aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - Update to 1.07rafan2006-12-195-190/+9
| | | | | | PR: ports/106214 Submitted by: chinsan Approved by: maintainer timeout (17 days)
* MyPasswordSafe is a straight-forward, easy-to-use password manager thatalepulver2006-12-188-0/+99
| | | | | | | | | | | | | | | | | | maintains compatibility with Password Safe files. MyPasswordSafe has the following features: * Safes are encrypted when they are stored to disk. * Passwords never have to be seen, because they are copied to the clipboard. * Random passwords can be generated. * Window size, position, and column widths are remembered. * Passwords remain encrypted until they need to be decrypted at the dialog and file levels. * A safe can be made active so it will always be opened when MyPasswordSafe starts. * Supports Unicode in the safes. * Languages supported: English and French. WWW: http://www.semanticgap.com/myps/
* - Update to 20061217garga2006-12-172-6/+4
|
* - Updatre to 3.26.2miwi2006-12-162-4/+4
| | | | Submitted by: farrokhi
* - Update to 0.1.1.26miwi2006-12-162-5/+4
| | | | | PR: ports/106779 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer)
* Update several entries, making them a bit clearer (Were possible),remko2006-12-161-36/+16
| | | | | | adjusting some package names, and collapsing some ruby entries that can be combined. Also properly sort the <bid> and <cvename> tags. b comes before c.
* make it compilable with gcc 4.1.ume2006-12-151-0/+13
| | | | Reported by: pointyhat via kris
* Document the recent D-BUS vulnerability as described by CVE-2006-6107.marcus2006-12-151-0/+32
| | | | Submitted by: mnag
* Fix build with gcc41arved2006-12-151-0/+34
| | | | Reported by: pointyhat
* - evince -- Buffer Overflow Vulnerabilitymnag2006-12-151-0/+31
|
* - Change spaces to tabs in <name> and <range>mnag2006-12-141-28/+24
| | | | | | - Remove some empty lines - Respect 2 spaces between <body> and <p> - Respect empty line between <vuln vid=""> entry.
* - Update to 1.4.1miwi2006-12-145-51/+9
| | | | | PR: 106679 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org>
* - Update to 0.7.6garga2006-12-142-4/+4
| | | | Changelog at: http://www.allard.nu/pfw/history
* - fix the bug =>clsung2006-12-141-1/+2
| | | | | | | | | | The port security/blocksshd has the location of the config file hard-coded into it as "/etc/blocksshd.conf", while the port places the config file into "/usr/local/etc/blocksshd.conf" - bump PORTREVISION PR: ports/106629 Submitted by: Rob B<rbyrnes_AT_mailshack dot com>
* - Unbreak on 7.0 (hopefully..)alexbl2006-12-142-2/+8
| | | | Submitted by: pointyhat via kris
* tDiary - Injection Vulnerabilitymiwi2006-12-141-0/+23
|
* - wv -- Multiple Integer Overflow Vulnerabilitiesmnag2006-12-131-0/+35
|
* Update the ftp/curl port to 7.16.0.roam2006-12-135-5/+19
| | | | | | | | | | Bump PORTREVISION of all dependent ports. Fix the build errors in the few ports that still use the long deprecated, and now obsoleted, cURL options. Thanks to everyone who took the time to look over the patch! Discussed on: -ports
* - wv2 -- Integer Overflow Vulnerabilitymnag2006-12-131-0/+32
|
* - Fix tnftpd entry (made validate happy)miwi2006-12-131-1/+0
|
* tnftpd - remote root exploitmiwi2006-12-131-0/+24
| | | | | Reviewed by: simon Approved by: secteam
* - pass maintainership to python@ (it should have been that way in thealexbl2006-12-131-1/+1
| | | | first place)
* - Add hashlib-20060408aalexbl2006-12-135-0/+45
| | | | | | | Python secure hash and message digest module MD5, SHA1, SHA224, SHA256, SHA384 and SHA512 (backported from Python 2.5 for use on 2.3 and 2.4) WWW: http://code.krypto.org/python/hashlib/
* - Mark as FORBIDDENmnag2006-12-131-0/+2
| | | | | Security: http://www.vuxml.org/freebsd/eb5124a4-8a20-11db-b033-00123ffe8333.html With hat: secteam
* - clamav -- Multipart Nestings Denial of Servicemnag2006-12-131-0/+35
|
* - Update to 4.20miwi2006-12-133-5/+12
| | | | | | PR: ports/106567 Submitted by: Jose Fernandes<jose@diasfernandes.pt> Approved by: maintainer
* - Update to 0.9.633miwi2006-12-133-62/+146
| | | | | PR: ports/106609 Submitted by: Sergei Vyshenski <svysh@cryptocom.ru> (maintainer)
* Pkg-plist fixup.cy2006-12-133-0/+6
| | | | Noticed by: kris (via pointyhat)
* - Update clamav to 0.88.7mnag2006-12-132-4/+4
| | | | | | | | PR: 106620 Submitted by: Michael Scheidell <scheidell___secnap.net> Approved by: maintainer timeout (18 hours) With hat: secteam Security: http://secunia.com/advisories/23347/, http://www.quantenblog.net/security/virus-scanner-bypass
* Fix the CFLAGS reinplace so it actually works.laszlof2006-12-121-2/+2
|
* Record checksum of final distfile from author.cy2006-12-116-6/+15
| | | | | | | Portlint fixups. PR: TBA Submitted by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw>
* Record checksums of final version of distifle.cy2006-12-116-9/+18
| | | | | | | Portlint fixups. PR: TBA Submitted by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw>
* Update from 2.0.10 to 2.1.8.cy2006-12-1124-546/+552
| | | | | | | | Vadim Kurland, the author of libfwbuilder and fwbuilder, wishes that I maintain this port for him. Submitted by: Vadim Kurland <vadim@fwbuilder.org> Approved by: Maintainer: Vadim Kurland <vadim@fwbuilder.org>
* BROKEN: Does not compilekris2006-12-101-0/+2
|
* Rewrite the libxine entry:remko2006-12-091-24/+17
| | | | | | | o Use the FDP style to fill in the entry. o Remove the secunia references and use the libxine information. o Properly sort the references section o Add the modified tag (since I changed it).
* - Chase security/gnupg upgrade (but still 1.4.6) after repocopy.kuriyama2006-12-097-25/+43
| | | | | | | | (not connected in ../Makefile) - Tweak installation directory for documents to avoid conflict against coming gnupg upgrade (2.0.1). I'm still testing my patch to upgrade to 2.0.1, so please wait. :-)
* - PAR::Filter is moved to PAR::Packer distributionrafan2006-12-091-1/+1
| | | | | Noticed by: pointyhat via kris Pointy hat to: rafan
* Change my e-mail address.gabor2006-12-0849-49/+49
| | | | Approved by: erwin (mentor)
* - Update f-prot to 4.6.7.tdb2006-12-084-9/+9
|
* - Unbreak locale.kuriyama2006-12-082-0/+11
| | | | | PR: ports/106456 Submitted by: jjuanino@gmail.com
* Add an entry for libxine multiple buffer overflow vulnerabilities.nobutaka2006-12-081-0/+45
|
* Update to version 0.1.2.4laszlof2006-12-082-6/+5
| | | | | PR: ports/106477 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer)
* - Ok. gnupg-devel are not affected.mnag2006-12-071-4/+0
|
* - Add gnupg-devel package in last entrymnag2006-12-071-0/+5
| | | | - Add secunia reference in las entry
* - Update snort to latest version (2.6.1.1)clsung2006-12-073-4/+20
| | | | | PR: ports/106368 Submitted by: Sunpoet Po-Chuan Hsieh <sunpoet_AT_sunpoet dot net>
* * Fix typo in the latest GnuPG entry, inherited from the original messagevd2006-12-071-2/+2
| | | | | * Fix the URL in references, the former one gives 404 Not found. Kuriyama, where did you get it from?
* Add CVE-2006-6235 entry for GnuPG.kuriyama2006-12-071-0/+60
|
* - Upgrade to 1.4.6 (including security fix).kuriyama2006-12-073-21/+9
| | | | | Security: CVE-2006-6235 References: http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000491.html
* - Bump PORT_REVISION and change LIB_DEPENDS to reflect update in devel/libeventmnag2006-12-055-7/+10
| | | | - Fix many wrong BUILD_DEPENDS. Thanks to ldd(1)
* Update to 1.0.1lofi2006-12-054-12/+20
|
* update to 0.9.630miwi2006-12-053-4/+153
| | | | | PR: ports/106069 Submitted by: Sergei Vyshenski <svysh@cryptocom.ru> (maintainer)
* The tool is a simple flow-analyzing passive L7 fingerprinter. Itmiwi2006-12-056-0/+65
| | | | | | | | | | | | examines the sequence of client-server exchanges, their relative layer 7 payload sizes, and transmission intervals (as opposed to inspecting the contents, which is what most passive fingerprinters and "smart" sniffers would do to analyze transmissions). This is then matched against a database of traffic pattern signatures to infer some interesting facts about the traffic. PR: ports/106351 Submitted by: trasz <trasz at pin.if.uz.zgora.pl>
* - Add a modified field for the entry, touched by the previous commitstas2006-12-051-0/+1
|
* - List all affected packages for the Novermber ruby cgi DOS vulnerabilitystas2006-12-051-1/+16
| | | | - This vulnerability was not fixed in ruby_static
* - Documenet ruby cgi library vulnerabilitystas2006-12-051-0/+46
|
* - An option to force NATT functionalitysat2006-12-041-3/+7
| | | | | | | | | - Sneak in master sites beautification and use_ldconfig while I'm here PR: ports/105488 Submitted by: bz Approved by: VANHULLEBUS Yvan <yvan.vanhullebus@netasq.com> (maintainer)
* Add sshblock, a tool to block abusive SSH login attempts.anders2006-12-046-0/+93
|
* - Deprecateerwin2006-12-041-0/+3
| | | | | | | - Set EXPIRATION_DATE PR: 106237 Submitted by: gabor
* - Deprecateerwin2006-12-041-0/+3
| | | | | | | - Set EXPIRATION_DATE PR: 106236 Submitted by: gabor
* Correct path to Compress::Zlib.pm after recent p5-Compress-Zlib update.demon2006-12-033-3/+3
|
* Update to 0.9.16 release.ale2006-12-032-4/+4
|
* - Document buffer overflow vulnerabilities in the libmusicbrainz.stas2006-12-031-0/+34
|
* Fix markup in last entry so the file is valid XML again.simon2006-12-031-3/+2
| | | | Pointy hat to: simon
* - Add a entry for www/tDiary, www/tDiary-develmiwi2006-12-021-0/+25
| | | | Reviewed by: simon
* - update to 1.02leeym2006-12-022-4/+4
|
* - Document the SGI Image File heap overflow vulnerability in ImageMagickstas2006-12-021-0/+34
|
* Update to stunnel 4.20.roam2006-12-022-4/+4
|
* - Use features of bsd.wx.mk, especially USE_WXpav2006-12-013-8/+6
| | | | | PR: ports/101613 Submitted by: alepulver
* - Update dependencies:clsung2006-12-012-3/+19
| | | | | | | | | | | ! Remove Proc::Daemon & Proc::PID::File ! Add Net::Subnets - Respect PREFIX for default configuration file. - Change back TARGETDIR to PREFIX. - Bump PORTREVISION. PR: ports/105953 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* BROKEN: Incomplete pkg-plistkris2006-12-011-0/+1
|
* Document "gtar -- GNUTYPE_NAMES directory traversal vulnerability".naddy2006-12-011-0/+31
|
* Document 'kronolith -- arbitrary local file inclusion vulnerability'shaun2006-11-301-0/+33
|
* - Switch to SF mirrorssat2006-11-301-2/+1
| | | | | | PR: ports/104944 Submitted by: Thomas Abthorpe <thomas@goodking.ca> Approved by: Howard Owen <hbo@egbok.com> (maintainer timeout, 30 days)
* Update to 0.9.15 release.ale2006-11-292-4/+4
|
* In latest gnupg entry:simon2006-11-281-10/+8
| | | | | | - Use "Werner Koch reports" instead of "Author reports" to follow normal style in vuln.xml. - Fix some indentation and markup in body.
* Fix buffer overflow.lofi2006-11-282-0/+13
| | | | Security: https://bugs.g10code.com/gnupg/issue728
* Update to 0.11.2-pre3 release:ale2006-11-283-8/+31
| | | | | - add optional signer plugin - fix build when libassuan is installed
* Add recent gnupg one.kuriyama2006-11-281-0/+33
|
* Fix buffer overflow.kuriyama2006-11-284-2/+26
| | | | References: http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000241.html
* - Update to 4.2.2miwi2006-11-272-4/+4
| | | | | PR: ports/105882 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* - Update to 2.4.4erwin2006-11-273-9/+15
| | | | | | | | | - Don't quote amavis_p0f_daemon_flags in the p0f rc.d script [1] - Don't use -p option of daemon on 4.X since it doesn't have such [1] Requested by: Michael Scheidell <scheidell@secnap.net> [1] PR: 105862 Submitted by: gabor (maintainer)
* Remove empty patch file.erwin2006-11-271-0/+0
| | | | Forgotten by: erwin
* - Update to 0.9.11clsung2006-11-278-12/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | - library version update of related ports Changelog libprelude: - Hook class comparison function. Accept NULL, equal, not equal operator. - Introduce better error checking in the idmef-class API, which is now considered public and might be used by external application. Rename error code to reflect the API. - Change to the way IDMEF listed element are handled. Specifying negative number as the position of the element from the low level API now allow to position the element at the specified (reversed) index. Using the high level API a negative index permit to address a list of element backward (replace an element). - Build fixes for SWIG > 1.3.27. - Modify idmef_value_match() so that it always unroll listed value (do it for both val1 and val2. Remove assertion, and let idmef_value_type_compare() return an error code in case there is an issue. - Handle path using IDMEF_LIST_APPEND or IDMEF_LIST_PREPEND as path using an undefined list index on idmef_path_get() call. - Make criteria parser accept (*) list index. - Implement comparison function for all IDMEF object. PR: ports/104328 Submitted by: maintainer (Robin Gruyters) Approved by: portmgr (pav)
* - Add WWW Entryrafan2006-11-271-0/+2
| | | | | PR: ports/105866 Submitted by: TAKAHASHI Kaoru <kaoru at kaisei.org> (maintainer)
* Update to 0.6.12-pre1 release.ale2006-11-262-4/+4
|
* Fix build on CURRENT where INCSDIR seems to be spelled INCLUDEDIRarved2006-11-251-7/+4
|
* - Update to 0.47miwi2006-11-253-5/+46
| | | | | PR: ports/105816 Submitted by: Luiz Eduardo Roncato Cordeiro <cordeiro@cert.br> (maintainer)
* A library for connecting to and sending commands to a localmiwi2006-11-245-0/+49
| | | | | | | | | | | ClamAV clamd service - an anti-virus daemon process. You can find more information about clam anti-virus at WWW: http://www.clamav.net/ File::Scan::ClamAV was originally based on the Clamd module Submitted by: Jan-Peter Koopmann <Jan-Peter.Koopmann at seceidos.de>
* Update to 0.9.14 release.ale2006-11-232-4/+4
|
* - Move patch from pre-configure to post-patch.clsung2006-11-232-7/+8
| | | | | | | | | - Use denyhost.conf (FreeBSD's default config file) instead of denyhost.cfg. - Bump PORTREVISION. PR: ports/105305 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org> Approved by: maintainer (Mohacsi Janos)
* - Update to 1.0clsung2006-11-233-14/+11
|
* Update to 3.11.4ahze2006-11-232-4/+4
|
* - Update to 0.24clsung2006-11-222-5/+4
|
* - Update to 1.2.7miwi2006-11-222-4/+4
| | | | | PR: ports/105727 Submitted by: Linh Pham (maintainer)
* - Update to 5.3pav2006-11-224-25/+55
| | | | | | | | - Fix detection for optional subversion module PR: ports/104891 Submitted by: Nicolas Blais <nb_root@videotron.ca> Approved by: maintainer timeout (3 weeks)
* Add <modified> tag to previous proftpd entry.shaun2006-11-211-0/+1
| | | | Requested by: remko
* - Update to 2.4miwi2006-11-192-12/+11
| | | | | PR: ports/105596 Submitted by: Joshua D. Abraham <jabra@ccs.neu.edu> (maintainer)
* - Update to 2.05sat2006-11-182-4/+4
|
* Update HPN patch to v14 for openssh 4.5p1.ale2006-11-182-4/+4
| | | | Approved by: mnag
* - Update to 105618miwi2006-11-177-18/+84
| | | | | PR: ports/105618 Submitted by: Andrea Venturoli <freebsd@netfence.it> (maintainer)
* Unbreak, don't abuse DESTDIR as PREFIX.arved2006-11-172-9/+4
| | | | Take Maintainership.
* - Update to 0.10.3miwi2006-11-174-45/+51
| | | | | PR: ports/105591 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Sguil (pronounced "sgweel") is a graphical interface to snort,miwi2006-11-168-0/+253
| | | | | | | | | | | | | | | | | | | | | an open source intrusion detection system. The actual interface and GUI server are written in tcl/tk. Sguil also relies on other open source software in order to function properly. The client requires gpg, iwidgets and other tcl packages and may also use wireshark, festival and tls depending on your selection of options. Run "make config" in the port to see what options are available. Sguil currently functions as an analysis interface and has no snort sensor or rule management capabilities. WWW: http://sguil.sourceforge.net/index.php pauls@utdallas.edu PR: ports/105496 Submitted by: Paul Schmehl <pauls at utdallas.edu>
* - Pass maintainership to submittermiwi2006-11-161-1/+1
| | | | | PR: ports/105552 Submitted by: Lars Sommer<lasg@lasg.dk>
* Add proftpd-mysql to the previous entry.shaun2006-11-151-0/+1
|
* Update to stunnel 4.19 and fix the NOPORTDOCS installation to reallyroam2006-11-152-5/+6
| | | | | skip over the installation of example files and scripts. Of course, stunnel.conf-sample is still installed into etc/stunnel/.
* Update to 0.9.12 release.ale2006-11-152-4/+4
|
* Update to 0.6.11-pre1 release (it's 0.6.10 + a few BSD fixes).ale2006-11-154-34/+8
|
* Document "proftpd -- Remote Code Execution Vulnerability".shaun2006-11-151-0/+32
|
* The Command Injection Vulnerability was corrected by awstats 6.5_2,1.delphij2006-11-151-2/+2
| | | | | Submitted by: Alex Samorukov PR: ports/105233
* Correct pkg-plist, and add dependency for cracklib.laszlof2006-11-142-2/+4
| | | | | | PR: ports/105299 Submitted by: Bill Moran <wmoran@collaborativefusion.com> (maintainer) Approved by: flz (mentor)
* Add archivers/unzoo Directory Traversal Vulnerability.ehaupt2006-11-141-0/+34
| | | | Reviewed by: simon
* - Update to 1.1.0.r1miwi2006-11-143-10/+28
| | | | | PR: ports/105486 Submitted by: Thomas Abthorpe <thomas@goodking.ca> (maintainer)
* - Ignore Perl < 5.6clsung2006-11-141-2/+8
| | | | | | | - Change maintainer to perl@ PR: ports/105509 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* Register conflicts for srp in security/heimdal, security/krb4, and ↵laszlof2006-11-147-12/+19
| | | | | | | | | | | securiry/krb5. Bump PORTREVISION accordingly. PR: ports/105442 Submitted by: Ruben van Staveren <ruben@verweg.com> Reviewed by: shaun@, cy@ Approved by: flz (mentor)
* - Update to 0.3.8miwi2006-11-132-4/+5
| | | | | PR: ports/105432 Submitted by: Milan Obuch<bsd@dino.sk> (maintainer)
* - Remove .svn from the pkg-plistmiwi2006-11-132-9974/+379
| | | | | Submitted by: miwi via privat mail Approved by: maintainer
* Fix build on 4.x.ale2006-11-133-4/+15
|
* - Update to 3.0-beta3miwi2006-11-133-39/+9930
| | | | | PR: ports/105397 Submitted by: Jonathan <afarsec@012.net.il> (maintainer)
* Update to 2.1_rc1.itetcu2006-11-132-4/+4
| | | | | PR: ports/105449 Submitted by: Matthias Andree (maintainer)
* Reset inactive maintainer asa@gascom.ru.linimon2006-11-131-1/+1
| | | | Hat: portmgr
* Add bugzilla -- multiple vulnerabilities entry.simon2006-11-111-2/+57
| | | | | | Update earleir bugzilla entry with better topic, add ja-bugzilla as also potentially vulnerable (thought the version currently in ja-bugzilla isn't), and add more references.
* New Port: security/osslsigncodelaszlof2006-11-115-0/+53
| | | | | | | | | Platform-independent tool for Authenticode signing of EXE/CAB files - uses OpenSSL and libcurl. It also supports timestamping. PR: ports/105353 Submitted By: Nick Barkas <snb@threerings.net> Approved By: flz (mentor)
* Fix typo in COMMENTitetcu2006-11-111-1/+1
| | | | | PR: 105391 Submitted by: Paul Schmehl (maintainer)
* - Fix typo in COMMENTpav2006-11-111-1/+1
| | | | | PR: ports/105388 Submitted by: Paul Schmehl <pauls@utdallas.edu> (maintainer)
* - Fix CHROOT patch using chroot() before setusercontext() and add strerror() ↵mnag2006-11-101-18/+14
| | | | | | in message if chroot() fail. Notified by: Chris Gardner <chris_g_g___hotmail.com>
* - Update to 4.5p1mnag2006-11-103-6/+5
| | | | | | | - patch-sshd.c unconditionally includes <gssapi.h>. Include "ssh-gss.h" instead. [1] PR: 104481 [1] Submitted by: Mark Andrews <Mark_Andrews___isc.org> [1]
* - Take maintainershipclsung2006-11-101-1/+1
| | | | | PR: ports/105322 Submitted by: maintainer (Thomas Abthorpe)
* Update to 1.4.5.novel2006-11-102-5/+4
|
* - Take maintainershipclsung2006-11-091-1/+1
| | | | | PR: porst/105321 Submitted by: maintainer (Thomas Abthorpe)
* - Take maintainershipclsung2006-11-091-1/+1
| | | | | PR: ports/105320 Submitted by: maintainer (Thomas Abthorpe)
* - Take maintainershipclsung2006-11-091-1/+1
| | | | | PR: ports/105319 Submitted by: maintainer (Thomas Abthorpe)
* - Take maintainershipclsung2006-11-091-1/+1
| | | | | PR: ports/105318 Submitted by: maintainer (Thomas Abthorpe)
* - Take maintainershipclsung2006-11-091-1/+1
| | | | | PR: ports/105317 Submitted by: maintainer (Thomas Abthorpe)
* - Update to 1.3 to fix build with PHP 5.2.0mnag2006-11-092-20/+5
| | | | Notified by: krismail
* Add cvs+ipv6 to the cvsbug to the vulnerability.remko2006-11-091-0/+5
| | | | | PR: ports/104638 Submitted by: KIMURA Yasuhiro <yasu at utahime dot org>
* Update to 1.5.4.novel2006-11-094-5/+6
|
* - Fix run with net-im/cjc.mnag2006-11-092-11/+1
| | | | | | | - Bump PORTREVISION PR: 105209 Submitted by: Jonathan Arnold<jdarnold___buddydog.org>
* - Document recent vulerabilties in the imlib2.stas2006-11-091-0/+38
|
* Change my email address to farrokhi@ in all ports that I maintain.farrokhi2006-11-083-3/+3
| | | | Approved by: miwi (mentor)
* - Remove ONLY_FOR_ARCHSacm2006-11-083-3/+0
| | | | | Suggested by: kris Noticed by: alepulver
* Update to version 0.1.1.25.laszlof2006-11-083-4/+4
| | | | | | PR: ports/105226 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer) Reviewed by: flz (mentor)
* Update my email address in all ports that I maintain.laszlof2006-11-074-4/+4
| | | | Approved by: flz (mentor)
* - Update to 1.0.1stas2006-11-074-26/+4
| | | | | | | | | | | ChangeLog: - Handle local logins properly [1] - Honor allow_on_error in setcred() [1] - Use the default (*) rule if we can't resolve the hostname [2] PR: ports/104946 Submitted by: Dan Lukes <dan@obluda.cz> [1] Reported by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> [2]
* I no longer use this port and am giving up to someone with interest in it.jeh2006-11-071-1/+1
|
* Update to 0.9.11 release.ale2006-11-072-4/+4
|
* - Fix mastersite.jmelo2006-11-063-29/+87
| | | | | | | | - Add distribution kit for FreeBSD 6.1. - Bump portrevision. PR: ports/104562 Submitted by: Demin Alexander <support@spectrum.ru> (maintainer)
* Update to 0.88.6garga2006-11-062-4/+4
|
* - Update to 2.2.9miwi2006-11-069-20/+25
| | | | | | PR: ports/105176 Submitted by: Udo Schweigert <udo.schweigert@siemens.com> (maintainer) Sponsored by: FreeBSD Bug-a-thon #2
* - Update to 2.04sat2006-11-063-8/+5
|
* - Update to version 2.4.5.alepulver2006-11-064-68/+31
| | | | | PR: ports/104730 Submitted by: Nick Rogness <nick@rogness.net> (maintainer)
* - Update to 0.4.9.1johans2006-11-062-7/+7
|
* - Update to 2.3.0rafan2006-11-053-6/+6
| | | | | PR: ports/105159 Submitted by: David Thiel (maintainer)
* - Update to 0.11.0miwi2006-11-052-4/+4
| | | | | | PR: ports/105018 Submitted by: chinsan@ Sponsored by: FreeBSD Bug-a-thon #2
* Update master site and add WWW.lawrance2006-11-052-1/+3
| | | | | PR: ports/104257 Submitted by: Josh Paetzel <josh@tcbug.org>
* Update master site and WWW.lawrance2006-11-052-2/+2
| | | | | PR: ports/104256 Submitted by: Josh Paetzel <josh@tcbug.org>
* Update master site and WWW.lawrance2006-11-052-2/+3
| | | | | PR: ports/104214 Submitted by: Josh Paetzel <josh@tcbug.org>
* - Add PKGNAMESUFFIX to avoid duplicate LATEST_LINK.alepulver2006-11-051-0/+1
|
* - Document recent vulnerability in the ruby CGI library.stas2006-11-051-0/+35
| | | | Reviewed by: simon
* Update to 0.4arved2006-11-052-11/+8
| | | | Grab maintainership
* Fix a syntactically incorrect variable declaration in the middle ofse2006-11-041-0/+15
| | | | | | | a function. Seems that only the compiler in 4-stable complains about this violation of the C standard ... Reported by: pointyhat via kris
* - Update to 0.6clsung2006-11-043-45/+5
| | | | | | PR: ports/104770 Submitted by: Joe Horn <joehorn_AT_leobbs dot net> Approved by: maintainer (Jui-Nan Lin)
* Fix update_dat so it won't repeatedly fetch the same DAT filejeh2006-11-032-2/+3
| | | | PR: 105114
* - Update to 2.3.2clement2006-11-032-4/+4
|
* - Update to 0.48.1clement2006-11-032-4/+4
|
* - pgp < 3.0 and pgpin does not support OpenPGP formatdinoex2006-11-031-2/+4
| | | | | no user given symetric key encryption Submitted by: dinoex
* The latest couple of firefox vulnerabilities should be fixed in thesimon2006-11-021-4/+4
| | | | | | 2.0 release, so mark 2.0 as fixed. Prodded by: ahze
* Fix fetch.tmclaugh2006-11-021-1/+1
|
* - Update to 20061101 snapshotsat2006-11-022-1/+4
|
* - Update to 2.03sat2006-11-013-9/+5
|
* Update to 0.9.10 release.ale2006-11-012-4/+4
|
* ru-apache and ru-apacvhe+mod_ssl were fixed.lev2006-11-011-1/+8
|
* - Update to 2.7pav2006-11-013-13/+5850
| | | | | PR: ports/104908 Submitted by: Yonatan <onatan@gmail.com> (maintainer)
* - Update to 1.2.0clsung2006-11-012-4/+4
| | | | | | PR: ports/104249 Submitted by: Jo Rhett<jrhett_AT_netconsonance dot com> Approved by: maintainer (Petr Rehor)
* - Fix COMMENTpav2006-11-012-2/+2
| | | | | PR: ports/104987, ports/104991 Submitted by: Paul Schmehl <pauls@utdallas.edu> (maintainer)
* - Update to 2.6.8garga2006-11-012-4/+4
|
* Replace ONLY_FOR_ARCHS with IA32_BINARY_PORT.shaun2006-11-011-1/+1
| | | | | | PR: ports/104223 Submitted by: Mykola Dzham <freebsd@levsha.org.ua> Approved by: Alexander Demin <support@spectrum.ru> (maintainer)
* - Update to 1.4.0miwi2006-10-312-18/+31
| | | | | | | - Pass maintainership to submitter PR: ports/104729 Submitted by: chinsan@
* - Update to 1.1rafan2006-10-314-26/+35
| | | | | PR: ports/104658 Submitted by: Michael Ranner <mranner at inode.at> (maintainer)
* - Update to 5.44clsung2006-10-312-4/+4
| | | | | | PR: ports/104415 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org> Approved by: maintainer (gabor)
* - Update to 0.9clsung2006-10-312-5/+6
| | | | | | | - Reset maintainership to ports@FreeBSD.org PR: ports/104334 Submitted by: Gea-Suan Lin <gslin@gslin.org>
* - Update to 5.44clsung2006-10-312-4/+4
| | | | | PR: ports/104414 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* - Update to 2.22clsung2006-10-312-4/+4
| | | | | PR: ports/104957 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* - Update to 1.3miwi2006-10-312-4/+4
| | | | | PR: ports/103815 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* - Update to 0.1.2.3clsung2006-10-312-4/+4
| | | | | PR: ports/104932 Submitted by: maintainer (Peter Thoenen)
* Sguil is an open source tool to implement Networkalepulver2006-10-3110-0/+383
| | | | | | | | | | | | | | | | | | | | | | | | | | | Security Monitoring (NSM). NSM is the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. NSM tools are used more for network audit and specialized applications than traditional alert-centric "intrusion detection" systems. Want to learn more about Network Security Monitoring (NSM)? Then check out Richard Bejtlich's recently released book, The Tao of Network Security Monitoring: Beyond Intrusion Detection. An excerpt reads: "Network security monitoring (NSM) equips security staff to deal with the inevitable consequences of too few resources and too many responsibilities. NSM collects the data needed to generate better assessment, detection, and response processes--resulting in decreased impact from unauthorized activities." WWW: http://sguil.sourceforge.net/index.php pauls@utdallas.edu PR: ports/104227 Submitted by: Paul Schmehl <pauls at utdallas.edu>
* - Make fetchable.alepulver2006-10-313-20/+19
| | | | | | | - Remove BROKEN, DEPRECATED and EXPIRATION_DATE. PR: ports/104593 Submitted by: Alexander Logvinov <ports@logvinov.com>
* - Reformat pkg-descr, add WWW.alepulver2006-10-312-21/+27
| | | | | | | - Take maintainership. PR: ports/104235 Submitted by: Thomas Abthorpe <thomas@goodking.ca>
* - Reformat pkg-descr.alepulver2006-10-312-7/+5
| | | | | | | - Take maintainership. PR: ports/104233 Submitted by: Thomas Abthorpe <thomas@goodking.ca>
* * Upgrade to version 5.10jeh2006-10-312-8/+9
| | | | * When package building, don't automatically fetch the newest DAT
* Update to 20061029 to fix vulnerabilitygarga2006-10-302-6/+4
| | | | | Approved by: portmgr (erwin) Security: http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
* Add a <modified> tag with the current date to reflect my previous change.vd2006-10-301-0/+1
| | | | | | | I knew I should ask someone before committing, however trivial was the change. Spotted by: remko Approved by: portmgr (implicit)
* Fix typo: "Dmitri Lenev reports reports a privilege ..."vd2006-10-301-1/+1
| | | | Approved by: portmgr (implicit)
* Document screen -- combined UTF-8 characters vulnerability.simon2006-10-301-0/+29
| | | | Approved by: portmgr (secteam blanket)
* Document two MySQL privilege escalations.simon2006-10-291-0/+60
| | | | | | PR: ports/104890 Submitted by: Henrik Brix Andersen <henrik@brixandersen.dk> Approved by: portmgr (secteam blanket)
* - Add entry for www/serendipity and www/serendipity-develmiwi2006-10-231-0/+35
| | | | | Reviewed by: markus@ Approved by: portmgr (implicit VuXML), secteam (Remko (not reviewed yet))
* Document an integer overflow vulnerability in Qt and kdelibs, based on anmarkus2006-10-231-0/+39
| | | | | | entry by sat Approved by: portmgr (erwin)
* Add reference, which I missed the first time around, from Operasimon2006-10-211-0/+1
| | | | | | Software to opera -- URL parsing heap overflow vulnerability entry, Approved by: portmgr (secteam blanket)
* Document opera -- URL parsing heap overflow vulnerability.simon2006-10-211-0/+37
| | | | Approved by: portmgr (secteam blanket)
* Minor correction to last commit; the NVIDIA driver version 1.0.8762simon2006-10-211-1/+1
| | | | | | was also affected, so mark it as such. Approved by: portmgr (secteam blanket)
* Update entry for nvidia-driver -- arbitrary root code executionsimon2006-10-211-4/+9
| | | | | | | | | | | | | vulnerability: - Add new info about vulnerable versions from NVIDIA. - Add workaround. - Add more references. - Remove suggestion to move to "nv" driver now that we have a simpler workaround. Approved by: portmgr (secteam blanket) Parts submitted by: mnag
* - Mark as forbiddenmnag2006-10-201-0/+2
| | | | | Approved by: portmgr (secteam blanket) Security: http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
* Document asterisk -- remote heap overwrite vulnerabilityremko2006-10-201-0/+30
| | | | | | Approved by: portmgr (VuXML blanket) Submitted by: Thomas Sandford Facilitated by: Snow B.V.
* Some style changes to the plone entry.remko2006-10-201-13/+11
| | | | | | | Previous commit was also reviewed by myself. Approved by: portmgr (Blanket VuXML) Facilitated by: Snow B.V.
* Fix plist.itetcu2006-10-201-6/+0
| | | | | | PR: ports/104405 Submitted by: Fabian Keil<fk@fabiankeil.de> Approved by: portmgr (erwin), Peter Thoenen (maintainer)
* - Add a entry for www/plonemiwi2006-10-201-0/+37
| | | | Approved by: portmgr (erwin)
* Document:shaun2006-10-191-0/+108
| | | | | | | | | | drupal -- HTML attribute injection drupal -- cross site request forgeries drupal -- multiple XSS vulnerabilities Submitted by: brooks Reviewed by: remko Approved by: portmgr (erwin)
* Document "ingo -- local arbitrary shell command execution"shaun2006-10-191-0/+27
| | | | | | Submitted by: thierry Reviewed by: remko Approved by: portmgr (erwin)
* Update php -- _ecalloc Integer Overflow Vulnerability entry withsimon2006-10-181-3/+20
| | | | | | | | details from Steffan Essers advisory about the implications of this issue. The advisory was not public when this issue was initially fixed. Approved by: portmgr (secteam blanket)
* - Update HPN patch. Patch are renamed, the only content differences are two ↵mnag2006-10-172-7/+8
| | | | | | | rows now enclosed in an "else" block. Submitted by: ale Approved by: portmgr (erwin)
* Mark multimedia/win32-codecs as not-vulnerable after the quicktime codecserwin2006-10-171-2/+2
| | | | | | | were optional. The quicktime codecs are still vulnerable though, but we rely on the conditional FORBIDDEN statement in the ports Makefile for this. Approved by: portmgr (self), secteam (simon)
* Document "nvidia-driver -- arbitrary root code execution vulnerability".simon2006-10-171-0/+36
| | | | | | | | | Note that I haven't actually had time to make a test system to reproduce this on FreeBSD, but due to the nature of this issue and that there is a PoC exploit in the advisory, I'm adding this entry due to "better safe than sorry"... Approved by: portmgr (secteam blanket)
* - Mark php open_basedir fixedsat2006-10-171-2/+3
| | | | | Reviewed by: secteam (simon) Approved by: portmgr (secteam blanket)
* - clamav -- CHM unpacker and PE rebuilding vulnerabilitiesmnag2006-10-161-0/+38
| | | | Approved by: portmgr (mnag with secteam hat)
* - Update to 0.88.5mnag2006-10-163-7/+7
| | | | | | | | - portlint(1) Approved by: portmgr (mnag with secteam hat), garga (maintainer) Security: http://lurker.clamav.net/message/20061016.015114.dc6a8930.en.html, http://secunia.com/advisories/22370/
* - Add missing dependsmiwi2006-10-161-1/+2
| | | | | | PR: ports/104362 Submitted by: Joshua Abraham<jabra@ccs.neu.edu> (maintainer) Approved by: portmgr (clement)
* - Add some referencessat2006-10-161-6/+27
| | | | | Reviewed by: secteam (simon) Approved by: portmgr (secteam blanket)
* - Document temporary file symlink privilege escalation in tkdiffsat2006-10-161-1/+28
| | | | | | | - Correct Javier's name spelling in an old advisory Reviewed by: secteam (simon) Approved by: portmgr (secteam blanket)
* - Document multiple remote file inclusion vulnerabilities in vtigersat2006-10-151-0/+31
| | | | | Reviewed by: secteam (simon) Approved by: portmgr (secteam blanket)
* - Document heap overflow in the KML engine in google-earthsat2006-10-141-0/+28
| | | | | Reviewed by: secteam (simon) Approved by: portmgr (implicit)
* Simple commandline wrapper around gpg that makes it store its passphrasemezz2006-10-144-0/+35
| | | | | | | | in gnome-keyring. It is a direct competitor to (the unmaintained) quintuple-agent. Submitted by: ahze Approved by: portmgr (kris and marcus)
* Chase the GNOME X11BASE to LOCALBASE move, and fix the build with themarcus2006-10-1414-38/+81
| | | | | | | new freetype2 where needed. Submitted by: mezz, ahze, pav, and many others Approved by: portmgr (implicit, kris)
* Presenting GNOME 2.16.1 for FreeBSD. This release represents a massivemarcus2006-10-1411-225/+169
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | amount of work by the FreeBSD GNOME Team and our testers. On top of the usual GNOME update, we have taken this opportunity to move GNOME from X11BASE to LOCALBASE. This means roughly 600 ports NOT part of the GNOME Desktop also need to be changed. The bulk of the move was carried out by ahze, mezz, and pav, but it would not have been possible without cooperation from the FreeBSD KDE team who worked with us to make sure GNOME and KDE can still coexist happily. We would also like to send a shout out to kris and pointyhat for putting up with multiple test runs until we got something that was solid. Back to GNOME 2.16. This release brings a huge amount of new functionality to FreeBSD. The standard release notes can be read at http://www.gnome.org/start/2.16/ . But on top of what you will read there, jylefort and marcus have completed work on a port of HAL to FreeBSD. This will allow FreeBSD to take advantage of closer hardware interaction such as auto-mounting CD-ROMs, USB drives, and music players; auto-playing audio CDs; and managing laptop power consumption. But where would this all be without our loyal testers and contributors? Therefore, the FreeBSD GNOME team would like to thank the following users: Phillip Neumann <pneumann@gmail.com> tmclaugh mux Yuri Pankov <yuri.pankov@gmail.com> chinsan Thomas <freebsdlists@bsdunix.ch> Brian Gruber <knightbg@yahoo.com> Franz Klammer <klammer@webonaut.com> Dominique Goncalves <dominique.goncalves@gmail.com> Pascal Hofstee <caelian@gmail.com> Yasuda Keisuke <kysd@po.harenet.ne.jp> backyard <backyard1454-bsd@yahoo.com> Andris Raugulis <endrju@null.lv> <endrju@null.lv> Eric L. Chen <d9364104@mail.nchu.edu.tw> Pawel Worach <pawel.worach@gmail.com> QuiRK on #freebsd-gnome Shane Bell <decept0@gmail.com> luigi sajd on #freebsd-gnome sat Chris Coleman <chrisc@vmunix.com> kaeru on #freebsd-gnome crsd_ via irc.freenode.org/#FreeBSD-GNOME Joel Diaz <joeldiaz@mac.com> Enjoy! Approved by: portmgr (implicit, kris)
* Revert previous commit; it still conflicts but CONFLICTS checking waskris2006-10-121-0/+2
| | | | | | broken at the time. Approved by: portmgr (self)
* Update distinfo to reflect re-rolled distfile, and unbreak the port. Theshaun2006-10-122-5/+7
| | | | | | | | | differences between the old and new files were entirely cosmetic. The full diff is available in the Audit-Trail of the PR below. PR: ports/104307 Submitted by: Frank J. Laszlo <laszlof@vonostingroup.com> Approved by: portmgr (marcus)
* devel/cscope was fixed in version 15.6 so use lt instead of le.erwin2006-10-111-2/+2
| | | | | | Submitted by: joerg Pointyhat to: erwin Approved by: portmgr (self)
* - Update to 20061009 fingerprintssat2006-10-102-4/+4
|
* Sguil (pronounced "sgweel") is a graphical interface to snortbsam2006-10-1010-0/+289
| | | | | | | | | | | | | | | | | | | | | | (www.snort.org), an open source intrusion detection system. The actual interface and GUI server are written in tcl/tk (www.tcl.tk). Sguil also relies on other open source software in order to function properly. The sensor list includes security/barnyard, security/snort, security/sancp, tcpdump (a part of the OS) and devel/tcltls as well as lang/tcl84 and lang/tclX. Care has been taken to ensure that everything you need to build a working sguil operation is in the FreeBSD ports system or part of the OS already. Sguil currently functions as an analysis interface and has no snort sensor or rule management capabilities. WWW: http://sguil.sourceforge.net/index.php pauls@utdallas.edu PR: ports/95018 Submitted by: Paul Schmehl <pauls at utdallas.edu>
* - Update to 0.1.2.2clsung2006-10-102-5/+6
| | | | | PR: ports/104211 Submitted by: maintainer (Peter Thoenen)
* Mark zgv as fixed wrt. "zgv, xzgv -- heap overflow vulnerability".simon2006-10-091-1/+2
|
* - Add dependency on libtool; we cannot simply add USE_AUTOTOOLSsergei2006-10-091-0/+2
| | | | | | | as that implies GNU_CONFIGURE which this port does NOT use - Bump PORTREVISION Noticed by: pointyhat via kris
* - Update to 0.9.6.1miwi2006-10-092-5/+5
| | | | | PR: ports/104202 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Update to 0.9.10clsung2006-10-092-8/+6
| | | | | | | | | | libpreludedb Changelog: - Fix PostgreSQL schema update version 5. - Only export symbol starting with preludedb_. - Verbose error reporting in case of libpreludedb initialization failure. PR: ports/104201 Submitted by: maintainer (Robin Gruyters)
* - Require gcc 3.4+sat2006-10-091-0/+1
| | | | Reported by: pointyhat via kris
* Fix the problem with unattended deinstallation by not even attemptingroam2006-10-092-63/+1
| | | | | | | | | | to remove the stunnel user and group at all - just kill the package deinstall script. PR: 104028 Reported by: jan grant <jan.grant@bristol.ac.uk>, Stephen Hurd <shurd@sasktel.net> (in private mail a while ago), and, I think, many others
* - Add php-suhosin to edabe438-542f-11db-a5ae-00508d6a62dfsat2006-10-091-1/+5
| | | | | | as per original advisory Discussed with: ale
* - Remove symlinks created by mtree target from plistspav2006-10-081-2/+0
| | | | | Pointy hats to: rafan 6x, droso 2x, pav 2x, alepulve, clsung, glewis, itetcu, miwi
* - Update to 1.5.2novel2006-10-083-4/+16
| | | | - Add WITHOUT_CXX knob to disable C++ wrapper library
* Update to 0.9.7 release.ale2006-10-082-4/+4
|
* - Fix python package naming in 6afa87d3-764b-11d9-b0e7-0000e249a0a2sat2006-10-081-3/+2
| | | | Reported by: simon
* Update versions affected by python -- buffer overrun in repr() forsimon2006-10-081-4/+7
| | | | | | | | | | | unicode strings: - Python 2.5.c2 was already fixed (verified in upstream SVN). - Python 2.4 port just got the fix. - I can't find any trace of python23, python22, and python-devel ever having existed as package names, so I removed them. - Add python+ipv6. I don't really know if it contained the problematic unicode code, but better safe than sorry.
* Fix whitespace in openssh -- multiple vulnerabilities entry, which Isimon2006-10-081-17/+17
| | | | originally missed.
* Remove obsolete CONFLICTS line for gnomesu.lawrance2006-10-081-2/+0
|
* Update vuxml id 5a39a22e-5478-11db-8f1a-000a48049292tmclaugh2006-10-081-1/+1
| | | | - Fixed in version 1.1.13.8.1
* Remove mono-devel and mono-svn from 5a39a22e-5478-11db-8f1a-000a48049292tmclaugh2006-10-081-5/+0
| | | | | | - These are packages from BSD#'s (my project) development repo. Don't even give the impression that FreeBSD is supporting security updates for an outside project.
* - Add OPTION to enable Kerberos/GSSAPI patch [1]mnag2006-10-083-11/+1850
| | | | | | | - Add OPTION to enable LPK patch (ldap stored public key) [2] PR: 86384 [1], 103399 [2] Submitted by: Garrett Wollman <wollman___khavrinen.csail.mit.edu> [1], Dmitriy Kirhlarov <dkirhlarov___oilspace.com> [2]
* Add a note to pkg-message warning users about potential problemsshaun2006-10-081-0/+7
| | | | | | | | relating to default syslogd(8) behavior. PR: ports/102605 Submitted by: Jeremie Le Hen <jeremie@le-hen.org> Approved by: maintainer timeout (5 weeks)
* - Update to 20061007.tdb2006-10-083-11/+12
| | | | - Tidy up pkg-message.
* - Remove an empty url (a typo)sat2006-10-071-1/+0
|
* - Update to 20061007 fingerprintssat2006-10-072-4/+4
|
generated by cgit (git 2.34.1) at 2025-01-01 14:23:25 +0800