When I try to update these vulnerable ports I end up in error.
#
#
#
#
pkg audit -F
Code:
Fetching vuln.xml.bz2: 100% 748 KiB 766.3kB/s 00:01
openjpeg-2.3.0_2 is vulnerable:
OpenJPEG -- multiple vulnerabilities
CVE: CVE-2018-6616
CVE: CVE-2018-5785
CVE: CVE-2018-5727
CVE: CVE-2017-17480
CVE: CVE-2017-17479
WWW: https://vuxml.FreeBSD.org/freebsd/11dc3890-0e64-11e8-99b0-d017c2987f9a.html
pango-1.42.0 is vulnerable:
pango -- remote DoS vulnerability
CVE: CVE-2018-15120
WWW: https://vuxml.FreeBSD.org/freebsd/5a757a31-f98e-4bd4-8a85-f1c0f3409769.html
2 problem(s) in the installed packages found.
#
#
portmaster -o graphics/openjpeg graphics/openjpeg
Code:
===>>> Currently installed version: openjpeg-2.3.0_2
===>>> Port directory: /usr/ports/graphics/openjpeg
===>>> Gathering distinfo list for installed ports
===>>> Launching 'make checksum' for graphics/openjpeg in background
===>>> Gathering dependency list for graphics/openjpeg from ports
===>>> Initial dependency check complete for graphics/openjpeg
===>>> Starting build for graphics/openjpeg <<<===
===>>> All dependencies are up to date
===> Cleaning for openjpeg-2.3.0_1
===> openjpeg-2.3.0_1 has known vulnerabilities:
openjpeg-2.3.0_1 is vulnerable:
OpenJPEG -- multiple vulnerabilities
CVE: CVE-2018-6616
CVE: CVE-2018-5785
CVE: CVE-2018-5727
CVE: CVE-2017-17480
CVE: CVE-2017-17479
WWW: https://vuxml.FreeBSD.org/freebsd/11dc3890-0e64-11e8-99b0-d017c2987f9a.html
1 problem(s) in the installed packages found.
=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1
Stop.
make: stopped in /usr/ports/graphics/openjpeg
===>>> make build failed for graphics/openjpeg
===>>> Aborting update
===>>> You can restart from the point of failure with this command line:
portmaster <flags> graphics/openjpeg
This command has been saved to /tmp/portmasterfail.txt
#
#
portmaster -o x11-toolkits/pango x11-toolkits/pango
Code:
===>>> Currently installed version: pango-1.42.0
===>>> Port directory: /usr/ports/x11-toolkits/pango
===>>> Gathering distinfo list for installed ports
===>>> Launching 'make checksum' for x11-toolkits/pango in background
===>>> Gathering dependency list for x11-toolkits/pango from ports
===>>> Initial dependency check complete for x11-toolkits/pango
===>>> Starting build for x11-toolkits/pango <<<===
===>>> All dependencies are up to date
===> Cleaning for pango-1.42.0
===> pango-1.42.0 has known vulnerabilities:
pango-1.42.0 is vulnerable:
pango -- remote DoS vulnerability
CVE: CVE-2018-15120
WWW: https://vuxml.FreeBSD.org/freebsd/5a757a31-f98e-4bd4-8a85-f1c0f3409769.html
1 problem(s) in the installed packages found.
=> Please update your ports tree and try again.
=> Note: Vulnerable ports are marked as such even if there is no update available.
=> If you wish to ignore this vulnerability rebuild with 'make DISABLE_VULNERABILITIES=yes'
*** Error code 1
Stop.
make[1]: stopped in /usr/ports/x11-toolkits/pango
*** Error code 1
Stop.
make: stopped in /usr/ports/x11-toolkits/pango
===>>> make build failed for x11-toolkits/pango
===>>> Aborting update
===>>> You can restart from the point of failure with this command line:
portmaster <flags> x11-toolkits/pango
This command has been saved to /tmp/portmasterfail.txt
#