-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Victor Engmark wrote: > On 5/15/07, Karol Kwiatkowski <[EMAIL PROTECTED]> wrote: >> >> Victor Engmark wrote: >> > I'm getting reports that some of the packages I've installed have >> > vulnerabilities when running >> > portaudit -Fda >> > >> > I've tried to update the ports tree running >> > cd /usr/ports && portsnap update >> > , but it tells me the tree is already up to date. [...] >> > What am I doing wrong? >> >> Nothing, the ports tree is frozen right know - virtually nothing will be >> updated until xorg 7.2 gets tested and imported[1]. >> > > Cool stuff, but do you recommend I uninstall the problematic packages?
That depends on lot of factors and, unfortunately, you can only answer yourself. I've got some vulnerable packages on _my desktop_ right now, but that's not a problem for me. YMMV. Another option is to patch ports manually - there's a waiting patch for php5 port for example: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/112527 > Also, > aren't security patches normally shipped quickly to the ports tree? That depends on the maintainer but usually yes. It's just unfortunate time right now :) Cheers, Karol - -- Karol Kwiatkowski <karol.kwiat at gmail dot com> OpenPGP 0x06E09309 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGSYgDezeoPAwGIYsRCGS5AJ4rJ/xHNENU8YF7+YzMF/GvLTGu9ACgpuoV 6q7Ur7lVf7tpMSTQLdvFxE0= =PeZY -----END PGP SIGNATURE----- _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"