From owner-freebsd-questions@FreeBSD.ORG  Mon Jul 31 19:45:57 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 11E2A16A4DE
	for <freebsd-questions@freebsd.org>;
	Mon, 31 Jul 2006 19:45:57 +0000 (UTC)
	(envelope-from pergesu@gmail.com)
Received: from wx-out-0102.google.com (wx-out-0102.google.com [66.249.82.193])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 59DAA43D7B
	for <freebsd-questions@freebsd.org>;
	Mon, 31 Jul 2006 19:44:55 +0000 (GMT)
	(envelope-from pergesu@gmail.com)
Received: by wx-out-0102.google.com with SMTP id i27so126855wxd
	for <freebsd-questions@freebsd.org>;
	Mon, 31 Jul 2006 12:44:48 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
	b=J1cqKwyGPvY6fykzeu66UU7w9dCJViDCfh++HEP0J925frO7kmOhI4LXVq2AJYOpF1v47zv0lIhlss1YydotSilgxEHoBtzCk/Yx9isjVwUH9QG9/Of3y5QUcdq6IvOv21BL8hq3/nxifo0PLgTtdlNBdOpwNsI75uBHBg4bG1A=
Received: by 10.78.107.8 with SMTP id f8mr2666huc;
	Mon, 31 Jul 2006 12:44:47 -0700 (PDT)
Received: by 10.78.116.4 with HTTP; Mon, 31 Jul 2006 12:44:47 -0700 (PDT)
Message-ID: <810a540e0607311244pace7691y1c426d28386df0f6@mail.gmail.com>
Date: Mon, 31 Jul 2006 13:44:47 -0600
From: "Pat Maddox" <pergesu@gmail.com>
To: "jan gestre" <freebsd.ph@gmail.com>
In-Reply-To: <a25afc300607310807w1e94c0d6g9b5ad00b3a0ba339@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <a25afc300607310807w1e94c0d6g9b5ad00b3a0ba339@mail.gmail.com>
Cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: portupgrade ruby package
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Jul 2006 19:45:57 -0000

On 7/31/06, jan gestre <freebsd.ph@gmail.com> wrote:
> hi guys,
>
> portaudit reperoted a vulnerability on the ruby package, so i did the
> following:
>
> # cvsup -L 2 ports-supfile
> # portsdb -Uu
> # portupgrade -rR ruby
>
> but i encountered this error message, i can't upgrade ruby.
>
> --->  Upgrading 'ruby-1.8.4_8,1' to 'ruby-1.8.4_9,1' (lang/ruby18)
> --->  Building '/usr/ports/lang/ruby18'
> ===>  Cleaning for ruby-1.8.4_9,1
>
> NOTE:
> You can enable pthread support by defining WITH_PTHREADS variable,
> but not recommended since this might break some ruby apps.
>
> ===>  ruby-1.8.4_9,1 has known vulnerabilities:
> => ruby - multiple vulnerabilities.
>    Reference: <
> http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html
> >
> => ruby - multiple vulnerabilities.
>    Reference: <
> http://www.FreeBSD.org/ports/portaudit/76562594-1f19-11db-b7d4-0008743bf21a.html
> >
> => Please update your ports tree and try again.
> *** Error code 1

I'm not 100% sure on this, but I think the problem is that even the
new Ruby port has the vulnerabilities in it.  You won't be able to
upgrade until those get patched first.  This is the first ML message
I've seen about this issue, so I don't have any more info.

Pat