Portaudit inhibits updating to mysql-client-4.0.20
Kay Lehmann
kay_lehmann at web.de
Tue May 18 21:54:02 PDT 2004
Randy Pratt wrote:
> I see where the mysql bug has been fixed in CVS:
>
> http://docs.freebsd.org/cgi/mid.cgi?200405181150.i4IBowxX087508
>
> but portupgrade refused to update to the fixed version:
>
> ===> Cleaning for mysql-client-4.0.20
> ===> mysql-client-4.0.20 has known vulnerabilities:
> >> MySQL insecure temporary file creation (mysqlbug).
> Reference:<http://people.freebsd.org/~eik/portaudit/2e129846-8fbb-11d8-8b29-0020ed76ef5a.html>
> >> Please update your ports tree and try again.
>
> I did update the (portaudit -F) database before portupgrade. I just
> went ahead and disabled portaudit to do the update.
> # portupgrade -m DISABLE_VULNERABILITIES=yes mysql-client-4.0.18_1
>
> Is portaudit always going to be lagging behind the vuln.xml ?
>
> Thanks,
>
> Randy
Hello,
try updating your portaudit database with portaudit -F -d. Normally this
helps.
Greets,
Kay
More information about the freebsd-ports
mailing list