diff options
author | feld <feld@FreeBSD.org> | 2015-07-19 05:23:54 +0800 |
---|---|---|
committer | feld <feld@FreeBSD.org> | 2015-07-19 05:23:54 +0800 |
commit | 6887be7f2fba263ffbae331696cdb49c2f6dbe87 (patch) | |
tree | 73e3f22fcb35c855c69f5c3e846378660f617cff /databases | |
parent | 2d9e1ed99c38c0373e8724f33f6eeb0d2b4c6a3a (diff) | |
download | freebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.tar.gz freebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.tar.zst freebsd-ports-gnome-6887be7f2fba263ffbae331696cdb49c2f6dbe87.zip |
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched
Security: CVE-2015-3152
Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r-- | databases/percona55-client/Makefile | 3 | ||||
-rw-r--r-- | databases/percona55-client/pkg-message | 15 |
2 files changed, 17 insertions, 1 deletions
diff --git a/databases/percona55-client/Makefile b/databases/percona55-client/Makefile index c7a67f072362..bd0b95483da9 100644 --- a/databases/percona55-client/Makefile +++ b/databases/percona55-client/Makefile @@ -1,13 +1,14 @@ # $FreeBSD$ PORTNAME= percona +PORTREVISION= 1 PKGNAMESUFFIX= 55-client COMMENT= Multithreaded SQL database (client) MASTERDIR= ${.CURDIR}/../percona55-server -PKGMESSAGE= mustnotexist +PKGMESSAGE= ${.CURDIR}/pkg-message PATCHDIR= ${.CURDIR}/files PLIST= ${.CURDIR}/pkg-plist diff --git a/databases/percona55-client/pkg-message b/databases/percona55-client/pkg-message new file mode 100644 index 000000000000..2cf54a1cf930 --- /dev/null +++ b/databases/percona55-client/pkg-message @@ -0,0 +1,15 @@ +* * * * * * * * * * * * * * * * * * * * * * * * + +Please be aware the database client is vulnerable +to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM". +You may find more information at the following URL: + +http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html + +Although this database client is not listed as +"affected", it is vulnerable and will not be +receiving a patch. Please take note of this when +deploying this software. + +* * * * * * * * * * * * * * * * * * * * * * * * + |