aboutsummaryrefslogtreecommitdiffstats
path: root/databases
diff options
context:
space:
mode:
authorfeld <feld@FreeBSD.org>2015-07-19 04:55:22 +0800
committerfeld <feld@FreeBSD.org>2015-07-19 04:55:22 +0800
commita4398361d7b1cc62c96901ccec31e88dd8c76c98 (patch)
treefb65d744bdafbbf7270a4fd795eb26ad82469c41 /databases
parent94d3ca1975d20e097f7cbd916880b3a0df1efe29 (diff)
downloadfreebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.tar.gz
freebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.tar.zst
freebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.zip
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched Security: CVE-2015-3152 Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r--databases/mariadb-client/Makefile2
-rw-r--r--databases/mariadb-client/pkg-message15
-rw-r--r--databases/mariadb-server/Makefile2
3 files changed, 18 insertions, 1 deletions
diff --git a/databases/mariadb-client/Makefile b/databases/mariadb-client/Makefile
index 3cbff659ee5c..9644f0003da6 100644
--- a/databases/mariadb-client/Makefile
+++ b/databases/mariadb-client/Makefile
@@ -2,6 +2,7 @@
PORTNAME= mariadb
PKGNAMESUFFIX= 53-client
+PORTREVISION= 7
UNIQUENAME= ${PORTNAME}${PKGNAMESUFFIX}
@@ -24,6 +25,7 @@ CONFLICTS= mariadb5[4-9]-client-* \
PATCHDIR= ${.CURDIR}/files
PLIST= ${.CURDIR}/pkg-plist
+PKGMESSAGE= ${.CURDIR}/pkg-message
MANS= mysql_config.1 mysql_upgrade.1 mysql.1 mysqladmin.1 \
mysqlbinlog.1 mysqlbug.1 mysqlcheck.1 \
diff --git a/databases/mariadb-client/pkg-message b/databases/mariadb-client/pkg-message
new file mode 100644
index 000000000000..2cf54a1cf930
--- /dev/null
+++ b/databases/mariadb-client/pkg-message
@@ -0,0 +1,15 @@
+* * * * * * * * * * * * * * * * * * * * * * * *
+
+Please be aware the database client is vulnerable
+to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM".
+You may find more information at the following URL:
+
+http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html
+
+Although this database client is not listed as
+"affected", it is vulnerable and will not be
+receiving a patch. Please take note of this when
+deploying this software.
+
+* * * * * * * * * * * * * * * * * * * * * * * *
+
diff --git a/databases/mariadb-server/Makefile b/databases/mariadb-server/Makefile
index 48f093b43c82..87ff39e2a3cc 100644
--- a/databases/mariadb-server/Makefile
+++ b/databases/mariadb-server/Makefile
@@ -2,7 +2,7 @@
PORTNAME= mariadb
PORTVERSION= 5.3.12
-PORTREVISION= 6
+PORTREVISION?= 6
CATEGORIES= databases ipv6
MASTER_SITES= http://ftp.osuosl.org/pub/mariadb/${PORTNAME}-${PORTVERSION}/kvm-tarbake-jaunty-x86/ \
http://mirrors.supportex.net/mariadb/${PORTNAME}-${PORTVERSION}/kvm-tarbake-jaunty-x86/ \