The port is currently failing due to two vulnerabilities: https://vuxml.FreeBSD.org/freebsd/c4292768-5273-4f17-a267-c5fe35125ce4.html https://vuxml.FreeBSD.org/freebsd/75091516-6f4b-4059-9884-6727023dc366.html Both were filed on March 8th, and both were addressed by RedHat/CentOS the next day with: http://rhn.redhat.com/errata/RHSA-2016-0370.html The change for the port is simple enough -- just replace -2 with -5 in the nss-util RPM-version and update distinfo-files. But vuln.xml is harder...
Created attachment 172488 [details] nss diff There's a new update to nss packages. Here's the diff.
Created attachment 172489 [details] vuln.xml change And the vuln.xml part seems easy too - 3.20_1 is the patched version of the port.
A commit references this bug: Author: tijl Date: Mon Sep 5 21:31:45 UTC 2016 New revision: 421398 URL: https://svnweb.freebsd.org/changeset/ports/421398 Log: Update to nss-softokn 3.14.3-23.3.el6_8. PR: 208385 Submitted by: Piotr Kubaj <pkubaj@anongoth.pl> Changes: head/security/linux-c6-nss/Makefile head/security/linux-c6-nss/distinfo.i386 head/security/linux-c6-nss/distinfo.x86_64 head/security/linux-c6-nss/pkg-plist.i386 head/security/linux-c6-nss/pkg-plist.x86_64
A commit references this bug: Author: tijl Date: Mon Sep 5 21:40:38 UTC 2016 New revision: 421399 URL: https://svnweb.freebsd.org/changeset/ports/421399 Log: Fix the version range for a linux-c6-nss vulnerability. PR: 208385 Changes: head/security/vuxml/vuln.xml