Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 03 May 2004 16:19:44 +0200
From:      Artur Pydo <artur@pydo.org>
To:        freebsd-security@freebsd.org
Subject:   Bad VuXML check on PNG port ?
Message-ID:  <40965500.4040205@pydo.org>

next in thread | raw e-mail | index | archive | help
Hello,

The current png-1.2.5_4 port has no more vulnerability.
It has been corrected by ache@FreeBSD.org yesterday.
But when i try to install the updated port to remplace
the vulnerable one this is what i am told :

# make install
===>  png-1.2.5_4 has known vulnerabilities:
 >> libpng denial-of-service.
    Reference: 
<http://people.freebsd.org/~eik/portaudit/3a408f6f-9c52-11d8-9366-0020ed76ef5a.html>;
 >> Please update your ports tree and try again.
*** Error code 1

The 4-STABLE ports tree is up-to-date.

Isn't it a problem to be unable to update a vulnerable port ?

-- 

Best regards,

Artur Pydo.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?40965500.4040205>