aboutsummaryrefslogtreecommitdiffstats
path: root/databases
diff options
context:
space:
mode:
authorfeld <feld@FreeBSD.org>2015-07-19 05:27:10 +0800
committerfeld <feld@FreeBSD.org>2015-07-19 05:27:10 +0800
commit7255f883621d1e5d405aad97b9003e593ee06bd5 (patch)
treefb6ca67a28c7fb05b7058eb48667c08e6d91724d /databases
parent6887be7f2fba263ffbae331696cdb49c2f6dbe87 (diff)
downloadfreebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.tar.gz
freebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.tar.zst
freebsd-ports-gnome-7255f883621d1e5d405aad97b9003e593ee06bd5.zip
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched Security: CVE-2015-3152 Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r--databases/percona56-client/Makefile4
-rw-r--r--databases/percona56-client/pkg-message15
2 files changed, 17 insertions, 2 deletions
diff --git a/databases/percona56-client/Makefile b/databases/percona56-client/Makefile
index 8260fac019a2..ce1a374dd599 100644
--- a/databases/percona56-client/Makefile
+++ b/databases/percona56-client/Makefile
@@ -2,14 +2,14 @@
# $FreeBSD$
PORTNAME= percona
-PORTREVISION= 1
+PORTREVISION= 2
PKGNAMESUFFIX= 56-client
COMMENT= Multithreaded SQL database (client)
MASTERDIR= ${.CURDIR}/../percona56-server
-PKGMESSAGE= mustnotexist
+PKGMESSAGE= ${.CURDIR}/pkg-message
PATCHDIR= ${.CURDIR}/files
PLIST= ${.CURDIR}/pkg-plist
diff --git a/databases/percona56-client/pkg-message b/databases/percona56-client/pkg-message
new file mode 100644
index 000000000000..2cf54a1cf930
--- /dev/null
+++ b/databases/percona56-client/pkg-message
@@ -0,0 +1,15 @@
+* * * * * * * * * * * * * * * * * * * * * * * *
+
+Please be aware the database client is vulnerable
+to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM".
+You may find more information at the following URL:
+
+http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html
+
+Although this database client is not listed as
+"affected", it is vulnerable and will not be
+receiving a patch. Please take note of this when
+deploying this software.
+
+* * * * * * * * * * * * * * * * * * * * * * * *
+