Solved ftp/curl 7.73.0 ignoring -m DISABLE_VULNERABILITES=yes?

gessel · Dec 13, 2020

HI all:

ftp/curl 7.73.0 was just flagged with 3 vulns

CVE: CVE-2020-8286
CVE: CVE-2020-8285
CVE: CVE-2020-8284

While we wait for 7.74.0 with the patches, I expected to be able to proceed with the usual portmaster -m DISABLE_VULNERABILITES=yes -d ftp/curl, but this seems not to be taking. Has there been a change in the syntax for passing the make directive?

Thanks!

-David

T-Daemon · Dec 13, 2020

gessel said:
While we wait for 7.74.0 with the patches,

ftp/curl has been updated a few minutes ago to 7.74.0

[ports] Index of /head/ftp/curl

svnweb.freebsd.org

gessel · Dec 13, 2020

Thanks - all jails building the new version as I type.

Solved ftp/curl 7.73.0 ignoring -m DISABLE_VULNERABILITES=yes?

gessel

T-Daemon

[ports] Index of /head/ftp/curl

gessel