≡ Menu

FreeBSD WARNING: Vulnerability Database Out of Date, Checking Anyway Error and Solution

Q. While installing any FreeBSD port I’m getting following error message:
===> FreeBSD WARNING: Vulnerability Database Out of Date, Checking Anyway

How do I fix this warning message?

A. You need to install portaudit package to get rid of this error message. portaudit command checks installed packages for known vulnerabilities and generates reports including references to security advisories. If you have a vulnerable package installed, you are advised to update or deinstall it immediately. his package also installs a script into /usr/local/etc/periodic/security that regularly updates this database and includes a report of vulnerable packages in the daily security report.

Login as the root and type the following command to fix this issue:
# cd /usr/ports/ports-mgmt/portaudit
# make install clean
# /usr/local/sbin/portaudit -Fda

Now you should able to install any port without vulnerability database out of date error.

{ 4 comments… add one }
  • Guy July 1, 2008, 7:20 am

    shouldn’t that be
    cd /usr/ports/ports-mgmt/portaudit

  • nixCraft July 1, 2008, 7:44 am


    Thanks for the heads up. The FAQ has been updated.

  • Rianav January 9, 2010, 7:48 pm

    How long can this be experted to take, on say, a 2007 laptop? And with 500 ports installed? Thank you.

  • hplogsdon February 12, 2010, 6:47 am

    @Rianav Not long.

    portaudit checks the database of installed packages/ports against a list of known to be vulnerable ports. It doesn’t necessarily have to check every file every port installs every time its run. On a VM I have running right now, it took about 2 seconds to report anything back. It has appx 300 ports installed.

Leave a Comment

   Tagged with: , , , , , , , , , , , , ,