Date: Mon, 19 May 2014 19:22:28 +0000 (UTC) From: Walter Hurry <walterhurry@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: Can't reinstall linux-f10-openldap Message-ID: <lldllk$4se$1@ger.gmane.org> References: <llde5k$v9g$1@ger.gmane.org> <44k39h7ja3.fsf@lowell-desk.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 19 May 2014 13:47:16 -0400, Lowell Gilbert wrote: > Walter Hurry <walterhurry@gmail.com> writes: > >> I'm trying to reinstall net/linux-f10-openldap, but am being prevented >> from doing so. >> >> ------------------------------------------------------------ >> ===> linux-f10-openldap-2.4.12_1 has known vulnerabilities: >> linux-f10-openldap-2.4.12_1 is vulnerable: >> OpenLDAP -- incorrect handling of NULL in certificate Common Name CVE: >> CVE-2009-3767 WWW: http://portaudit.FreeBSD.org/abad20bf-c1b4-11e3- >> a5ac-001b21614864.html => Please update your ports tree and try again. >> *** [check-vulnerable] Error code 1 >> >> Stop in /usr/ports/net/linux-f10-openldap. >> ------------------------------------------------------------ >> >> The portaudit web page says that there is indeed a vulnerability in >> this version, but it is the latest version available in the ports tree. >> >> Is there any way around this? > > The only options are the obvious ones: > > 1) Override the vulnerability warning and install anyway. <snip> Thanks for the reply. How do I implement option 1? Sorry, but there are huge gaps in my FreeBSD knowledge. This is FreeBSD 9.2 (amd64), and I was using 'portupgrade -f'.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?lldllk$4se$1>