easiest way to get rid of these security warnings?

[beesatmsu]

wblock, thanks.
I googled and found glib also.

I did your command:
now what I do?

cell# portupgrade -nrf glib atk pango cairo
--->  Session started at: Fri, 23 Jul 2010 14:38:14 -0400
** Port marked as IGNORE: multimedia/qt4-phonon-gst:
        conflicts with multimedia/phonon-gstreamer. You have defined WITH_KDE_PHONON to override Qt4 phonon
** Port marked as IGNORE: multimedia/qt4-phonon:
        conflicts with multimedia/phonon. You have defined WITH_KDE_PHONON to override Qt4 phonon
[Updating the pkgdb <format:bdb_btree> in /var/db/pkg ... - 527 packages found (-0 +1) . done]
Stale dependency: atk-1.30.0_1 --> gio-fam-backend-2.24.1_1 -- manually run 'pkgdb -F' to fix, or specify -O to force.
--->  Session ended at: Fri, 23 Jul 2010 14:38:30 -0400 (consumed 00:00:15)
cell#

 

[beesatmsu]

I did glib first, no error.
now doing atk pango cairo,

then I will do tiff. hopefully it will all work...

it takes forever even for glib (so many dependencies!).

 

[beesatmsu]

got error again at portupgrade atk pango cairo

says stale dependency.

so did pkgdb -F
got error that mDNSResponder has some problem.

went to that port...but still stuck...I am pretty sure I did upgrade it earlier today with portmaster with no errors.

looks like now I am stuck because it is refusing to install 214 (the newest in the port).

cell# cd /usr/ports/net/mDNSResponder.
/usr/ports/net/mDNSResponder.: No such file or directory.
cell# cd /usr/ports/net/mDNSResponder
cell# make install clean
===>  mDNSResponder-214 has known vulnerabilities:
=> mDNSResponder -- corrupted stack crash when parsing bad resolv.conf.
   Reference: <http://portaudit.FreeBSD.org/1cd87e2a-81e3-11df-81d8-00262d5ed8ee.html>
=> Please update your ports tree and try again.
*** Error code 1

Stop in /usr/ports/net/mDNSResponder.

 

[beesatmsu]

http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/147007
does not tell you how to apply the patch for mDNSresponder!

 

[beesatmsu]

Ok, one server is all done, KDE still starts, but Konquerer (a KDE browser) crashes...but firefox 3.6 works ok. not sure why mDNSResponder is gone from the list of security report.

right now still 2, the apache one is new. I will probably ignore it since I do not use mod_cache.

Affected package: apache-2.2.13
Type of problem: apache -- Remote DoS bug in mod_cache and mod_dav.
Reference: <http://portaudit.FreeBSD.org/28a7310f-9855-11df-8d36-001aa0166822.html>

Affected package: kdebase-workspace-4.3.1
Type of problem: KDM -- local privilege escalation vulnerability.
Reference: <http://portaudit.FreeBSD.org/3987c5d1-47a9-11df-a0d5-0016d32f24fb.html>

tried to "portupgrade -rf apache", and got some errors.

 

[beesatmsu]

take home message:

no easy way! need to upgrade each package, or reinstall...