Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
I get portaudit -F portaudit: Command not found I understand that I need to install portaudit but should it really be necessary? Can you explain why I didn't have this problem on the 8.3 system. There's no portaudit installed on that machine either? Are you using pkgng on your FreeBSD 9.1 system? Pkgng has a command similar to portaudit (pkg audit). Try pkg audit -F. Thank you! Problem solved :-) ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
On 2013-07-05 08:54, Leslie Jensen wrote: I get portaudit -F portaudit: Command not found I understand that I need to install portaudit but should it really be necessary? Can you explain why I didn't have this problem on the 8.3 system. There's no portaudit installed on that machine either? Are you using pkgng on your FreeBSD 9.1 system? Pkgng has a command similar to portaudit (pkg audit). Try pkg audit -F. Thank you! Problem solved :-) What did you do to solve the problem? ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
On Thu, Jul 4, 2013 at 12:29 AM, Leslie Jensen les...@eskk.nu wrote: 2013-07-03 10:35, Dewayne Geraghty skrev: -Original Message- From: owner-freebsd-po...@freebsd.org [mailto:owner-freebsd-po...@freebsd.org] On Behalf Of Dewayne Sent: Wednesday, 3 July 2013 4:57 PM To: 'Jason Helfman'; 'Leslie Jensen' Cc: 'FreeBSD Ports List' Subject: RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3 The quick way to build the latest curl on FreeBSD 9.1 is to pass DISABLE_VULNERABILITIES to the make command. Its probably a good idea to leave your audit db alone, for this task. cd /usr/ports/ftp/curl make -DDISABLE_VULNERABILITIES For portmaster this takes the form of portmaster -m -DDISABLE_VULNERABILITIES ftp/curl I'm unfamiliar with portupgrade. Regards, Dewayne ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org Leslie, et al, It has just been brought to my attention that the portaudit database was updated to reflect Xin Li's patch to curl. Thank-you John Marshall. Perform a portaudit -F and the curl build will proceed successfully. Regards, Dewayne. ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org I get portaudit -F portaudit: Command not found I understand that I need to install portaudit but should it really be necessary? Can you explain why I didn't have this problem on the 8.3 system. There's no portaudit installed on that machine either? Are you using pkgng on your FreeBSD 9.1 system? Pkgng has a command similar to portaudit (pkg audit). Try pkg audit -F. -- DISCLAIMER: No electrons were maimed while sending this message. Only slightly bruised. ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
Leslie, === Cleaning for curl-7.24.0_4 === curl-7.24.0_4 has known vulnerabilities: curl-7.24.0_4 is vulnerable: cURL library -- heap corruption in curl_easy_unescape It is nothing to do with 9.1, curl has a bug, period. If you still want to install that bogous version of curl (to my knowledge, the new unbogous one is not yet available), you have to desactivate the security check. I do that by removing /var/db/portaudit/auditfile.db (something like that). Note that doing that, you know and accept that you are installing as application that includes a security issue. best regards, Olivier WWW: http://portaudit.FreeBSD.org/01cf67b3-dc3b-11e2-a6cd-c48508086173.html = Please update your ports tree and try again. *** [check-vulnerable] Error code 1 Stop in /usr/ports/ftp/curl. *** [build] Error code 1 Stop in /usr/ports/ftp/curl. === make failed for ftp/curl === Aborting update === Update for ftp/curl failed === Aborting update === Killing background jobs I've done this upgrade on a 8.3 system without problems, but it stops on my 9.1 laptop. Ports tree is updated. /Leslie ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
On Tue, Jul 2, 2013 at 10:56 PM, Leslie Jensen les...@eskk.nu wrote: === Cleaning for curl-7.24.0_4 === curl-7.24.0_4 has known vulnerabilities: curl-7.24.0_4 is vulnerable: cURL library -- heap corruption in curl_easy_unescape WWW: http://portaudit.FreeBSD.org/**01cf67b3-dc3b-11e2-a6cd-** c48508086173.htmlhttp://portaudit.FreeBSD.org/01cf67b3-dc3b-11e2-a6cd-c48508086173.html = Please update your ports tree and try again. *** [check-vulnerable] Error code 1 Stop in /usr/ports/ftp/curl. *** [build] Error code 1 Stop in /usr/ports/ftp/curl. === make failed for ftp/curl === Aborting update === Update for ftp/curl failed === Aborting update === Killing background jobs I've done this upgrade on a 8.3 system without problems, but it stops on my 9.1 laptop. Ports tree is updated. /Leslie __**_ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/**mailman/listinfo/freebsd-portshttp://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscribe@**freebsd.orgfreebsd-ports-unsubscr...@freebsd.org Thanks for the report. Is your pkgaudit db up-to-date? I am able to update curl on 9.1. -jgh -- Jason Helfman | FreeBSD Committer j...@freebsd.org | http://people.freebsd.org/~jgh | The Power to Serve ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
The quick way to build the latest curl on FreeBSD 9.1 is to pass DISABLE_VULNERABILITIES to the make command. Its probably a good idea to leave your audit db alone, for this task. cd /usr/ports/ftp/curl make -DDISABLE_VULNERABILITIES For portmaster this takes the form of portmaster -m -DDISABLE_VULNERABILITIES ftp/curl I'm unfamiliar with portupgrade. Regards, Dewayne ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
-Original Message- From: owner-freebsd-po...@freebsd.org [mailto:owner-freebsd-po...@freebsd.org] On Behalf Of Dewayne Sent: Wednesday, 3 July 2013 4:57 PM To: 'Jason Helfman'; 'Leslie Jensen' Cc: 'FreeBSD Ports List' Subject: RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3 The quick way to build the latest curl on FreeBSD 9.1 is to pass DISABLE_VULNERABILITIES to the make command. Its probably a good idea to leave your audit db alone, for this task. cd /usr/ports/ftp/curl make -DDISABLE_VULNERABILITIES For portmaster this takes the form of portmaster -m -DDISABLE_VULNERABILITIES ftp/curl I'm unfamiliar with portupgrade. Regards, Dewayne ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org Leslie, et al, It has just been brought to my attention that the portaudit database was updated to reflect Xin Li's patch to curl. Thank-you John Marshall. Perform a portaudit -F and the curl build will proceed successfully. Regards, Dewayne. ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
On Wed, Jul 3, 2013 at 1:35 AM, Dewayne Geraghty dewayne.gerag...@heuristicsystems.com.au wrote: -Original Message- From: owner-freebsd-po...@freebsd.org [mailto:owner-freebsd-po...@freebsd.org] On Behalf Of Dewayne Sent: Wednesday, 3 July 2013 4:57 PM To: 'Jason Helfman'; 'Leslie Jensen' Cc: 'FreeBSD Ports List' Subject: RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3 The quick way to build the latest curl on FreeBSD 9.1 is to pass DISABLE_VULNERABILITIES to the make command. Its probably a good idea to leave your audit db alone, for this task. cd /usr/ports/ftp/curl make -DDISABLE_VULNERABILITIES For portmaster this takes the form of portmaster -m -DDISABLE_VULNERABILITIES ftp/curl I'm unfamiliar with portupgrade. Regards, Dewayne Leslie, et al, It has just been brought to my attention that the portaudit database was updated to reflect Xin Li's patch to curl. Thank-you John Marshall. Perform a portaudit -F and the curl build will proceed successfully. Regards, Dewayne. That is why I suggested the package audit database be updated in my first post. -jgh -- Jason Helfman | FreeBSD Committer j...@freebsd.org | http://people.freebsd.org/~jgh | The Power to Serve ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
Re: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
2013-07-03 10:35, Dewayne Geraghty skrev: -Original Message- From: owner-freebsd-po...@freebsd.org [mailto:owner-freebsd-po...@freebsd.org] On Behalf Of Dewayne Sent: Wednesday, 3 July 2013 4:57 PM To: 'Jason Helfman'; 'Leslie Jensen' Cc: 'FreeBSD Ports List' Subject: RE: curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3 The quick way to build the latest curl on FreeBSD 9.1 is to pass DISABLE_VULNERABILITIES to the make command. Its probably a good idea to leave your audit db alone, for this task. cd /usr/ports/ftp/curl make -DDISABLE_VULNERABILITIES For portmaster this takes the form of portmaster -m -DDISABLE_VULNERABILITIES ftp/curl I'm unfamiliar with portupgrade. Regards, Dewayne ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org Leslie, et al, It has just been brought to my attention that the portaudit database was updated to reflect Xin Li's patch to curl. Thank-you John Marshall. Perform a portaudit -F and the curl build will proceed successfully. Regards, Dewayne. ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org I get portaudit -F portaudit: Command not found I understand that I need to install portaudit but should it really be necessary? Can you explain why I didn't have this problem on the 8.3 system. There's no portaudit installed on that machine either? Thanks /Leslie ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
curl fails to upgrade on 9.1-RELEASE-p3 but succeeds on 8.3
=== Cleaning for curl-7.24.0_4 === curl-7.24.0_4 has known vulnerabilities: curl-7.24.0_4 is vulnerable: cURL library -- heap corruption in curl_easy_unescape WWW: http://portaudit.FreeBSD.org/01cf67b3-dc3b-11e2-a6cd-c48508086173.html = Please update your ports tree and try again. *** [check-vulnerable] Error code 1 Stop in /usr/ports/ftp/curl. *** [build] Error code 1 Stop in /usr/ports/ftp/curl. === make failed for ftp/curl === Aborting update === Update for ftp/curl failed === Aborting update === Killing background jobs I've done this upgrade on a 8.3 system without problems, but it stops on my 9.1 laptop. Ports tree is updated. /Leslie ___ freebsd-ports@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-ports To unsubscribe, send any mail to freebsd-ports-unsubscr...@freebsd.org
