Date: Tue, 20 May 2014 20:25:15 +0000 (UTC) From: Walter Hurry <walterhurry@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: Can't reinstall linux-f10-openldap (SOLVED) Message-ID: <llgdna$fir$1@ger.gmane.org> References: <llde5k$v9g$1@ger.gmane.org> <44k39h7ja3.fsf@lowell-desk.lan> < lldllk$4se$1@ger.gmane.org> <447g5hqylb.fsf@lowell-desk.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 19 May 2014 16:53:52 -0400, Lowell Gilbert wrote: > Walter Hurry <walterhurry@gmail.com> writes: > >> On Mon, 19 May 2014 13:47:16 -0400, Lowell Gilbert wrote: >> >>> Walter Hurry <walterhurry@gmail.com> writes: >>> >>>> I'm trying to reinstall net/linux-f10-openldap, but am being >>>> prevented from doing so. >>>> >>>> ------------------------------------------------------------ >>>> ===> linux-f10-openldap-2.4.12_1 has known vulnerabilities: >>>> linux-f10-openldap-2.4.12_1 is vulnerable: >>>> OpenLDAP -- incorrect handling of NULL in certificate Common Name >>>> CVE: CVE-2009-3767 WWW: >>>> http://portaudit.FreeBSD.org/abad20bf-c1b4-11e3- >>>> a5ac-001b21614864.html => Please update your ports tree and try >>>> again. *** [check-vulnerable] Error code 1 >>>> >>>> Stop in /usr/ports/net/linux-f10-openldap. >>>> ------------------------------------------------------------ >>>> >>>> The portaudit web page says that there is indeed a vulnerability in >>>> this version, but it is the latest version available in the ports >>>> tree. >>>> >>>> Is there any way around this? >>> >>> The only options are the obvious ones: >>> >>> 1) Override the vulnerability warning and install anyway. >> <snip> >> >> Thanks for the reply. How do I implement option 1? Sorry, but there are >> huge gaps in my FreeBSD knowledge. > > You set an environment variable, DISABLE_VULNERABILITIES. It's listed in > the manual for ports(7), although I think the reference to the portaudit > port is no longer applicable. > Thanks. That's added to my knowledge; I didn't realise that ports had its own man page. I had looked at the man page for portupgrade but found nothing relevant.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?llgdna$fir$1>