Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 8 Sep 2016 06:56:04 +0800
From:      Ben Woods <>
To:        David Newman <>
Cc:        "" <>
Subject:   Re: Different pkg upgrade behavior on different machines
Message-ID:  <>
In-Reply-To: <>
References:  <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Thursday, 8 September 2016, David Newman <> wrote:

> Greetings. How to get pkg to upgrade a package with a security
> vulnerability?
> I have four identical virtual machines, all running 10.3-RELEASE and
> bind910 installed using pkg and not ports. The 'pkg audit' command
> reports a vulnerability in bind910-9.10.4P2.
> One of the four machines successfully upgrades to bind910-9.10.4P2_1
> using the commands 'sudo pkg update && sudo pkg upgrade bind910'.
> The other three machines report all repositories and packages are up to
> date.
> This behavior has existed for at least a couple of weeks, so I don't
> think it's a repository sync issue.
> Thanks in advance for advice on getting the updated pkg on all four VMs.
> dn

Strange behavior indeed!

Can you provide the output of these commands for troubleshooting? Please
provide for the box that works ok, and for one of the boxes that doesn't.

cat /etc/pkg/FreeBSD.conf
cat /usr/local/etc/pkg/repos/*
cat /usr/local/etc/pkg.conf
pkg info bind910
pkg audit -F



From: Benjamin Woods

Want to link to this message? Use this URL: <>