Date: Wed, 19 May 2004 06:53:40 +0200 From: Kay Lehmann <kay_lehmann@web.de> To: Randy Pratt <rpratt1950@earthlink.net> Cc: freebsd-ports@freebsd.org Subject: Re: Portaudit inhibits updating to mysql-client-4.0.20 Message-ID: <40AAE854.8050805@web.de> In-Reply-To: <20040518234731.3246e250.rpratt1950@earthlink.net> References: <20040518234731.3246e250.rpratt1950@earthlink.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Randy Pratt wrote: > I see where the mysql bug has been fixed in CVS: > > http://docs.freebsd.org/cgi/mid.cgi?200405181150.i4IBowxX087508 > > but portupgrade refused to update to the fixed version: > > ===> Cleaning for mysql-client-4.0.20 > ===> mysql-client-4.0.20 has known vulnerabilities: > >> MySQL insecure temporary file creation (mysqlbug). > Reference:<http://people.freebsd.org/~eik/portaudit/2e129846-8fbb-11d8-8b29-0020ed76ef5a.html>; > >> Please update your ports tree and try again. > > I did update the (portaudit -F) database before portupgrade. I just > went ahead and disabled portaudit to do the update. > # portupgrade -m DISABLE_VULNERABILITIES=yes mysql-client-4.0.18_1 > > Is portaudit always going to be lagging behind the vuln.xml ? > > Thanks, > > Randy Hello, try updating your portaudit database with portaudit -F -d. Normally this helps. Greets, Kay
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40AAE854.8050805>