Solved FreeBSD 11.4 update system soft all programs are marked as DISABLE_VULNERABILITIES

Hello.
On one of the servers I decided to update the programs.
Updated ports, created indexes for them (make index).
Running the upgrade portupgrade -arR
My system server FreeBSD 11.4-RELEASE-p10 amd64
And I see a lot of messages on each port being updated that the port is vulnerable.
This is a joke?

Code:
===>  Cleaning for nano-5.8
pkg-static: Invalid end of XML
pkg-static: cannot process vulnxml
===>  nano-5.8 has known vulnerabilities:

=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1

Stop.
make[1]: stopped in /usr/ports/editors/nano
*** Error code 1

Stop.
make: stopped in /usr/ports/editors/nano
** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade20210709-83330-1g3n6ht env UPGRADE_TOOL=portupgrade UPGRADE_PORT=nano-5.7 UPGRADE_PORT_VER=5.7 make
** Fix the problem and try again.
--->  Skipping 'textproc/php74-xml' (php74-xml-7.4.20) because a requisite package 'libxml2-2.9.10_4' (textproc/libxml2) failed (specify -k to force)
--->  Upgrading 'py38-configargparse-1.4' to 'py38-configargparse-1.4.1' (devel/py-configargparse)
--->  Building '/usr/ports/devel/py-configargparse'
===>  Cleaning for py38-configargparse-1.4.1
pkg-static: Invalid end of XML
pkg-static: cannot process vulnxml
===>  py38-configargparse-1.4.1 has known vulnerabilities:

=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1

Stop.
make: stopped in /usr/ports/devel/py-configargparse
** Command failed [exit code 1]: /usr/bin/script -qa /tmp/portupgrade20210709-83330-3zyzto env UPGRADE_TOOL=portupgrade UPGRADE_PORT=py38-configargparse-1.4 UPGRADE_PORT_VER=1.4 make
** Fix the problem and try again.
--->  Upgrading 'mc-nox11-4.8.26_1' to 'mc-nox11-4.8.26_2' (misc/mc-nox11)
--->  Building '/usr/ports/misc/mc-nox11'
===>  Cleaning for mc-nox11-4.8.26_2
pkg-static: Invalid end of XML
pkg-static: cannot process vulnxml
===>  mc-nox11-4.8.26_2 has known vulnerabilities:

=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1

Stop.
make[1]: stopped in /usr/ports/misc/mc-nox11
*** Error code 1

Stop.
make: stopped in /usr/ports/misc/mc-nox11
 
rm /var/db/pkg/vuln.xml then pkg audit -F again.

It seems VuXML is dead slow though, that might have something to do with it.
 
Now that your vulnerability file is fixed you can upgrade ports. I think it's what you were trying to do when the error showed up.

Nginx is 1.20.1_2,2 on my servers and it's not vulnerable.
 
Back
Top