| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Feature safe: yes
|
|
|
|
|
|
|
|
| |
- Added entry for multiple vulnerabilities in cacti 0.8.7f
- Updated ziproxy entry to satisfy "make tidy"
Approved by: itetcu (mentor, implicit)
Feature safe: yes
|
|
|
|
|
| |
Approved by: itetcu (mentor, implicit), maintainer (implicit)
Feature safe: yes
|
|
|
|
|
|
|
|
|
|
| |
PR: ports/147844
Submitted by: pgollucci (myself)
Reviewed by: portmgr (flz)
Discussed with: portmgr (pav)
Tested by: make checksum
Feature safe: yes
|
|
|
|
|
| |
Feature safe: yes
Approved by: delphij
|
|
|
|
|
|
| |
PR: ports/148008
Submitted by: ehaupt@
Feature safe: yes
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- No shlib bump.
- This version works with libassuan 2.x and is needed to fix the build of
security/gpa due to dependency conflicts.
- Add LICENSE
PR: ports/148061
- Fix the build of security/gpa with libassuan 2.x
- Patch for server.c taken from gpa svn.
- Add LICENSE while here.
PR: ports/148062
Submitted by: Jason E. Hale <bsdkaffee@gmail.com> (maintainer)
Feature safe: yes
|
|
|
|
|
|
|
|
|
|
| |
- Introduce OPTIONS (enable GUI, but disable graph rendering since
`x11-toolkits/qwt5' is built with Qt Designer plugin by default, which
pulls rather heavy `devel/qt4-designer' dependency)
- Remove now-inaccurate pkg-message; please consult README instead
- Get rid of pkg-plist and simplify port overall
Feature safe: yes
|
|
|
|
|
|
|
| |
PR: ports/147863
Submitted by: maintainer
Approved by: tabthorpe (mentor)
Feature safe: yes
|
|
|
|
|
|
| |
- Use ${ECHO_CMD} instead of ${ECHO} directly
Feature safe: yes
|
|
|
|
|
|
| |
PR: 147778
Submitted by: Gerard Seibert <gerard@seibercom.net> (maintainer)
Feature safe: yes
|
|
|
|
|
|
|
| |
to PRs.
Hat: portmgr
Feature safe: yes
|
|
|
|
|
|
|
| |
PR: ports/147130
Submitted by: Damian Gerow <dgerow at afflictions dot org>
Approved by: maintainer timeout (skv - 3 weeks)
Feature safe: yes
|
|
|
|
|
|
| |
php4-gd-4.4.9_4.
Requested by: Michael Gmelin <mg bindone de>
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* New command --passwd for GPG.
* Fixes a regression in 2.0.14 which prevented unprotection of new
or changed gpg-agent passphrases.
* Make use of libassuan 2.0 which is available as a DSO.
For the port:
* Since libassuan is now a shared lib, move it LIB_DEPENDS
* Remove now-spurious CONFLICTS
Approved by: maintainer
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Fixed a resource problem with LDAP CRLs.
* Fixed a bad EOF detection with HTTP CRLs.
* Made "dirmngr-client --url --load-crl URL" work.
* New option --ignore-cert-extension.
* Make use of libassuan 2.0 which is available as a DSO.
For the port:
* Add the verify target to check the PGP signature of the distfile
* Since libassuan is now a shared lib, move it LIB_DEPENDS
* The infrastructure for disabling NLS was already present, so add an OPTION
Approved by: maintainer
|
|
|
|
|
|
| |
PR: 147850
Submitted by: Eric F Crist <ecrist@secure-computing.net>
Approved by: itetcu@ (mentor)
|
| |
|
| |
|
| |
|
|
|
|
| |
Reviewed by: tmclaugh
|
|
|
|
| |
Approved by: pgj, tabthorpe (mentors)
|
|
|
|
| |
Allow slave ports to override PORTREVISION
|
|
|
|
|
| |
PR: 147846
Submitted by: Sofian Brabez <sbrabez@gmail.com> (maintainer)
|
| |
|
|
|
|
| |
While I'm here update to the current version of libassuan-1 (1.0.5)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Unfortunately version 2.0.0 is largely incompatible with version 1.x, so it
is necessary to have a stopgap measure while ports that depend on libassuan
can be updated. In conversation with the maintainers of the dependent ports
it was originally considered ideal to prepare updates for the ports first,
then upgrade everything to libassuan 2.x en masse. Since no action has
arisen on that front, go with plan B:
Copy security/libassuan to security/libassuan-1, and update the dependent
ports accordingly. Because this is (intended to be) a _temporary_ measure,
and because no updates for libassuan 1.x are anticipated, and because the
hope is that it can be removed sooner rather than later, it's a copy instead
of a repocopy.
|
|
|
|
|
| |
PR: ports/147663
Submitted by: Marko Njezic <sf@maxempire.com> (maintainer)
|
| |
|
|
|
|
| |
Approved by: garga (mentor, implicit)
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Reported by: pointyhat
|
|
|
|
|
|
|
| |
And by adding some G5-specific code in mpcpucache.c to detect cacheline sizes.
PR: ports/147696
Submitted by: nwhitehorn@
|
| |
|
|
|
|
|
| |
PR: 147787
Submitted by: Nagilum
|
|
|
|
|
|
|
|
|
| |
- Fix BUILD_DEPENDS
- Change maintainer to perl@
Changes: http://cpansearch.perl.org/src/APOCAL/POE-Component-SSLify-0.20/Changes
PR: ports/147510 [1]
Submitted by: Jase Thew <freebsd@beardz.net> [1]
|
|
|
|
| |
Approved by: pgj (mentor)
|
|
|
|
|
| |
PR: 147432
Submitted by: Sofian Brabez <sbrabez@gmail.com>
|
| |
|
|
|
|
| |
Approved by: daniel@roe.ch (previous maintainer) via private e-mail
|
| |
|
|
|
|
|
| |
With Hat: perl@
Changes: http:/search.cpan.org/dist/PerlCryptLib/Changes
|
|
|
|
| |
works with non-standard build settings.
|
|
|
|
|
|
| |
PR: based on ports/146365
Submitted by: Alex Kozlov <spam at rm-rf.kiev.ua>
Approved by: maintainers timeout (two weeks)
|
|
|
|
| |
Noticed by: itetcu@
|
| |
|
|
|
|
|
|
|
|
| |
indirectly pulled in by dependencies, has a serious performance
problem.
- Bum PORTREVISION
Requested by: Andy Dills <andy@xecu.net> (via private mail)
|
|
|
|
|
|
| |
- Kill 2 dead mirrors in security/ruby-blowfish
With Hat: ruby@
|
|
|
|
| |
With Hat: ruby@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
"key strengthening" to make the complexity of a brute-force attack arbitrarily
high. PBKDF2 uses any other cryptographic hash or cipher (by convention,
usually HMAC-SHA1, but Crypt::PBKDF2 is fully pluggable), and allows for an
arbitrary number of iterations of the hashing function, and a nearly unlimited
output hash size (up to 2**32 - 1 times the size of the output of the backend
hash). The hash is salted, as any password hash should be, and the salt may
also be of arbitrary size.
See also: RFC2898, PKCS#5 version 2.0: http://tools.ietf.org/html/rfc2898
WWW: http://search.cpan.org/dist/Crypt-PBKDF2/
PR: ports/146847
Submitted by: Victor Popov <v.a.popov at gmail.com>
|
|
|
|
|
| |
Security: CVE-2010-1633
this problem was already fixed in 1.0.0 with option WITH_DTLS_BUGS
|
|
|
|
|
| |
PR: 146833
Submitted by: Joris Dedieu <joris.dedieu@gmail.com> (maintainer)
|
| |
|
|
|
|
|
| |
PR: 147478
Submitted by: Anderson Eduardo <anderson@secover.com.br>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
of the Kaspersky Lab's applications into a separate folder.
With the help of the utility you can download updates for selected
Kaspersky Lab's applications installed either in your network or at
a home PC. The utility has a function for saving downloaded updates
and autopatches in a local folder, a network folder connected as a
disc to the computer file system, or onto a flash-carrier.
WWW: http://support.kaspersky.com/updater?level=2
PR: ports/147116
Submitted by: Gvozdikov Veniamin <g.veniamin at googlemail.com>
|
|
|
|
|
| |
PR: 147433
Submitted by: Bapt <baptiste.daroussin@gmail.com> (maintainer)
|
| |
|
|
|
|
|
| |
PR: 147443
Submitted by: Anish Mistry <amistry@am-productions.biz> (maintainer)
|
|
|
|
|
|
|
| |
WWW: http://search.cpan.org/dist/Crypt-Simple/
PR: ports/147284
Submitted by: Alexander Kriventsov <avk at vl.ru>
|
|
|
|
|
|
|
|
|
|
|
| |
replace shebang-lines /bin/bash -> /bin/sh
bump portrevision (changed files)
based on:
PR: ports/147472
Submitted by: Olli Hauer <ohauer@gmx.de>
Approved by: miwi (mentor)
|
| |
|
| |
|
| |
|
|
|
|
| |
Hat: portmgr
|
|
|
|
| |
Hat: portmgr
|
| |
|
|
|
|
|
|
| |
PR: ports/147330
Submitted by: Eric F Crist <ecrist@secure-computing.net>
Approved by: itetcu@ (mentor)
|
| |
|
|
|
|
| |
Hat: portmgr
|
| |
|
|
|
|
| |
Security: d42e5b66-6ea0-11df-9c8d-00e0815b8da8
|
|
|
|
|
| |
default but a user could build sudo with SUDO_SECURE_PATH defined or turn
it on in sudoers.
|
| |
|
|
|
|
|
| |
PR: ports/147195
Submitted by: Pavel Pankov <pankov_p@mail.ru> (maintainer)
|
|
|
|
| |
Approved by: delphij@(ports-security override)
|
|
|
|
| |
Hat: portmgr
|
| |
|
| |
|
|
|
|
|
|
|
|
|
| |
an elementary quantum optics process.
This port contains the user library and a CLI/GUI application
to access such devices.
WWW: http://www.idquantique.com/
|
|
|
|
|
|
|
|
|
| |
an elementary quantum optics process.
This port contains the kernel driver to access Quantis
PCI and PCIe devices.
WWW: http://www.idquantique.com/
|
| |
|
|
|
|
|
| |
PR: ports/146148
Submitted by: Gavin <ggcameron@gmail.com>
|
| |
|
| |
|
|
|
|
|
| |
PR: ports/146933
Submitted by: Damian Gerow <dgerow@afflictions.org> (maintainer)
|
|
|
|
| |
- Pass maintainership to miwi@
|
| |
|
| |
|
|
|
|
|
|
|
|
|
| |
[RG aka rubygems.org]
PR: ports/147005
Submitted by: pgollucci (myself)
Approved by: portmgr (pav)
With Hat: ruby@
|
|
|
|
| |
- Remove dynamic plist generation
|
|
|
|
| |
- Update my mail to FreeBSD
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
PR: 146939
Submitted by: wollman
Security: MIT krb5 Security Advisory 2010-005
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
HackageDB:
archivers/hs-zip-archive-ghc -> archivers/hs-zip-archive
devel/hs-binary-ghc -> devel/hs-binary
devel/darcs -> devel/hs-darcs
devel/hs-language-c-ghc -> devel/hs-language-c
devel/hs-lazysmallcheck-ghc -> devel/hs-lazysmallcheck
devel/hs-pcre-light-ghc -> devel/hs-pcre-light
devel/hs-utf8-string-ghc -> devel/hs-utf8-string
graphics/hs-HGL-ghc -> graphics/hs-HGL
ports-mgmt/porte -> ports-mgmt/hs-porte
security/hs-digest-ghc -> security/hs-digest
textproc/hs-haxml -> textproc/hs-HaXml
textproc/hs-highlighting-kate-ghc -> textproc/hs-highlighting-kate
textproc/hs-polyparse-ghc -> textproc/hs-polyparse
textproc/pandoc -> textproc/hs-pandoc
x11/hs-x11-ghc -> x11/hs-X11
x11/hs-x11-xft-ghc -> x11/hs-X11-xft
x11/xmobar -> x11/hs-xmobar
x11-toolkits/hs-opengl-ghc -> x11-toolkits/hs-OpenGL
x11-toolkits/hs-OpenGLRaw-ghc -> x11-toolkits/hs-OpenGLRaw
x11-toolkits/hs-GLURaw-ghc -> x11-toolkits/hs-GLURaw
x11-toolkits/hs-glut-ghc -> x11-toolkits/hs-GLUT
x11-wm/xmonad -> x11-wm/hs-xmonad
x11-wm/xmonad-contrib -> x11-wm/hs-xmonad-contrib
|
| |
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
|
|
|
|
|
| |
- Update MASTER_SITE (GNU)
- Note: shlib version bumped
|
|
|
|
|
|
| |
- Update MASTER_SITE (GNU)
- Remove custom patch (fixed upstream)
- Note: shlib version bumped
|
|
|
|
|
| |
Thans to Mike Harding <mvharding@gmail.com> for allowing me to use one of his
systems to debug this problem.
|
|
|
|
|
|
|
| |
WWW: http://search.cpan.org/~pjb/Crypt-Tea/
PR: ports/145303
Submitted by: Steve Wills <steve@mouf.net>
|
|
|
|
|
|
| |
PR: ports/146384
Submitted by: pgollucci@ (myself), others
Approved by: maintainer timeout (cy@, 16 days)
|
| |
|
|
|
|
|
|
| |
to email.
Hat: portmgr
|
|
|
|
| |
Reported by: pointyhat
|
|
|
|
|
|
| |
PR: ports/146102
Submitted by: Alex Forencich <alex@alexforencich.com>
Approved by: maintainer (timeout > 14days)
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
|
|
|
|
|
|
|
| |
bsd.cabal.options.mk
- Fix ports broken with non-default options
Triggered by: Yuri Pankov <yuri.pankov@gmail.com>
|
|
|
|
|
|
|
|
|
| |
- Prefer HTTP mirrors as they are generally more accessible than FTP ones
- Install support scripts in addition to datafiles
- Simplify PORTDOCS handling, utilize BUILD_WRKSRC, and clean up things
PR: ports/146114 [*]
Submitted by: lme
|
|
|
|
|
|
|
|
| |
http://developer.pidgin.im/wiki/ChangeLog for the list of changes. Also,
enable Tcl 8.5 support.
PR: 146607
Submitted by: dougb
|
|
|
|
|
| |
PR: ports/146615
Reported by: Gerard Seibert <gerard at seibercom.net>
|
|
|
|
|
|
| |
the dependency on the archivers/xz port conditional on OSVERSION.
Approved by: MAINTAINER
|
|
|
|
|
|
| |
dependency when LLVM is not set.
Submitted by: Guy Antony Halse <G.Halse@ru.ac.za>
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
| |
1) fix for bug #528467 (C_UnwrapKey didn't work with DSA and EC private keys)
2) fix for bug #526231 (C_GetAttributeValue didn't correctly work)
3) partial fix for bug #564011 (object ID race on keypairgen)
4) use sqlite3 in ports (there is no reason to compile the bundled one)
Approved by: no objections by marcus and gnome team
|
|
|
|
|
|
|
| |
This bug has been known for years, but have been ignored
upstream (see https://rt.cpan.org/Public/Bug/Display.html?id=33954).
Submitted by: brian
|
|
|
|
|
|
|
|
| |
correctly cleaned up.
PR: ports/136611
Submitted by: Thomas Quinot <thomas@cuivre.fr.eu.org>
Approved by: Joseph Scott <joseph@josephscott.org> (maintainer)
|
| |
|
|
|
|
| |
Reported by: pointyhat
|
|
|
|
| |
- Import OPTIONS
|
|
|
|
|
|
| |
PR: ports/146594
Submitted by: Eric F Crist <ecrist@secure-computing.net>
Approved by: itetcu@ (mentor)
|
|
|
|
|
| |
Approved by: miwi (secteam), beat (co-mentor)
Security: http://www.redmine.org/news/39
|
|
|
|
|
| |
Reported by: Jonathan Chen <jonc@chen.org.nz>
Obtained from: https://bugzilla.gnome.org/show_bug.cgi?id=611002
|
|
|
|
| |
to satisfy dependencies.
|
| |
|
|
|
|
|
|
|
| |
This makes sure that the correct older versions are marked vulnerable
Approved by: itetcu (mentor, implicit)
Security: http://www.vuxml.org/freebsd/3383e706-4fc3-11df-83fb-0015587e2cc1.html
|
|
|
|
|
|
| |
ports which makes possible the direct translation of Cabal package
descriptions to FreeBSD ports. It promises both easier addition and
maintenance for Cabal-based ports.
|
|
|
|
|
|
|
|
| |
- Fixed Tomcat55 entry to mark current PORTREVISION vulnerable
PR: ports/146418
Approved by: itetcu (mentor, implicit)
Security: http://people.freebsd.org/~niels/vuxml/
|
|
|
|
| |
Thanks to: pointyhat
|
|
|
|
|
| |
PR: ports/146508
Submitted by: Sunpoet Po-Chuan Hsieh <sunpoet@sunpoet.net>
|
| |
|
| |
|
|
|
|
| |
The new version has a much welcomed and useful search ability.
|
|
|
|
| |
With hat on: kde@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
release can be found at http://library.gnome.org/misc/release-notes/2.30/ .
This release brings initial PackageKit support, Upower (replaces power
management part of hal), cuse4bsd integration with HAL and cheese, and a
faster Evolution.
Sadly GNOME 2.30.x will be the last release with FreeBSD 6.X support. This
will also be the last of the 2.x releases. The next release will be the
highly-anticipated GNOME 3.0 which will bring with it a new UI experience.
Currently, there are a few bugs with GNOME 2.30 that may be of note for our
users. Be sure to consult the UPGRADING note or the 2.30 upgrade FAQ at
http://www.freebsd.org/gnome/docs/faq230.html for specific upgrading
instructions, and the up-to-date list of known issues.
This release features commits by avl, ahze, bland, marcus, mezz, and myself.
The FreeBSD GNOME Team would like to thank Anders F Bjorklund for doing the
initual packagekit porting.
And the following contributors & testers for there help with this release:
Eric L. Chen
Vladimir Grebenschikov
Sergio de Almeida Lenzi
DomiX
walder
crsd
Kevin Oberman
Michal Varga
Pavel Plesov
Bapt
kevin
and ITetcu for two exp-run
PR: ports/143852
ports/145347
ports/144980
ports/145830
ports/145511
|
|
|
|
| |
Approved by: maintainer, itetcu (mentor, implicit)
|
|
|
|
|
|
|
| |
after login.
PR: ports/145302
Submitted by: Damien Bobillot
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The sample config file comes predefined with the new settings for
snort.org downloads, which will change in June 2010.
BE SURE to read through the master pulledpork.conf file thoroughly,
as there are many changes as of snort 2.8.6.0 that WILL affect you,
even if you are NOT yet running 2.8.6.0!
Features:
* Flowbit tracking!
* capability to specify base ruleset (see README.RULESETS) in master
pulledpork.conf file.
* Handle preprocessor and sensitive-information rulesets
* Ability to define sid ranges in any of the sid modification .conf files
* Ability to specify references in any of the sid modification .conf files
* Ability to ignore entire rule categories (i.e. not include them)
* Specify locally stored rules files that need their meta data included
in sid-msg.map
* Ability to specify your arch for so_rules
* Rules are written to only two distinct files
* Support metadata based VRT recommended rulesets
* Maintain an optional rule changelog
* Support for setting rules to Drop
* Support for multi-line rules
* Rule modification, i.e. disabling of specific rules within rule sets
* Outputs changes in rules files if any rules have been added / modified
* Compares new rules files with current rule sets
* Automated retrieval of certain variables (Distro, Snort Version.. etc)
* Downloads latest rules file
* Verifies MD5 of local rules file
* If MD5 has not changed from snort.org.. doesn't fetch files again
* handle both rules and so_rules
* Capability to generate stub files
WWW: http://code.google.com/p/pulledpork/
PR: ports/146239
Submitted by: Olli Hauer
|
| |
|
|
|
|
|
| |
PR: 145635
Submitted by: olli hauer <ohauer@gmx.de>
|
|
|
|
|
| |
PR: 146312
Submitted by: Ports Fury
|
|
|
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
Security: http://www.wireshark.org/security/wnpa-sec-2010-03.html
Security: http://www.wireshark.org/security/wnpa-sec-2010-04.html
Security: http://piwik.org/blog/2010/04/piwik-0-6-security-advisory/
|
|
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
Security: CVE-2010-1132
Security: http://archives.neohapsis.com/archives/fulldisclosure/2010-03/0139.html
|
|
|
|
|
|
| |
Changes: http://www.keepassx.org/changelog
PR: ports/146259
Submitted by: Gvozdikov Veniamin <g.veniamin xx googlemail.com>
|
|
|
|
|
|
|
|
|
| |
- Fixed vlc topic format (lower case, portname first)
PR: ports/146337
Approved by: itetcu (mentor, implicit)
Security: http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-April/000090.html
Security: http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com
|
|
|
|
|
|
|
|
| |
Submitted by: Matthias Andree
Obtained from: http://rt.openssl.org/Ticket/Display.html?id=2234
- add more DTLS bugfixes
Obtained from: http://sctp.fh-muenster.de/
|
|
|
|
| |
- Changelog: http://search.cpan.org/src/SULLR/IO-Socket-SSL-1.33/Changes
|
|
|
|
| |
CAST5 block cipher.
|
|
|
|
|
| |
PR: 146072
Submitted by: plosher
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
(256 CVE names to go)
Approved by: itetcu (mentor, implicit)
Security: http://people.freebsd.org/~niels/vuxml/
|
|
|
|
| |
- Try to fix build on sparc64 disabling LLVM/JIT build
|
| |
|
|
|
|
|
| |
PR: ports/146289
Submitted by: Dan Lukes dan obluda cz
|
|
|
|
|
| |
PR: ports/146288
Submitted by: Dan Lukes dan obluda cz
|
|
|
|
|
| |
PR: ports/146286
Submitted by: Dan Lukes dan obluda cz
|
|
|
|
|
| |
PR: ports/146285
Submitted by: Dan Lukes dan obluda cz
|
|
|
|
|
|
| |
PR: ports/142819
Submitted by: Scot Hetzel <swhetzel@gmail.com>
Approved by: maintainer timeout (1 month)
|
|
|
|
|
| |
PR: 146283
Submitted by: Dan Lukes dan obluda cz
|
|
|
|
|
| |
PR: ports/144965
Submitted by: Kimo <kimor79@yahoo.com>
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
PR: ports/146234
Submitted by: Petr Rehor <prehor@gmail.com> (maintainer)
Approved by: wxs@ (mentor)
|
|
|
|
|
|
|
| |
(294 CVE names to go)
Approved by: miwi (secteam)
Security: http://people.freebsd.org/~niels/vuxml/
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
|
|
|
|
|
| |
PR: 146091
Submitted by: Andrei Lavreniyuk <andy.lavr@gmail.com> (maintainer)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
2010-02-20 databases/mysql-connector-java50: Old version: please use databases/mysql-connector-java instead
2010-04-15 databases/p5-DBIx-Class-HTML-FormFu: This module is obsoleted by www/p5-HTML-FormFu-Model-DBIC
2010-04-29 devel/py-rbtree: "does not build with new pyrex and it's not active maintained"
2010-04-08 devel/tavrasm: No longer maintained, use devel/avra instead
2010-04-27 mail/postfix23: it's no longer maintened by upstream developer
2010-04-30 math/libgmp4: Use math/gmp instead.
2010-04-04 misc/ezload: does not build with new USB stack in 8-STABLE
2010-01-31 misc/gkrellmbgchg: use misc/gkrellmbgchg2
2010-03-04 multimedia/kbtv: no longer under development by author
2010-02-16 net/plb: broken; abandoned by author; use net/relayd or www/nginx instead
2010-04-30 security/vpnd: This software is no longer developed
2010-03-15 textproc/isearch: abandoned upstream, uses an obsolete version of GCC, not used by any other port
2010-04-02 www/caudium12: No longer maintained upstream, please switch to www/caudium14
2010-03-08 www/p5-Catalyst-Plugin-Cache-FileCache: Deprecated by module author in favor of www/p5-Catalyst-Plugin-Cache
|
|
|
|
|
|
|
| |
discoverd while working towards the 1.1.0 release. These vulnerabilities could potentially allow for a specially crafted file to execute code.
PR: ports/146099
Submitted by: Joseph S. Atkinson <jsa@wickedmachine.net> (maintainer)
|
|
|
|
| |
Approved by: itetcu (mentor, implicit)
|
|
|
|
|
| |
Reviewed by: Ryan Steinmetz (maintainer)
Approved by: itetcu (mentor, implicit)
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
- bump PORTREVISION
PR: ports/144709
Submitted by: Rainer Duffner <rainer_AT_ultra-secure dot de>
|
|
|
|
|
|
|
| |
other gecko applications to be able to build with nss.
PR: ports/144994
Submitted by: mi
|
| |
|
|
|
|
|
|
|
|
|
| |
this gives us more eyes and brings us inline with perl@
Current ruby@ members (stas, dinoex, pgollucci)
http://wiki.freebsd.org/Ruby
Discussed with: stas on #bsdports
|
|
|
|
|
|
|
| |
- Added new reference to the recent cacti issue
Approved by: remko (secteam)
Security: http://developer.joomla.org/security/
|
|
|
|
| |
base Kerberos distribution, creating krb5-appl.
|
|
|
|
| |
the MIT KRB5 applications (now in a separate tarball and port).
|
|
|
|
|
|
|
| |
from krb5-l7. The old krb5-17 port has been removed. All this is in
preparation for the krb5 1.8.1 commit.
PR: 145968
|
| |
|
| |
|
|
|
|
|
| |
PR: ports/145762
Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer)
|
|
|
|
|
|
|
|
|
| |
PR: ports/146021
PR: ports/146022
Approved by: remko (secteam)
Security: http://seclists.org/bugtraq/2010/Apr/200
Security: http://docs.moodle.org/en/Moodle_1.9.8_release_notes
Security: http://www.bonsai-sec.com/en/research/vulnerability.php
|
|
|
|
|
|
|
|
|
| |
- Use ${PORTNAME} variable where possible
PR: ports/145524
Submitted by: Laurent LEVIER <llevier@argosnet.com> (maintainer)
Tweaked by: sahil@ (myself)
Approved by: wxs@ (mentor)
|
|
|
|
|
|
|
| |
mail/movemail port vulnerable to an old format string vulnerability.
Approved by: remko (secteam)
Security: http://www.ubuntu.com/usn/USN-919-1
|
|
|
|
|
| |
PR: 145772
Submitted by: Alex Keda
|
|
|
|
|
| |
PR: 145772
Submitted by: Alex Keda
|
|
|
|
|
| |
PR: 145772
Submitted by: Alex Keda
|
|
|
|
|
| |
PR: 145772
Submitted by: Alex Keda
|
|
|
|
|
| |
PR: 145772
Submitted by: Alex Keda
|
|
|
|
|
| |
PR: ports/145730
Submitted by: sylvio@FreeBSD.org
|
|
|
|
|
|
| |
Approved by: remko (secteam)
Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-004.txt
Security: CVE-2010-1320
|
|
|
|
| |
Approved by: itetcu (mentor)
|
|
|
|
|
|
|
|
|
| |
HTTP or HTTPS. Its purpose is to provide a single, portable application
that offers stable web protocol fuzzing capabilities.
WWW: http://www.owasp.org/index.php/Category:OWASP_JBroFuzz
Approved by: itetcu (mentor)
|
|
|
|
|
| |
Reviewed by: Ryan Steinmetz (maintainer)
Approved by: itetcu (mentor)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- png: libpng decompression denial of service
- e107: code execution and XSS vulnerabilities
- pidgin: multiple remote denial of service vulnerabilities
- fetchmail: denial of service vulnerability
PR: ports/145885
PR: ports/145857
Approved by: remko (secteam)
Security: CVE-2010-0996
Security: CVE-2010-0997
Security: CVE-2010-1167
Security: CVE-2010-0277
Security: CVE-2010-0420
Security: CVE-2010-0423
Security: CVE-2010-0205
|
|
|
|
|
|
|
|
|
| |
- snortsam patch for snort has changed
- ref: http://lists.snortsam.net/pipermail/snortsam-discussion/2010-March/000502.html
- bump PORTREVISION
PR: ports/145632
Submitted by: olli hauer <ohauer_AT_gmx dot de>
|
|
|
|
|
|
|
|
|
|
|
|
| |
- curl: libcurl buffer overflow vulnerability
- irssi: multiple vulnerabilities
- ejabberd: queue overload denial of service vulnerability
Approved by: remko (secteam)
Security: http://curl.haxx.se/docs/adv_20100209.html
Security: http://support.process-one.net/browse/EJAB-1173
Security: http://xforce.iss.net/xforce/xfdb/57790
Security: http://xforce.iss.net/xforce/xfdb/57791
|
|
|
|
|
|
|
|
| |
can be used during discovery or security testing of web applications.
WWW: http://code.google.com/p/fuzzdb/
Approved by: itetcu (mentor)
|
|
|
|
|
|
| |
PR: ports/144487
Submitted by: ale
Approved by: portmgr (-exp run by erwin)
|
|
|
|
|
|
|
|
|
|
| |
- Fixed indent on mahara entry
- Fixed title of KDM entry
Approved by: remko (secteam)
Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-001.txt
Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-002.txt
Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-003.txt
|
| |
|
| |
|
|
|
|
|
| |
Approved by: remko (secteam)
Security: http://www.debian.org/security/2010/dsa-2030
|
|
|
|
|
| |
Reviewed by: Ryan Steinmetz (maintainer)
Approved by: itetcu (mentor)
|
|
|
|
|
|
|
| |
when empty
PR: ports/145741
Submitted by: sahil
|
|
|
|
|
| |
PR: ports/145760
Submitted by: sbrabez@gmail.com
|
| |
|
|
|
|
|
|
|
|
|
| |
the entry assigned to the original sudoedit vulnerability[1]. The new
one (CVE-2010-1163) was just assigned. I believe the one assigned by CVE
folks is the proper one to use.
[0]: http://sudo.ws/sudo/alerts/sudoedit_escalate2.html
[1]: 018a84d0-2548-11df-b4a3-00e0815b8da8
|
|
|
|
| |
Security: 1a9f678d-48ca-11df-85f8-000c29a67389
|
|
|
|
| |
018a84d0-2548-11df-b4a3-00e0815b8da8.
|
|
|
|
| |
Security: MITKRB5-SA-2010-001, MITKRB5-SA-2010-002, MITKRB5-SA-2010-003.
|
|
|
|
| |
Approved by: tabthorpe (mentor)
|
|
|
|
| |
Reported by: pointyhat
|
|
|
|
| |
Approved by: tabthorpe (mentor), delphij (secteam)
|
|
|
|
|
| |
PR: ports/145620
Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)
|
|
|
|
| |
Approved by: miwi (mentor)
|
|
|
|
| |
Approved by: miwi (mentor)
|
| |
|
|
|
|
|
| |
Reported by: pointyhat
Approved by: portmgr (itetcu, erwin - blanket)
|
|
|
|
|
| |
- Use ${TOUCH} instead of touch
- Fix pkg-plist to delete directories installed out of PREFIX (on /var)
|
|
|
|
|
|
|
|
| |
- Fix pkg-plist to delete directories installed out of PREFIX (on /var) [1]
- Bump PORTREVISION because of [1]
PR: ports/145448 [1]
Submitted by: sahil@ [1]
|
|
|
|
|
|
|
| |
local python doesn't have this
PR: ports/145520
Submitted by: Michael Scheidell <scheidell at secnap.net>
|
|
|
|
|
|
|
|
|
|
| |
are used for a website. It can detect content management systems
(CMS), blogging platforms, stats/analytics packages, javascript
libraries, servers, etc..
WWW: http://www.morningstarsecurity.com/research/whatweb
Approved by: itetcu (mentor)
|
|
|
|
|
|
|
|
| |
Upgraded to version 1.30b
Submitted by: Ryan Steinmetz (maintainer)
Approved by: itetcu (mentor)
Reported by: QAT
|
|
|
|
|
| |
Submitted by: Ryan Steinmetz (maintainer)
Approved by: itetcu (mentor)
|
| |
|
|
|
|
| |
Approved by: marcus
|
|
|
|
|
|
| |
PR: ports/145523
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Approved by: itetcu (mentor, implicit)
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
PR: 145439
Submitted by: Daniel Roethlisberger <daniel@roe.ch> (maintainer)
|
| |
|
|
|
|
|
|
|
|
| |
- Document ZendFramework - security issues in bundled Dojo library
Approved by: secteam (remko)
Security: http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/
Security: http://framework.zend.com/security/advisory/ZF2010-07
|