Can't upgrade ports collection
Karol Kwiatkowski
karol.kwiat at gmail.com
Tue May 15 10:14:31 UTC 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Victor Engmark wrote:
> On 5/15/07, Karol Kwiatkowski <karol.kwiat at gmail.com> wrote:
>>
>> Victor Engmark wrote:
>> > I'm getting reports that some of the packages I've installed have
>> > vulnerabilities when running
>> > portaudit -Fda
>> >
>> > I've tried to update the ports tree running
>> > cd /usr/ports && portsnap update
>> > , but it tells me the tree is already up to date.
[...]
>> > What am I doing wrong?
>>
>> Nothing, the ports tree is frozen right know - virtually nothing will be
>> updated until xorg 7.2 gets tested and imported[1].
>>
>
> Cool stuff, but do you recommend I uninstall the problematic packages?
That depends on lot of factors and, unfortunately, you can only answer
yourself. I've got some vulnerable packages on _my desktop_ right now,
but that's not a problem for me. YMMV.
Another option is to patch ports manually - there's a waiting patch for
php5 port for example:
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/112527
> Also,
> aren't security patches normally shipped quickly to the ports tree?
That depends on the maintainer but usually yes. It's just unfortunate
time right now :)
Cheers,
Karol
- --
Karol Kwiatkowski <karol.kwiat at gmail dot com>
OpenPGP 0x06E09309
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGSYgDezeoPAwGIYsRCGS5AJ4rJ/xHNENU8YF7+YzMF/GvLTGu9ACgpuoV
6q7Ur7lVf7tpMSTQLdvFxE0=
=PeZY
-----END PGP SIGNATURE-----
More information about the freebsd-questions
mailing list