From owner-freebsd-questions@FreeBSD.ORG Mon May 19 21:02:54 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C1032E67 for ; Mon, 19 May 2014 21:02:54 +0000 (UTC) Received: from maul.immure.com (immure.com [107.218.164.241]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8F95427C0 for ; Mon, 19 May 2014 21:02:53 +0000 (UTC) Received: from [10.1.132.9] (helo=rancor.immure.com) by maul.immure.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from ) id 1WmUQj-000OWW-TU; Mon, 19 May 2014 15:45:12 -0500 Received: from rancor.immure.com (localhost [127.0.0.1]) by rancor.immure.com (8.14.8/8.14.8) with ESMTP id s4JKj5Bx025266; Mon, 19 May 2014 15:45:05 -0500 (CDT) (envelope-from bob@rancor.immure.com) Received: (from bob@localhost) by rancor.immure.com (8.14.8/8.14.6/Submit) id s4JKj5vl025265; Mon, 19 May 2014 15:45:05 -0500 (CDT) (envelope-from bob) Date: Mon, 19 May 2014 15:45:05 -0500 From: Bob Willcox To: Walter Hurry Message-ID: <20140519204505.GA24984@rancor.immure.com> Reply-To: Bob Willcox References: <44k39h7ja3.fsf@lowell-desk.lan> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) X-SA-Exim-Connect-IP: 10.1.132.9 X-SA-Exim-Mail-From: bob@immure.com X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on maul.immure.com X-Spam-Level: X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: Can't reinstall linux-f10-openldap X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on maul.immure.com) Cc: freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 19 May 2014 21:02:54 -0000 On Mon, May 19, 2014 at 07:22:28PM +0000, Walter Hurry wrote: > On Mon, 19 May 2014 13:47:16 -0400, Lowell Gilbert wrote: > > > Walter Hurry writes: > > > >> I'm trying to reinstall net/linux-f10-openldap, but am being prevented > >> from doing so. > >> > >> ------------------------------------------------------------ > >> ===> linux-f10-openldap-2.4.12_1 has known vulnerabilities: > >> linux-f10-openldap-2.4.12_1 is vulnerable: > >> OpenLDAP -- incorrect handling of NULL in certificate Common Name CVE: > >> CVE-2009-3767 WWW: http://portaudit.FreeBSD.org/abad20bf-c1b4-11e3- > >> a5ac-001b21614864.html => Please update your ports tree and try again. > >> *** [check-vulnerable] Error code 1 > >> > >> Stop in /usr/ports/net/linux-f10-openldap. > >> ------------------------------------------------------------ > >> > >> The portaudit web page says that there is indeed a vulnerability in > >> this version, but it is the latest version available in the ports tree. > >> > >> Is there any way around this? > > > > The only options are the obvious ones: > > > > 1) Override the vulnerability warning and install anyway. > > > Thanks for the reply. How do I implement option 1? Sorry, but there are > huge gaps in my FreeBSD knowledge. > > This is FreeBSD 9.2 (amd64), and I was using 'portupgrade -f'. When I ran into something like this (hmm, may have been this) last I used the 'portupgrade -k' to get it to continue and install the port. -- Bob Willcox | It is not doing the thing we like to do, but liking bob@immure.com | the thing we have to do, that makes life blessed. Austin, TX | -- Johann Wolfgang von Goethe