Date: Mon, 08 Sep 2008 10:42:23 -0400 From: Lowell Gilbert <freebsd-security-local@be-well.ilk.org> To: "tethys ocean" <tethys.ocean@gmail.com> Cc: freebsd-security@freebsd.org, FreeBSD Questions <questions@freebsd.org> Subject: Re: joomla15-1.5.3 has known vulnerabilities: Message-ID: <44hc8qr968.fsf@be-well.ilk.org> In-Reply-To: <235b80000809080713v70b4a5cfs4927beb1c0772d9a@mail.gmail.com> (tethys ocean's message of "Mon\, 8 Sep 2008 17\:13\:06 %2B0300") References: <235b80000809080713v70b4a5cfs4927beb1c0772d9a@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
"tethys ocean" <tethys.ocean@gmail.com> writes: > Hi all > > one of the co-locatin customer want to use joomla(lestest version 15) i want > to install from port but i ve taken this error > > > [root@wmn /usr/ports/www/joomla15]# make install clean > ===> joomla15-1.5.3 has known vulnerabilities: > => joomla -- flaw in the reset token validation. > Reference: < > http://www.FreeBSD.org/ports/portaudit/8514b6e7-6f0f-11dd-b3db-001c2514716c.html >> > => Please update your ports tree and try again. > *** Error code 1 > > Stop in /usr/ports/www/joomla15. > [root@wmn /usr/ports/www/joomla15]# > > port is updated > > firstly it would install i patch it but not install If you have patched to fix the vulnerability, then you can just disable portaudit.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44hc8qr968.fsf>