I already updated the ports and packages, and the port failed in FreeBSD 11.2 for 64 bits.
#
#
#
pkg audit -F
Code:
vulnxml file up-to-date
linux-c6-expat-2.0.1_5 is vulnerable:
expat -- multiple vulnerabilities
CVE: CVE-2017-9233
CVE: CVE-2016-9063
WWW: https://vuxml.FreeBSD.org/freebsd/e375ff3f-7fec-11e8-8088-28d244aee256.html
1 problem(s) in the installed packages found.
#
#
portmaster textproc/linux-c6-expat
Code:
===>>> Currently installed version: linux-c6-expat-2.0.1_5
===>>> Port directory: /usr/ports/textproc/linux-c6-expat
===>>> Gathering distinfo list for installed ports
===>>> Launching 'make checksum' for textproc/linux-c6-expat in background
===>>> Gathering dependency list for textproc/linux-c6-expat from ports
===>>> Initial dependency check complete for textproc/linux-c6-expat
===>>> Starting build for textproc/linux-c6-expat <<<===
===>>> All dependencies are up to date
===> Cleaning for linux-c6-expat-2.0.1_5
===> linux-c6-expat-2.0.1_5 has known vulnerabilities:
linux-c6-expat-2.0.1_5 is vulnerable:
expat -- multiple vulnerabilities
CVE: CVE-2017-9233
CVE: CVE-2016-9063
WWW: https://vuxml.FreeBSD.org/freebsd/e375ff3f-7fec-11e8-8088-28d244aee256.html
1 problem(s) in the installed packages found.
=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1
Stop.
make: stopped in /usr/ports/textproc/linux-c6-expat
===>>> make build failed for textproc/linux-c6-expat
===>>> Aborting update
===>>> You can restart from the point of failure with this command line:
portmaster <flags> textproc/linux-c6-expat
This command has been saved to /tmp/portmasterfail.txt
#