diff options
author | feld <feld@FreeBSD.org> | 2015-07-19 04:55:22 +0800 |
---|---|---|
committer | feld <feld@FreeBSD.org> | 2015-07-19 04:55:22 +0800 |
commit | a4398361d7b1cc62c96901ccec31e88dd8c76c98 (patch) | |
tree | fb65d744bdafbbf7270a4fd795eb26ad82469c41 /databases | |
parent | 94d3ca1975d20e097f7cbd916880b3a0df1efe29 (diff) | |
download | freebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.tar.gz freebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.tar.zst freebsd-ports-gnome-a4398361d7b1cc62c96901ccec31e88dd8c76c98.zip |
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched
Security: CVE-2015-3152
Security: 36bd352d-299b-11e5-86ff-14dae9d210b8
Diffstat (limited to 'databases')
-rw-r--r-- | databases/mariadb-client/Makefile | 2 | ||||
-rw-r--r-- | databases/mariadb-client/pkg-message | 15 | ||||
-rw-r--r-- | databases/mariadb-server/Makefile | 2 |
3 files changed, 18 insertions, 1 deletions
diff --git a/databases/mariadb-client/Makefile b/databases/mariadb-client/Makefile index 3cbff659ee5c..9644f0003da6 100644 --- a/databases/mariadb-client/Makefile +++ b/databases/mariadb-client/Makefile @@ -2,6 +2,7 @@ PORTNAME= mariadb PKGNAMESUFFIX= 53-client +PORTREVISION= 7 UNIQUENAME= ${PORTNAME}${PKGNAMESUFFIX} @@ -24,6 +25,7 @@ CONFLICTS= mariadb5[4-9]-client-* \ PATCHDIR= ${.CURDIR}/files PLIST= ${.CURDIR}/pkg-plist +PKGMESSAGE= ${.CURDIR}/pkg-message MANS= mysql_config.1 mysql_upgrade.1 mysql.1 mysqladmin.1 \ mysqlbinlog.1 mysqlbug.1 mysqlcheck.1 \ diff --git a/databases/mariadb-client/pkg-message b/databases/mariadb-client/pkg-message new file mode 100644 index 000000000000..2cf54a1cf930 --- /dev/null +++ b/databases/mariadb-client/pkg-message @@ -0,0 +1,15 @@ +* * * * * * * * * * * * * * * * * * * * * * * * + +Please be aware the database client is vulnerable +to CVE-2015-3152 - SSL Downgrade aka "BACKRONYM". +You may find more information at the following URL: + +http://www.vuxml.org/freebsd/36bd352d-299b-11e5-86ff-14dae9d210b8.html + +Although this database client is not listed as +"affected", it is vulnerable and will not be +receiving a patch. Please take note of this when +deploying this software. + +* * * * * * * * * * * * * * * * * * * * * * * * + diff --git a/databases/mariadb-server/Makefile b/databases/mariadb-server/Makefile index 48f093b43c82..87ff39e2a3cc 100644 --- a/databases/mariadb-server/Makefile +++ b/databases/mariadb-server/Makefile @@ -2,7 +2,7 @@ PORTNAME= mariadb PORTVERSION= 5.3.12 -PORTREVISION= 6 +PORTREVISION?= 6 CATEGORIES= databases ipv6 MASTER_SITES= http://ftp.osuosl.org/pub/mariadb/${PORTNAME}-${PORTVERSION}/kvm-tarbake-jaunty-x86/ \ http://mirrors.supportex.net/mariadb/${PORTNAME}-${PORTVERSION}/kvm-tarbake-jaunty-x86/ \ |