b-0727-11d9-b45d-000c41e2c=
dad
> .html>
>=20
> I've followed that url, googled and searched the -questions archive
> but can't find any information regarding how to correct this.
>=20
> Can anyone point me in the right direction?

linux_base-6 will never have the security vulnerability fixed because
it's not supported by redhat.  linux_base contains redhat 8.x which is
also out of support, but does not currently have security problems.
It will be updated to something more modern after 4.11-RELEASE.

Kris


--osDK9TLjxFScVI/L
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (FreeBSD)

iD8DBQFB3uiYWry0BWjoQKURAnOjAJ0Y4AAHJ3nuUSs2oV4XxJE8osuVDQCg/jmL
oUTtMc+lntKluc/ndNR6ets=
=SbPY
-----END PGP SIGNATURE-----

--osDK9TLjxFScVI/L--