Date: Mon, 19 May 2014 13:47:16 -0400 From: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> To: Walter Hurry <walterhurry@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Can't reinstall linux-f10-openldap Message-ID: <44k39h7ja3.fsf@lowell-desk.lan> In-Reply-To: <llde5k$v9g$1@ger.gmane.org> (Walter Hurry's message of "Mon, 19 May 2014 17:14:28 %2B0000 (UTC)") References: <llde5k$v9g$1@ger.gmane.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Walter Hurry <walterhurry@gmail.com> writes: > I'm trying to reinstall net/linux-f10-openldap, but am being prevented > from doing so. > > ------------------------------------------------------------ > ===> linux-f10-openldap-2.4.12_1 has known vulnerabilities: > linux-f10-openldap-2.4.12_1 is vulnerable: > OpenLDAP -- incorrect handling of NULL in certificate Common Name > CVE: CVE-2009-3767 > WWW: http://portaudit.FreeBSD.org/abad20bf-c1b4-11e3- > a5ac-001b21614864.html > => Please update your ports tree and try again. > *** [check-vulnerable] Error code 1 > > Stop in /usr/ports/net/linux-f10-openldap. > ------------------------------------------------------------ > > The portaudit web page says that there is indeed a vulnerability in this > version, but it is the latest version available in the ports tree. > > Is there any way around this? The only options are the obvious ones: 1) Override the vulnerability warning and install anyway. 2) Wait for somebody else to commit a non-vulnerable port. 3) Create a non-vulnerable port yourself. Updating the Linux emulation can be tricky, because you never know when a new version of a program will start using a Linux kernel feature that we don't emulate. I'm not up-to-date on future directions of the Linuxulator; there are several linux-base sets these days.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44k39h7ja3.fsf>