pkg audit

Reply: Matthew Seaman : "Re: pkg audit"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: LuMiWa <lumiwa_at_dismail.de>
Date: Sat, 25 Mar 2023 12:18:48 UTC

Hi!

I did run pkg audit -F today and my question is if is still safe to use
Internet with all of this vulnerabilities, please? Thank you.


 pkg audit -F
vulnxml file up-to-date
libXpm-3.5.13 is vulnerable:
  libXpm -- Issues handling XPM files
  CVE: CVE-2022-4883
  CVE: CVE-2022-44617
  CVE: CVE-2022-46285
  WWW:
 https://vuxml.FreeBSD.org/freebsd/38f213b6-8f3d-4067-91ef-bf14de7ba518.html

xorg-server-21.1.4_1,1 is vulnerable:
  xorg-server -- Security issue in the X server
  CVE: CVE-2023-0494
  WWW:
https://vuxml.FreeBSD.org/freebsd/6cc63bf5-a727-4155-8ec4-68b626475e68.html

  xorg-server -- Multiple security issues in X server extensions
  CVE: CVE-2022-4283
  CVE: CVE-2022-46344
  CVE: CVE-2022-46343
  CVE: CVE-2022-46342
  CVE: CVE-2022-46341
  CVE: CVE-2022-46340
  WWW:
  https://vuxml.FreeBSD.org/freebsd/9fa7b139-c1e9-409e-bed0-006aadcf5845.html

curl-7.88.1 is vulnerable:
  curl -- multiple vulnerabilities
  CVE: CVE-2023-27538
  CVE: CVE-2023-27537
  CVE: CVE-2023-27536
  CVE: CVE-2023-27535
  CVE: CVE-2023-27534
  CVE: CVE-2023-27533
  WWW:
https://vuxml.FreeBSD.org/freebsd/0d7d104c-c6fb-11ed-8a4b-080027f5fec9.html

4 problem(s) in 3 installed package(s) found.

-- 
“If you have reasons to love someone, you don’t love them.”
― Slavoj Žižek