aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - Update to 1.1 (minor bugfixes)sergei2005-10-052-6/+5
|
* [maintainer update] update security/pamtesteredwin2005-10-052-3/+3
| | | | | | | update security/pamtester to 0.1.2 PR: ports/86905 Submitted by: Andrew Thompson <thompsa@FreeBSD.org>
* Update 1.8.1 --> 1.8.2cy2005-10-056-9/+9
|
* Update 1.4.1 --> 1.4.2cy2005-10-0516-132/+12
|
* Update to DAT 4596jeh2005-10-052-3/+3
|
* Update update_dat to use fetch and be a little more robust. Thanks tojeh2005-10-051-16/+14
| | | | Sztankay Zsolt for the work.
* Update to 20051003mnag2005-10-042-25/+24
| | | | | | | Unmark FORBIDDEN PR: 86878 Approved by: rob@debank.tv (maintainer), pav (mentor)
* rinetd >= 0.62_1 has no more vulnerabilitiesgarga2005-10-041-2/+5
|
* - bump SHLIB versiondinoex2005-10-041-2/+3
| | | | | | | The API of openssl 0.9.8 ist compatible but not identical. This version bump might break build of all ports that try to include the opessl in base at the same time. That ports should be fixed.
* Changelog:clsung2005-10-043-8/+5
| | | | | | | | | | | | - Fixed major performance problems with recent versions of GNU C++ - Added an implementation of the X9.31 PRNG - Removed the X9.17 and FIPS 186-2 PRNG algorithms - Changed defaults to use X9.31 PRNGs as global PRNG objects - Some cleanups related to the engine code and more (see http://botan.randombit.net/logs/log-14.php) PR: 86589 Submitted by: az (New committer today. Welcome to the zoo :) )
* Update to 4595jeh2005-10-042-3/+3
|
* o Fix whitespace (to tab)mich2005-10-032-6/+6
| | | | | | | o Fix path to database files problem [1] o use %%DATADIR%% while we are here Submitted by: andreas[1]
* Add references to three squid entries.remko2005-10-031-5/+15
| | | | | Submitted by: Thomas-Martin Seck <tmseck at netcologne dot de> (except for the bid's which i added myself).
* Use the <freebsdpr> tag to markup a PR in weex -- remote format stringsimon2005-10-031-1/+1
| | | | vulnerability entry.
* Document a format string vulnerability in ftp/weex.jylefort2005-10-031-0/+30
|
* Document picasm -- buffer overflow vulnerability.simon2005-10-021-0/+33
|
* - Fix MASTER_SITESdinoex2005-10-021-1/+2
|
* Add an URL to the entry of the japanese/uim.nobutaka2005-10-021-1/+1
|
* Document japanese/uim privilege escalation vulnerability.nobutaka2005-10-021-0/+31
|
* Document cfengine -- arbitrary file overwriting vulnerability.simon2005-10-011-0/+32
|
* Mark zsync <= 0.4.1 vulnerable to the zlib buffer overflow vulnerability.remko2005-10-011-0/+5
| | | | Inspired by: gordon's commit
* Add more references to unace -- multiple vulnerabilities entry.simon2005-10-011-0/+3
|
* Add CVE name to an older ProZilla entry.simon2005-10-011-0/+2
|
* Reset maintainer who had turned in his commit bit some time back as he nolinimon2005-10-011-1/+1
| | | | | | longer had time to work on FreeBSD. We appreciate the help in the past. Approved by: alex (former maintainer)
* Update to DAT 4594jeh2005-10-012-3/+3
|
* Update to 1.12skv2005-10-012-3/+3
|
* - Use DOCSDIR, PORTDOCS and NOPORTDOCSgarga2005-09-302-18/+8
| | | | | - Remove one line pkg-plist - Take maintainership
* With portmgr hat on, reset maintainer. There have been several maintainerlinimon2005-09-301-1/+1
| | | | timeouts, and no response to email for more than 2 weeks.
* Update to 2.5.5mnag2005-09-302-17/+16
| | | | Approved by: olive@oban.frmug.org (maintainer via email), pav (mentor)
* Add more references for latest phpmyfaq entry.simon2005-09-301-0/+9
|
* - Add a note that new entries, per convention, should be added to thesimon2005-09-301-5/+11
| | | | | | | | | | | | start of this file. For latest phpmyfaq entry: - Use port directory name as first part of topic. - No need to include information about affected releases in topic (it's somewhat redundant and makes the title longer). - Reindent body with standard FreeBSD Doc Project (more or less) style.
* Document vulnerabilities in www/phpmyfaqvsevolod2005-09-291-0/+25
|
* Update to 4592jeh2005-09-292-3/+3
|
* - Update to 1.1.1-9. For a list of changes since 1.1.0-7 please see themarius2005-09-288-61/+34
| | | | | | | | installed ChangeLog. - Remove the references to the no longer available free license key for private use from pkg-descr and pkg-message. Approved by: netchild
* Chase updated mastersite.linimon2005-09-281-1/+1
| | | | Source: distfile survey
* Remove obsolete mastersite.linimon2005-09-282-3/+1
| | | | Source: distfile survey
* - update to 3.0.18dinoex2005-09-282-21/+11
| | | | | | | | - unbreak on >= 7.0 - set new maintainer Johan van Selst PR: 86645 Submitted by: Johan van Selst
* make it compilable with OpenSSL 0.9.8.ume2005-09-281-0/+12
| | | | | PR: ports/86452 Submitted by: Dirk Meyer <dirk.meyer__at__dinoex.sub.org>
* - s/malloc.h/stdlib.h/ on some files to fix build on amd64 - 7.x [1]garga2005-09-284-37/+7
| | | | | | | | | - change some patches to REINPLACE_CMD [2] PR: ports/86638 [1] Submitted by: maintainer [1] Reworked by: me [2] Approved by: maintainer [2]
* Update to 4590jeh2005-09-272-3/+3
|
* Add tthsum 1.1.0, a command-line utility for generating and checking TTHgarga2005-09-267-0/+88
| | | | | | | message digests. PR: ports/86555 Submitted by: Emanuel Haupt <ehaupt@critical.ch>
* -Remove MANCOMPRESSED macro as it's not requiredcsjp2005-09-251-1/+6
| | | | | | | | | -Introduce do-install target which will use INSTALL_MAN and INSTALL_PROGRAM macros to install the files. This should fix packet build failures. Approved by: kris
* Add a missing dependency.tobez2005-09-251-1/+3
| | | | | Submitted by: Kevin Golding <kevin@caomhin.demon.co.uk> PR: 86556
* - update to 1.03leeym2005-09-252-4/+4
| | | | - assign maintainer to perl@
* Update to 0.32.novel2005-09-242-4/+5
| | | | | PR: 86513 Submitted by: David Thiel (maintainer)
* Add linux_base-suse-9.3 to the zlib entry.remko2005-09-241-0/+5
| | | | Inspired by: trevors commit.
* Mark FORBIDDEN due to arbitrary code execution vulnerability.simon2005-09-241-0/+2
| | | | | Security: http://vuxml.FreeBSD.org/271498a9-2cd4-11da-a263-0001020eed82.html With hat: secteam
* Document clamav -- arbitrary code execution and DoS vulnerabilities.simon2005-09-241-0/+39
|
* - Be consistent and call entries "firefox & mozilla", not the other waysimon2005-09-241-2/+12
| | | | | | around. - Mark latest linux-mozilla port as fixed for recent mozilla vulnerabilities.
* - Document mozilla & firefox -- multiple vulnerabilities.simon2005-09-241-0/+147
| | | | | - Add Mozilla Foundation Security Advisory references to two other firefox/mozilla entries.
* Update to 4589jeh2005-09-242-3/+3
|
* Checking MACHINE_ARCH is deprecated.trevor2005-09-241-1/+1
|
* search.cpan.org redirect reduction canonicalization project, pass 3:fenner2005-09-231-1/+1
| | | | | | | | Refer to all modules using their /dist/Foo/ path instead of via the mishmash of old author path, new author path, module documentation, etc. These are mostly stragglers that should have been caught in pass 2. This pass brought to you by Bill's 102-degree fever during pass 2.
* Update to 4588jeh2005-09-232-3/+3
|
* - presrve downloaded cvd files on deinstalldinoex2005-09-222-6/+6
| | | | Approved by: Rob Evers
* Fix DISTNAME variable.vsevolod2005-09-221-1/+1
| | | | | Reported by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw> Pointy hat to: vsevolod
* Add real references to urban -- stack overflow vulnerabilities.simon2005-09-221-5/+3
|
* Update to 2.0.10 [1]vsevolod2005-09-222-4/+6
| | | | | | | Feed portlint PR: 86426 [1] Submitted by: David Thiel (maintainer) [1]
* Document mozilla & firefox -- command line URL shell command injection.simon2005-09-221-0/+87
|
* - mark BROKEN for FreeBSD >= 7dinoex2005-09-221-2/+8
| | | | - drop maintainership
* Add CVE name for tor -- diffie-hellman handshake flaw.simon2005-09-221-0/+2
|
* Correct package name for entry bind -- buffer overrun vulnerability.simon2005-09-221-1/+2
|
* Add CVE name to an older CUPS issue.simon2005-09-221-0/+2
|
* search.cpan.org redirect reduction canonicalization project, pass 2:fenner2005-09-225-5/+5
| | | | | | | | Refer to all modules using their /dist/Foo/ path instead of via the mishmash of old author path, new author path, module documentation, etc. This pass brought to you by loving, painstaking hand editing.
* search.cpan.org redirect reduction canonicalization project, pass 1:fenner2005-09-2215-15/+15
| | | | | | | | URLs automatically rewritten from /search?dist=Foo or /dist/Foo to /dist/Foo/ (note trailing slash). After a 2002(!) reorganization, this is the preferred way to refer to modules on search.cpan.org. This pass brought to you by http://people.freebsd.org/~fenner/fix-search
* Update to 4587jeh2005-09-212-3/+3
|
* Update to 0.31mnag2005-09-212-3/+3
| | | | | | PR: ports/86386 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Approved by: pav (mentor)
* Upgrade termlog. This fixes termlog on -CURRENT and hopefully the snpcsjp2005-09-212-3/+3
| | | | | | | fixes in -CURRENT will be MFC'ed to RELENG_6 so it will work on all releases again. Approved by: petef
* - update to 0.22leeym2005-09-212-4/+4
|
* Fix build with milter on FreeBSD 4.X.simon2005-09-211-0/+16
|
* update to 2.5.3oliver2005-09-213-17/+18
| | | | | | PR: 86331 Submitted by: oliver Approved by: maintainer
* Update to 4586jeh2005-09-212-3/+3
|
* Update to 4585jeh2005-09-202-3/+3
|
* Reset maintainership of Seamus Venasse who has not responded for some time.erwin2005-09-204-4/+4
| | | | | | | Thank you for your efforts in the past! Noticed by: tobez Approved by: portmgr (self)
* - Update to 0.87pav2005-09-206-38/+4
| | | | | | | | | PR: ports/86276 Submitted by: dawnshade <h-k@mail.ru> Approved by: maintainer timeout (3 days) timeout rushed by simon (secteam hat) Security: CAN-2005-2919, CAN-2005-2920, http://www.secunia.com/advisories/16848/
* - update default to 0.9.8dinoex2005-09-201-15/+18
| | | | - new option WITH_OPENSSL_097
* Fix BUILD_DEPENDS on libpcap for -STABLE, it was overriding the dependencyse2005-09-201-1/+1
| | | | on libnet-devel ...
* Update to 4584jeh2005-09-202-3/+3
|
* Add missed dependency from textproc/py-libxml2 [1]vsevolod2005-09-202-10/+91
| | | | | | | Convert to static plist. PR: 86335 Submitted by: rik <freebsd-ports@rikrose.net>
* Fix the htdig entry, the port version and the VuXML version did notremko2005-09-201-1/+1
| | | | | | align. Reported by: Nic Bellamy <nic at bellamy dot co dot nz>
* Fix the squirrelmail entry since only versions prior to 1.4.5 wereremko2005-09-201-1/+2
| | | | | | affected. Bump modification date accordingly. Reported by: Avinash Piare <avinash at piare dot org>
* Fixed plist.lth2005-09-191-1/+0
| | | | Reported by: pointyhat via kris
* Pamsfs is a PAM module that logs a user into a SFS server onpav2005-09-185-0/+145
| | | | | | | | system login. The primary reason for doing this is to allow users' home-directories to be located on a SFS server. PR: ports/86095 Submitted by: David Thiel <lx@redundancy.redundancy.org>
* FreeBSD 6 no longer adds debug.if_* sysctl variables in its default kernelvs2005-09-186-3/+18
| | | | | | | | (according to the release notes), so our heuristic assumes the module is missing and tries to load it, which fails as the module already exists. PR: ports/86286 Submitted by: maintainer
* Document the following items:remko2005-09-181-0/+60
| | | | | | | o apache -- Certificate Revocation List (CRL) off-by-one vulnerability o squirrelmail -- _$POST variable handling allows for various attacks Reviewed by: simon
* Add p5-Digest-SHA 5.31, Perl extension for SHA-1/224/256/384/512.lth2005-09-185-0/+47
| | | | | PR: ports/84570 Submitted by: Travis Campbell <hcoyote@ghostar.org>
* Fixed plistlth2005-09-171-1/+1
| | | | Reported by: pointyhat via kris
* Update to 0.6.0mnag2005-09-176-140/+15
| | | | | | | | Submitted to ports@ for test. Without reply. PR: ports/83748 Submitted by: Marcus Grando <marcus@corp.grupos.com.br> Approved by: pav (mentor), anders (maintainer timeout, 58 days)
* Update my emailmnag2005-09-175-6/+6
| | | | Approved by: pav (mentor)
* Update to 3.2.2mnag2005-09-163-11/+11
| | | | Approved by: pav (mentor)
* - Update to 3.93garga2005-09-162-3/+3
| | | | | PR: ports/86113 Submitted by: maintainer
* ClusterSSH controls a number of xterm windows via a single graphicalpav2005-09-164-0/+35
| | | | | | | | console window to allow commands to be interactively run on multiple servers over an ssh connection. PR: ports/84970 Submitted by: David Thiel <lx@redundancy.redundancy.org>
* - Add an entry on possible DOS condition regarding NTLM in squidpav2005-09-161-0/+28
| | | | | PR: ports/86179 Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>
* Udate to DAT 4582jeh2005-09-162-3/+3
|
* Add p5-Crypt-NULL 1.02, perl implementation of the NULL encryptionlth2005-09-155-0/+39
| | | | | | | algorithm. PR: ports/84629 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org>
* Update to 0.6.1vsevolod2005-09-153-4/+3
| | | | Submitted by: Yvan Vanhullebus (maintainer)
* - Firewalk port really depends on net/libnet-devel, but the check can be ↵vs2005-09-152-1/+14
| | | | | | | | | satisfied by net/libnet. - BIOCIMMEDIATE is undefined in some cases. PR: ports/86132 Submitted by: Michael Scheidell via maintainer
* Update to 0.4.5.marcus2005-09-154-6/+6
|
* - Update to 0.9.6pav2005-09-155-27/+23
| | | | | | PR: ports/83453 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu> Approved by: bms (maintainer; blanket)
* - Remove dependencies on security/pf, it was removed. pf is in base sincepav2005-09-151-4/+2
| | | | | | 502106 Pointy hat to: pav
* - Remove security/pf and security/authpf ports. They were only useful onpav2005-09-1521-1392/+0
| | | | | | FreeBSD 5.0 - 5.2.1. Requested by: mlaier (maintainer) via linimon
* Document X11 server -- pixmap allocation vulnerability.lesi2005-09-151-0/+33
| | | | Reviewed by: simon
* Update to DAT 4581jeh2005-09-152-3/+3
|
* Drop maintainership, since I'm buried in the $REALLIFE stuff.krion2005-09-141-1/+1
|
* Add signing-party.jylefort2005-09-144-0/+81
| | | | | | | | | | | | | | | | | | | signing-party is a collection for all kinds of PGP/GnuPG related things, including signing scripts, party preparation scripts, etc. * caff: CA - Fire and Forget signs and mails a key * pgp-clean: removes all non-self signatures from key * pgp-fixkey: removes broken packets from keys * gpg-mailkeys: simply mail out a signed key to its owner * gpg-key2ps: generate PostScript file with fingerprint paper strips * gpglist: show who signed which of your UIDs * gpgsigs: annotates list of GnuPG keys with already done signatures * keylookup: ncurses wrapper around gpg --search WWW: http://pgp-tools.alioth.debian.org/ PR: ports/86077 Submitted by: Johan van Selst <johans@stack.nl>
* - Website is gonepav2005-09-141-1/+0
|
* Document unzip -- permission race vulnerability. [1]remko2005-09-141-1/+35
| | | | | | Update the recent htdig entry with it's corrected version. Reviewed by: simon [1]
* Update to DAT 4580jeh2005-09-142-3/+3
|
* change USE_PERL5 to USE_PERL5_BUILD because perl is only needed during theoliver2005-09-131-1/+1
| | | | | | build process Approved by: maintainer
* - Fix WWWgarga2005-09-131-1/+1
| | | | | PR: ports/86042 Submitted by: Marcus Alves Grando <marcus@corp.grupos.com.br>
* Update to DAT 4579jeh2005-09-132-3/+3
|
* Update to 0.3.6b that fixes build with samba 3.0.20.vsevolod2005-09-122-3/+3
| | | | | PR: 86013 Submitted by: Jean Milanez Melo (maintainer)
* Update to 1.9.19lofi2005-09-123-14/+3
|
* Update to 0.9.12lofi2005-09-123-3/+15
|
* Update to 1.16skv2005-09-122-3/+3
|
* Update to 1.11skv2005-09-122-3/+3
| | | | Changes: http://search.cpan.org/src/GAAS/Digest-1.11/Changes
* - Revive CONFLICTS with gnutls-devel [1]novel2005-09-112-4/+3
| | | | | | | - Do not build static libraries [2] Requested by: kris [1] vs [2]
* Document firefox & mozilla -- buffer overflow vulnerability.simon2005-09-111-0/+97
| | | | Prodded by: pav
* - Replace .error with IGNORE to prevent INDEX build failurespav2005-09-111-12/+3
|
* - Only for FreeBSD 4.X and 5.Xpav2005-09-111-0/+4
| | | | Reported by: krismail
* Update to DAT 4578jeh2005-09-102-3/+3
|
* - Update WWWpav2005-09-101-4/+1
|
* - Update to 2.1.0pav2005-09-102-7/+3
| | | | | PR: ports/85899 Submitted by: Rob Evers <rob@debank.tv> (maintainer)
* Don't CONFLICTS with gnutls-devel since it has been removed.novel2005-09-091-2/+0
|
* Update to 0.9.6lawrance2005-09-0923-503/+118
| | | | | | | | | | | | - Add rcng startup - No longer touch pksd.conf, only pksd.conf.sample - Ensure the port builds against db2 from ports by deleting the included version. Add post-patch bits to help this happen. - Submitter takes maintainership PR: ports/85802 Submitted by: Graham Todd <gtodd@bellanet.org> (new maintainer) Approved by: Jason Harris <jharris@widomaker.com> (maintainer)
* Give maintainership to submitterlawrance2005-09-091-1/+1
| | | | | PR: ports/85870 Submitted by: Daniel Roethlisberger <daniel@roe.ch>
* Update to DAT 4577jeh2005-09-092-3/+3
|
* Update to version 3.90krion2005-09-082-3/+4
|
* Assign maintainership to daniel@roe.chkrion2005-09-081-1/+1
| | | | | PR: ports/85855 Submitted by: Daniel Roethlisberger <daniel@roe.ch>
* Update to DAT 4576jeh2005-09-082-3/+3
|
* s/BROKEN/IGNORE/lawrance2005-09-071-1/+1
| | | | | | | | | | | Reported by: linimon Log: Mark broken for OSVERSION >= 500000. Does not build without S/Key libraries and headers. PR: ports/85256 Submitted by: Christoph Weber-Fahr <wefa@tnd37.tnd.arcor.net>
* Mark broken for OSVERSION >= 500000. Does not build withoutlawrance2005-09-071-0/+4
| | | | | | | S/Key libraries and headers. PR: ports/85256 Submitted by: Christoph Weber-Fahr <wefa@tnd37.tnd.arcor.net>
* Forgot to uncomment OPTIONS after testing.novel2005-09-071-4/+4
| | | | Noted by: David Thiel <lx@redundancy.redundancy.org>
* Mark the latest version of cups-base fixed for "xpdf -- disk fill DoSlawrance2005-09-071-2/+2
| | | | vulnerability"
* - Patch file updated to process rule numbers above 999.leeym2005-09-073-10/+2
| | | | | | | | - remove redundant entries in pkg-plist PR: 85189 Submitted by: Michael Butler Reviewed by: Michael Ranner <mranner@inode.at> (maintainer)
* Update to DAT 4575jeh2005-09-072-3/+3
|
* Add ncrypt 0.7.0, advanced AES file encryption tool.garga2005-09-066-0/+72
| | | | | PR: ports/85486 Submitted by: Frank Laszlo <laszlof@vonostingroup.com>
* - Pass maintainership to submitter, since he sent the last patch.garga2005-09-061-1/+1
| | | | | PR: ports/85775 Submitted by: Marcus Alves Grando <marcus@corp.grupos.com.br>
* Update to DAT 4574jeh2005-09-062-3/+3
|
* Update WWW and MASTER_SITES.demon2005-09-062-2/+3
|
* Fix build with openssl-0.9.8.demon2005-09-063-12/+51
| | | | | PR: 85309 Submitted by: Daniel Roethlisberger <daniel@roe.ch>
* Update to 0.4.4.marcus2005-09-064-8/+6
|
* Add IPSec tools port - the new "official" version of racoon,vsevolod2005-09-056-0/+185
| | | | | | | | is the only one which is maintained and have lots of new features. PR: 85544 Submitted by: VANHULLEBUS Yvan <vanhu@netasq.com> Approved by: perky (mentor)
* - clamsmtp 1.5 works only in debug mode.clsung2005-09-053-3/+60
| | | | | | | | | | Included patch fix this bug by moving socket creation after daemonizing as suggested in mailing list clamsmtp-users@lists.sourceforge.net http://sourceforge.net/mailarchive/forum.php?thread_id=8060741&forum_id=42732 - bump PORTREVISION PR: ports/85706 Submitted by: Alex L. Demidov <alexd AT vinf dot ru>
* Revert back to devel/bisonade2005-09-051-1/+1
|
* - Update to 1.1sem2005-09-055-43/+4
| | | | | PR: ports/85585 Submitted by: maintainer
* - Update to 1.1.4sem2005-09-053-4/+5
| | | | | PR: ports/84725 Submitted by: maintainer
* Add forgotten </package> line.remko2005-09-041-0/+1
| | | | Spotted by: simon
* Mark b2evolution prior to 0.9.0.12_2 vulnerable to the XML_RPC remote php ↵remko2005-09-041-1/+5
| | | | | | code injection vulnerability. Inspired by: pav's commit, updating the port.
* - Unbreak vpnc-disconnect by fixing the config.c patchlawrance2005-09-043-19/+18
| | | | | | | | | | - Remove obsolete vpnc-wrapper leftovers to make portlint happy - Use PLIST_FILES and PORTDOCS instead of pkg-plist - Bump PORTREVISION PR: ports/84491 Submitted by: Daniel Roethlisberger <daniel@roe.ch> Approved by: Christian Lackas <delta@lackas.net> (maintainer)
* Document htdig -- cross site scripting vulnerability.remko2005-09-041-0/+29
| | | | Reviewed by: simon
* - Document two squid security related issues.sem2005-09-041-0/+55
| | | | | PR: ports/85688 Submitted by: Thomas-Martin Seck <tmseck@netcologne.de> (squid maintainer)
* Document bind9 -- denial of service.remko2005-09-041-0/+44
| | | | | | | Also merge the FreeBSD-SA-05:12.bind9 advisory in the entry. [1] Suggested by: simon [1] Reviewed by: simon
* Bcrypt is a blowfish file encryption utility which aims for cross-platformsem2005-09-044-0/+54
| | | | | | | portability. PR: ports/84798 Submitted by: Emanuel Haupt <ehaupt@critical.ch>
* ipguard listens network for ARP packets. All permitted MAC/IP pairssem2005-09-047-0/+83
| | | | | | | | | | listed in 'ethers' file. If it recieves one with MAC/IP pair, which is not listed in 'ethers' file, it will send ARP reply with configured fake address. This will prevent not permitted host to work properly in this ethernet segment. Especially Windows(TM) hosts. PR: ports/84627, ports/85671 Submitted by: SeaD <sead@mail.ru>
* Document bind -- buffer overrun vulnerabilityremko2005-09-041-0/+28
|
* - update to 2.15leeym2005-09-042-4/+5
| | | | | PR: 85550 Submitted by: Tsung-Han Yeh <snowfly@yuntech.edu.tw>
* - version 1.5 must start with '-d 4'clsung2005-09-032-3/+3
| | | | | (Thanks to Jack Raats <jack AT raats dot org>) - bump PORTREVISION
* Update to 4.1.9.novel2005-09-033-7/+22
| | | | | PR: 85673 Submitted by: David Thiel (maintainer)
* Correctly fix RUN_DEPENDSade2005-09-031-1/+1
|
* Update to DAT 4573jeh2005-09-032-3/+3
|
* Add p5-Net-Daemon-SSL 1.0, perl5 extension for portable daemons.garga2005-09-035-0/+42
| | | | | PR: ports/85125 Submitted by: Simon Dick <simond@irrelevant.org>
* Fix build on 4-stable: Use ports version of libpcap since system versionse2005-09-031-1/+7
| | | | is too old.
* Compile errors on ia64 and sparc64, do not build on those archs.se2005-09-031-0/+1
|
* - Update to 0.1.0.14garga2005-09-026-10/+28
| | | | | PR: ports/85635 Submitted by: maintainer
* Add a more or less bogus reference section to the last entry, to make itsimon2005-09-021-0/+7
| | | | | | | a valid entry. The reference simply references the VuXML entry itself, but at least it fixes the build for now. Missed by: simon
* Document stack overflow vulnerabilities in games/urban.jylefort2005-09-021-0/+22
| | | | Approved by: simon
* Update to DAT 4572jeh2005-09-022-3/+3
|
* - Switch bison dependency to bison175 portpav2005-09-021-1/+2
|
* Add p5-Net-OpenID-Server.jylefort2005-09-025-0/+50
| | | | | | | | | | | | | | | | | | | | OpenID is a decentralized identity system, but one that's actually decentralized and doesn't entirely crumble if one company turns evil or goes out of business. An OpenID identity is just a URL. You can have multiple identities in the same way you can have multiple URLs. All OpenID does is provide a way to prove that you own a URL (identity). Anybody can run their own site using OpenID, and anybody can be an OpenID server, and they all work with each other without having to register with or pay anybody to "get started". An owner of a URL can pick which OpenID server to use. WWW: http://www.openid.net PR: ports/85284 Submitted by: Alex Kapranoff <kappa@rambler-co.ru>
* Add p5-Data-Password.jylefort2005-09-025-0/+37
| | | | | | | | | | | | | Data::Password checks potential passwords for crackability. It checks that the password has the appropriate length, that it has enough character groups, that it does not contain the same characters repeatedly, that it does not contain ascending or descending characters, or characters close to each other on the keyboard. It also searches for the password in the ispell word file. WWW: http://search.cpan.org/~razinf/Data-Password/ PR: ports/84513 Submitted by: ports@c0decafe.net
* - Update to 4.2p1garga2005-09-025-146/+70
| | | | | PR: ports/85578 Submitted by: Marcus Grando <marcus@corp.grupos.com.br>
* Fix build with openldap23 libraries.vsevolod2005-09-011-1/+1
| | | | Submitted by: skv
* Remove mastersite which has gone away.linimon2005-09-012-3/+1
|
* Update snortsms to version 1.0.0lawrance2005-09-013-7/+41
| | | | | | | - what a lovely number! PR: ports/85500 Submitted by: J Randolph <snortsms@servangle.net> (maintainer)
* - Update to 0.4.5pav2005-09-013-24/+35
| | | | | PR: ports/85332 Submitted by: ports@c0decafe.net <ports@c0decafe.net> (maintainer)
* Update to DAT 4571jeh2005-09-012-3/+3
|
* - Update to 0.76sergei2005-08-312-5/+5
|
* Update to 0.9skv2005-08-313-7/+7
|
* - Update to 2.0.9pav2005-08-312-7/+30
| | | | | | | | | - samhainrc.sample file is chgrp'd to wheel - RUNAS_USER now defaults to "yule" properly - XML logging is now on by default and tunable PR: ports/85448 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* - Bandaid compilation on FreeBSD 5.2.1pav2005-08-311-0/+4
| | | | | | PR: ports/84131 Submitted by: Thorolf <thorolf@grid.einherjar.de> Approved by: maintainer timeout (1 month)
* - Revert back to MASTER_SITE_MOZILLApav2005-08-311-5/+2
|
* The distfile was rerolled to include a dbm subdirectory (which we no longermarcus2005-08-312-9/+6
| | | | | use), and a RELEASE bump. There is no need to reinstall this port if you already have it installed.
* Now that misc/compat5x exists use the FreeBSD 5 binary on FreeBSD > 600004marius2005-08-311-4/+4
| | | | | | | rather than the FreeBSD 4 binary. Prodded by: ache Approved by: netchild
* Update to 1.8.novel2005-08-312-10/+10
| | | | | | PR: 85476 Submitted by: Andrej Zverev <az@inec.ru> Approved by: Frank Laszlo (maintainer)
* Update to DAT 4570jeh2005-08-312-3/+3
|
* - Distfile was rerolled; put old distfile on MASTER_SITE_LOCAL for nowpav2005-08-301-2/+5
| | | | Reported by: few
* - Pass maintainership of gnutls, libtasn1 and opencdk ports tosergei2005-08-303-3/+3
| | | | Roman Bogorodskiy (novel) who kindly agreed to look after them
* - Remove gnutls-devel port: this development version of GnuTLS librarysergei2005-08-304-122/+0
| | | | | is no longer being released upstream since 1.2.0 update of the stable branch. Thus, it does not make sense that we keep it anymore.
* - Disconnect gnutls-devel from the parent Makefile prior to removalsergei2005-08-301-1/+0
|
* upgrade to 0.0.16ijliao2005-08-304-4/+7
| | | | | PR: 85388 Submitted by: Ports Fury
* upgrade to 0.0.22ijliao2005-08-303-3/+5
| | | | | PR: 85389 Submitted by: Ports Fury
* Remove old library compatibility checking.sumikawa2005-08-301-4/+0
| | | | It was necessary for 4.0-RELEASE.
* Mark latest evolution port version as fixed wrt. evolution -- remotesimon2005-08-301-1/+2
| | | | format string vulnerabilities.
* - Update to 2.0.2 that brings these upstream changes:garga2005-08-309-162/+9
| | | | | | | | | | - fix bug that would exhaust file descriptors as the routing table was modified (this had already been part of the port previously) - fix bug that would block the management socket until the peer connected - fix pkitool sh incompatibilities (from NetBSD) PR: ports/85299 Submitted by: maintainer
* Update to DAT 4569jeh2005-08-302-4/+3
|
* Add entry for fswiki's vuln.kuriyama2005-08-291-0/+22
|
* - Update to 1.06pav2005-08-294-16/+84
| | | | | | | | | - Provide options for new mathematical backends - Transfer maintainership to submitter PR: ports/83040 Submitted by: Wesley Shields <wxs@csh.rit.edu> Approved by: Afarsec <afarsec@012.net.il> (maintainer)
* - Update to 1.3.6sem2005-08-293-9/+9
| | | | | | | | - Update WWW in pkg-descr - Pass maintainership to submitter PR: ports/84998 Submitted by: Emanuel Haupt <ehaupt@critical.ch>
* - Update to 1.5.0sem2005-08-295-24/+39
| | | | | | | | - Reformat pkg-descr - Pass maintainership to submitter PR: ports/85002 Submitted by: Emanuel Haupt <ehaupt@critical.ch>
* - Update to 0.75sergei2005-08-293-10/+30
| | | | - Chase changed location of bglibs files
* Update to DAT 4568jeh2005-08-292-3/+3
|
* Dante 1.1.15 is no longer affected by the fd_set bitmap index overflow.niels2005-08-291-2/+5
| | | | | | Updated the version in VuXML (was 0). Approved by: nectar (mentor)
* Update amavisd-new to 2.3.3. [1]lesi2005-08-293-5/+3
| | | | | | | Start amavisd as root so that it works both with and without chroot. [2] PR: ports/85241 [1], ports/83988 [2] Submitted by: Blaz Zupan (maintainer)
* - Update to 1.5clsung2005-08-292-3/+3
| | | | | PR: 85404 Submitted by: Marcus Grando <marcus AT corp dot grupos dot com dot br>
* - Fill out part of the std. VuXML template missed in the last entry.simon2005-08-291-2/+3
| | | | | | | - Mark acroread 7.0.1 as fixed for acroread -- XML External Entity vulnerability. [1] Reported by: Sverre H. Huseby [1]
* Update to 1.3lioux2005-08-293-96/+13
|
* Update to 0.2.7krion2005-08-282-3/+3
|
* Chase the libsoup shared lib version.marcus2005-08-281-1/+2
|
* Chase the Gaim 1.5.0 update.marcus2005-08-284-4/+4
|
* Document evolution -- remote format string vulnerabilities.simon2005-08-281-0/+43
| | | | Approved by: portmgr (blanket, VuXML)
* Document pam_ldap -- authentication bypass vulnerability.simon2005-08-281-0/+32
| | | | Approved by: portmgr (blanket, VuXML)
* Update to 1.8.0.marcus2005-08-284-11/+8
| | | | | | | Security: Fixes a security vulnerability described at http://www.kb.cert.org/vuls/id/778916 Requested by: simon Approved by: portmgr (implicit)
* Mark phpgroupware as vulnerable to pear-XML_RPC -- remote PHP codesimon2005-08-281-1/+6
| | | | | | | injection vulnerability. Reported by: olgeni Approved by: portmgr (blanket, VuXML)
* Document pcre -- regular expression buffer overflow.simon2005-08-271-0/+29
| | | | Approved by: portmgr (blanket, VuXML)
* Fix build on 6.xkrion2005-08-261-0/+3
| | | | | Submitted by: lesi Approved by: portmgr (self)
* Fix build on 6.xkrion2005-08-241-0/+14
| | | | Approved by: portmgr (self)
* Fix for broken build under 4.X.cy2005-08-241-4/+7
| | | | Approved by: portsmgr (clement)
* Mark latest awstats port as fixed for awstats -- arbitrary codesimon2005-08-241-1/+2
| | | | | | execution vulnerability. Approved by: portmgr (blanket, VuXML)
* Document mail/elm remote buffer overflow vulnerability.sem2005-08-241-0/+34
| | | | | | PR: ports/85225 Submitted by: Kevin Day <toasty@dragondata.com> (elm maintainer) Approved by: portmgr (blanket, VuXML)
* Fix a typo in the new rc file, where documentation didn't match thegarga2005-08-226-6/+9
| | | | | | | | | actual variables. PR: ports/85156 Submitted by: maintainer Reported by: Benjamin Lutz <benlutz@datacomm.ch> Approved by: portmgr (krion)
* Fix so the distfile can be manually fetched for package buildinglawrance2005-08-201-16/+11
| | | | | | PR: ports/84573 Submitted by: Adi Pircalabu <apircalabu@bitdefender.com> (maintainer) Approved by: portmgr (krion)
* - Security update to version 2.0.1, fixing four denial of service bugs,garga2005-08-2021-168/+471
| | | | | | | | | | | | | | | | | CAN-2005-2531, CAN-2005-2532, CAN-2005-2533, CAN-2005-2534 - Drop old init script and add a modern rcNG script in its place, requested by Matthias Grimm and Dirk Gouders (although the script below is one I, Matthias Andree, wrote). It can automatically load tun/tap drivers. - move pkg-message to files/pkg-message.in, revise it, list it in SUB_FILES to expand ${PREFIX}. - print pkg-message after installation from port - switch to official "make check" as smoke-test, rather than wiring our own. - prefer LZO2 in most situations, as OpenVPN will pick up LZO2 rather than LZO1 if both are installed. PR: ports/85109 Submitted by: maintainer Approved by: portmgr (krion)
* Document four vulnerabilities in openvpn:remko2005-08-191-0/+123
| | | | | | | | | | * openvpn -- multiple TCP clients connecting with the same certificate at the same time can crash the server * openvpn -- denial of service: malicious authenticated &quot;tap&quot; client can deplete server virtual memory * openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients * openvpn -- denial of service: client certificate validation can disconnect unrelated clients Approved by: portsmgr (blanket VuXML) Submitted by: Matthias Andree <matthias dot andree at gmx dot de>
* - Update to 0.6.1.sem2005-08-198-514/+55
| | | | | | - Unbreak. Approved by: portmgr (krion)
* Update the MASTER_SITES. This is the only part of PR/84815 what wasjeh2005-08-181-1/+2
| | | | | | | approved for commit during the port freeze. Submitted by: Marcus Grando <marcus@corp.grupos.com.br> Approved by: portmgr (mcl)
* Also mark phpAdsNew as affected by "pear-XML_RPC -- remote PHP codesimon2005-08-181-1/+6
| | | | | | injection vulnerability". Approved by: portmgr (blanket, VuXML)
* Add the fixed version so that people do not get a stale portaudit when the ↵remko2005-08-181-7/+7
| | | | | | | | | update is there. Also fix some indentation that i overlooked. Noticed by: simon (both of the items) Approved by: portsmgr (blanket VuXML)
* Document tor -- diffie-hellman handshake flaw.remko2005-08-181-0/+31
| | | | | Submitted by: Michal Bartkowiak <michal at nonspace dot net> Approved by: portsmgr (blanket VuXML)
* gpdf has been fixed for "xpdf -- disk fill DoS vulnerability", mark itsimon2005-08-171-0/+4
| | | | | | as such. Approved by: portmgr (blanket, VuXML)
* Add eGroupWare to the list of packages affected by "pear-XML_RPC --simon2005-08-171-0/+6
| | | | | | remote PHP code injection vulnerability". Approved by: portmgr (blanket, VuXML)
* Document acroread -- plug-in buffer overflow vulnerability.simon2005-08-171-0/+42
| | | | Approved by: portmgr (blanket, VuXML)
* Add phpmyfaq and drupal to the "pear-XML_RPC -- remote PHP codesimon2005-08-161-1/+15
| | | | | | | | | | injection vulnerability" entry since they contain an embedded version of pear-XML_RPC. Fix typo in body of the latest xpdf entry (note: no modified date bump as this is a minor typo fix which does change <affects>). Approved by: portmgr (blanket, VuXML)
* Document pear-XML_RPC -- remote PHP code injection vulnerability.simon2005-08-151-0/+36
| | | | | Submitted by: hrs Approved by: portmgr (blanket, VuXML)
* Document awstats -- arbitrary code execution vulnerability.simon2005-08-151-0/+45
| | | | Approved by: portmgr (blanket, VuXML)
* After further examination it turns out that gnugadu does not includesimon2005-08-131-2/+1
| | | | | | | | | | | | | | libgadu, at least not any in any current version, and from looking at the gnugadu code there is no direct indication that this code should actually be vulnerable to the other libgadu vulnerabilities. [1] The gaim part of libgadu -- multiple vulnerabilities was fixed in 1.4.0_1. [2] Polish translation clue: pjd [1] General clue by: markus [2] Not enough checking: simon Approved by: portmgr (blanket, VuXML)
* Remove pl-gnugadu2 and kadu from being affected by libgadu -- multiplesimon2005-08-121-5/+0
| | | | | | | vulnerabilities, since it turns out that they use libgadu from the ekg port. Approved by: portmgr (blanket, VuXML)
* Document libgadu -- multiple vulnerabilities.simon2005-08-121-0/+78
| | | | Approved by: portmgr (blanket, VuXML)
* Document gaim -- AIM/ICQ away message buffer overflow and gaim --simon2005-08-121-0/+65
| | | | | | AIM/ICQ non-UTF-8 filename crash. Approved by: portmgr (blanket, VuXML)
* Remove pdftohtml from the list of packages affected by xpdf -- disksimon2005-08-121-4/+0
| | | | | | | fill DoS vulnerability, since it includes xpdf 2, which should not be affected. Approved by: portmgr (blanket, VuXML)
* Document xpdf -- disk fill DoS vulnerability.simon2005-08-121-0/+45
| | | | Approved by: portmgr (blanket, VuXML)
* Mark apache 1.3.33_2 as fixed for apache -- http request smuggling.simon2005-08-111-2/+3
| | | | Approved by: portmgr (blanket, VuXML)
* Fix ports/84648 (Interactive tripwire's database update does not work on 5.x).cy2005-08-112-1/+15
| | | | | PR: ports/84648 Approved by: portsmgr (marcus)
* Fix a fetch error.cy2005-08-111-1/+2
| | | | Approved by: portsmgr (marcus)
* Update twpol.txt to make it current with 5.X and beyond.cy2005-08-103-1/+13
| | | | Approved by: portsmgr (marcus)
* Document gforge -- XSS and email flood vulnerabilities.simon2005-08-091-0/+46
| | | | Approved by: portmgr (blanket, VuXML)
* Fix compilation on FreeBSD 6 or later in the WITH_PTH case.lofi2005-08-092-3/+117
| | | | | Reported by: Ion-Mihai Tetcu <itetcu@people.tecnik93.com> Approved by: portmgr (clement)
* Document postnuke -- multiple vulnerabilities.simon2005-08-081-0/+47
| | | | Approved by: portmgr (blanket, VuXML)
* Document mambo -- multiple vulnerabilities.simon2005-08-051-0/+41
| | | | Approved by: portmgr (blanket, VuXML)
* Correct the ranges for the IPSec advisory and the devfs advisory.remko2005-08-051-3/+3
| | | | | | Also correct proper ranges for the zlib advisory. Approved by: portsmgr (blanket VuXML)
generated by cgit (git 2.34.1) at 2024-11-30 10:44:59 +0800