From owner-freebsd-ports@FreeBSD.ORG  Fri Jun 20 17:28:56 2008
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id DDACA1065677
	for <ports@freebsd.org>; Fri, 20 Jun 2008 17:28:56 +0000 (UTC)
	(envelope-from cyberbotx@cyberbotx.com)
Received: from QMTA10.emeryville.ca.mail.comcast.net
	(qmta10.emeryville.ca.mail.comcast.net [76.96.30.17])
	by mx1.freebsd.org (Postfix) with ESMTP id D1AC18FC13
	for <ports@freebsd.org>; Fri, 20 Jun 2008 17:28:56 +0000 (UTC)
	(envelope-from cyberbotx@cyberbotx.com)
Received: from OMTA14.emeryville.ca.mail.comcast.net ([76.96.30.60])
	by QMTA10.emeryville.ca.mail.comcast.net with comcast
	id gBao1Z0031HpZEsAA0Pd00; Fri, 20 Jun 2008 17:28:56 +0000
Received: from kirby.cyberbotx.com ([68.43.195.82])
	by OMTA14.emeryville.ca.mail.comcast.net with comcast
	id gHUt1Z00K1n8LeU8aHUu0N; Fri, 20 Jun 2008 17:28:56 +0000
X-Authority-Analysis: v=1.0 c=1 a=hja7dK1OWlIA:10 a=Seg5AsWaRHcA:10
	a=6I5d2MoRAAAA:8 a=9rt6PLf7KhpX0vQFYYkA:9
	a=DpQYYrtrxr-v3W7VoUhUD_H-W0MA:4
	a=4vB-4DCPJfMA:10 a=eZLSmJVMEtUA:10
Message-ID: <485BE8D5.60802@cyberbotx.com>
Date: Fri, 20 Jun 2008 13:28:53 -0400
From: Naram Qashat <cyberbotx@cyberbotx.com>
User-Agent: Thunderbird 2.0.0.14 (X11/20080606)
MIME-Version: 1.0
To: Rene Ladan <r.c.ladan@gmail.com>
References: <op.ucxiscyq9aq2h7@mezz.mezzweb.com>
	<e890cae60806200430i27a1b0c9wce0dcadeb41dfd9a@mail.gmail.com>
In-Reply-To: <e890cae60806200430i27a1b0c9wce0dcadeb41dfd9a@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: gnome@freebsd.org, Jeremy Messenger <mezz7@cox.net>, ports@freebsd.org,
	marcuscom-devel@marcuscom.com
Subject: Re: CALL FOR TEST: Updates to pixmap, cairo, poppler,	and firefox
 3.0!
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
	<mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jun 2008 17:28:57 -0000

Rene Ladan wrote:
> 2008/6/18 Jeremy Messenger <mezz7@cox.net>:
>> Hello folks,
>>
> [...]
>> x11/pixman: Update to 0.10.0
> [...]
>> graphics/cairo: Update to 1.6.4
> [...]
>> graphics/poppler: Update to 0.8.3
> [...]
>> www/firefox3: Update to 3.0 final
>>
> [...]
> 
> I saw this in the daily security check:
> 
>> Affected package: firefox-3.0_1,1
>> Type of problem: mozilla -- multiple vulnerabilities.
>> Reference: <http://www.FreeBSD.org/ports/portaudit/e190ca65-3636-11dc-a697-000c6ec775d9.html>
> 
> Is this a false positive?  It seems to affect firefox >3.*,1 but the
> CVE entries say it is fixed in firefox 2.0.0.5
> 
> Rene

I got past that by adding DISABLE_VULNERABILITIES=yes to my build line.  I'm 
sure it probably is a false positive, though.  But at least it wasn't something 
that broke the build entirely.

Naram Qashat