Well, as I can see here < http://www.freshports.org/devel/icu/ > an older version of this port is vulnerable not current version. Maybe by updating your tree your problem will be solved :-]