diff options
author | feld <feld@FreeBSD.org> | 2015-07-19 05:27:10 +0800 |
---|---|---|
committer | feld <feld@FreeBSD.org> | 2015-07-19 05:27:10 +0800 |
commit | 7255f883621d1e5d405aad97b9003e593ee06bd5 (patch) | |
tree | fb6ca67a28c7fb05b7058eb48667c08e6d91724d /databases | |
parent | 6887be7f2fba263ffbae331696cdb49c2f6dbe87 (diff) | |
download | freebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.tar.gz freebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.tar.zst freebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.zip |
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched
Security: CVE-2015-3152
Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r-- | databases/percona56-client/Makefile | 4 | ||||
-rw-r--r-- | databases/percona56-client/pkg-message | 15 |
2 files changed, 17 insertions, 2 deletions
diff --git a/databases/percona56-client/Makefile b/databases/percona56-client/Makefile index 8260fac019a2..ce1a374dd599 100644 --- a/databases/percona56-client/Makefile +++ b/databases/percona56-client/Makefile @@ -2,14 +2,14 @@ # $FreeBSD$ PORTNAME= percona -PORTREVISION= 1 +PORTREVISION= 2 PKGNAMESUFFIX= 56-client COMMENT= Multithreaded SQL database (client) MASTERDIR= ${.CURDIR}/../percona56-server -PKGMESSAGE= mustnotexist +PKGMESSAGE= ${.CURDIR}/pkg-message PATCHDIR= ${.CURDIR}/files PLIST= ${.CURDIR}/pkg-plist diff --git a/databases/percona56-client/pkg-message b/databases/percona56-client/pkg-message new file mode 100644 index 000000000000..2cf54a1cf930 --- /dev/null +++ b/databases/percona56-client/pkg-message @@ -0,0 +1,15 @@ +* * * * * * * * * * * * * * * * * * * * * * * * + +Please be aware the database client is vulnerable +to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM". +You may find more information at the following URL: + +http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html + +Although this database client is not listed as +"affected", it is vulnerable and will not be +receiving a patch. Please take note of this when +deploying this software. + +* * * * * * * * * * * * * * * * * * * * * * * * + |