>Number:         19479
>Category:       pkg
>Synopsis:       pkgsrc waits until package is built to check for security alert
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Dec 20 16:35:00 PST 2002
>Closed-Date:
>Last-Modified:
>Originator:     John Franklin
>Release:        NetBSD 1.5.3
>Organization:
John Franklin
franklin@elfie.org
ICBM: N37 12'54", W80 27'14" Z+2100'
>Environment:
	
	
System: NetBSD elfie.org 1.5.3 NetBSD 1.5.3 (ELFIE-$Revision: 1.127.2.4 $) #0: Fri Dec 20 16:24:38 EST 2002 franklin@elfie.org:/usr/src/sys/arch/alpha/compile/ELFIE alpha
Architecture: alpha
Machine: alpha
>Description:
	
The pkgsrc system waits until the package in question is built and installed
before alerting the user that the package has a security alert on it.  Hours
or days may have been spent (especially with slower machines or network
connections) to fetch and build the package before the warning is issued.
>How-To-Repeat:
	
cd /usr/pkgsrc
cvs update -r netbsd-1-5-PATCH003
cd www/w3m
make install
>Fix:
	
Add checks early on in the make process that a package has a security 
alert issued for it.
>Release-Note:
>Audit-Trail:
>Unformatted: