Firefox-esr & firefox vulnerabilities does not let install firefox browser- override was needed

DragonFlyBSD / DPorts

The dedicated application build system for DragonFly BSD

Other

89 stars 44 forks source link

Firefox-esr & firefox vulnerabilities does not let install firefox browser- override was needed #91

Closed edwardma closed 10 years ago

edwardma commented 10 years ago

Did a git pull to upgrade my dports tree and when tried to "make install" in dports/www/ firefox-esr and firefox dirs. I get: CVE: ########## WWW http://portaudit.FreeBSD.org/985d4d6c-cfbd-11e3-a003-b4b52fce4ce8.html => Please update your ports tree and try again *\ error code 1

I needed to override this by: make -DDISABLE_VULNERABILITIES

jrmarino commented 10 years ago

unfortunately this happens constantly with firefox. It's sometimes vulnerable before we publish the package! Since this issue was open, the latest firefox was packaged and published as part of the regular cycle work.

That's about as good as it gets. This will probably happened again, if it hasn't already. This frequency doesn't give much confidence about security does it?

edwardma commented 10 years ago

Thank you for the tip. I guess I don't need to report it if it happens again. I still have confidence. I'm happy with what is available at the time. thanks for the hard work maintaining the dports; I like them.

best regards ed