FreeBSD Port: devel/icu icu-58.2_2,1 is vulnerable:
Jung-uk Kim
jkim at FreeBSD.org
Fri May 5 20:34:15 UTC 2017
On 05/05/2017 15:46, Jason de Cordoba wrote:
> Hi there,
>
> encountered a stop on upgrading icu which was updated today in ports on
> fbsd11.0p9
>
> It appears the icu 58.2_2,1 is also vulnerable?
> http://www.freshports.org/devel/icu/
> http://www.freshports.org/commit.php?category=devel&port=icu&files=yes&message_id=201705042144.v44LivS4081269@repo.freebsd.org
>
> Thanks,
> Jason
>
> ===>>> All >> icu-58.2_1,1 (2/10)
>
> ===> Cleaning for icu-58.2_2,1
> ===> icu-58.2_2,1 has known vulnerabilities:
> icu-58.2_2,1 is vulnerable:
> icu -- multiple vulnerabilities
> CVE: CVE-2017-7868
> CVE: CVE-2017-7867
> WWW:
> https://vuxml.FreeBSD.org/freebsd/607f8b57-7454-42c6-a88a-8706f327076d.html
No, you just need to update audit database as many people already
suggested, i.e., "pkg audit -F", or wait for some time.
Jung-uk Kim
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-office/attachments/20170505/3cbb65c8/attachment.sig>
More information about the freebsd-office
mailing list