aboutsummaryrefslogtreecommitdiffstats
path: root/databases
diff options
context:
space:
mode:
authorfeld <feld@FreeBSD.org>2015-07-19 05:23:54 +0800
committerfeld <feld@FreeBSD.org>2015-07-19 05:23:54 +0800
commit6887be7f2fba263ffbae331696cdb49c2f6dbe87 (patch)
tree73e3f22fcb35c855c69f5c3e846378660f617cff /databases
parent2d9e1ed99c38c0373e8724f33f6eeb0d2b4c6a3a (diff)
downloadfreebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.tar.gz
freebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.tar.zst
freebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.zip
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched Security: CVE-2015-3152 Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r--databases/percona55-client/Makefile3
-rw-r--r--databases/percona55-client/pkg-message15
2 files changed, 17 insertions, 1 deletions
diff --git a/databases/percona55-client/Makefile b/databases/percona55-client/Makefile
index c7a67f072362..bd0b95483da9 100644
--- a/databases/percona55-client/Makefile
+++ b/databases/percona55-client/Makefile
@@ -1,13 +1,14 @@
# $FreeBSD$
PORTNAME= percona
+PORTREVISION= 1
PKGNAMESUFFIX= 55-client
COMMENT= Multithreaded SQL database (client)
MASTERDIR= ${.CURDIR}/../percona55-server
-PKGMESSAGE= mustnotexist
+PKGMESSAGE= ${.CURDIR}/pkg-message
PATCHDIR= ${.CURDIR}/files
PLIST= ${.CURDIR}/pkg-plist
diff --git a/databases/percona55-client/pkg-message b/databases/percona55-client/pkg-message
new file mode 100644
index 000000000000..2cf54a1cf930
--- /dev/null
+++ b/databases/percona55-client/pkg-message
@@ -0,0 +1,15 @@
+* * * * * * * * * * * * * * * * * * * * * * * *
+
+Please be aware the database client is vulnerable
+to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM".
+You may find more information at the following URL:
+
+http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html
+
+Although this database client is not listed as
+"affected", it is vulnerable and will not be
+receiving a patch. Please take note of this when
+deploying this software.
+
+* * * * * * * * * * * * * * * * * * * * * * * *
+