aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* increment PORTREVISIONmharo2005-01-102-0/+2
|
* add RUN_DEPENDSmharo2005-01-101-4/+3
| | | | | PR: 75803 Submitted by: ITO, Takayuki <yuki@euc.jp>
* Add RUN_DEPENDSmharo2005-01-101-0/+1
| | | | | PR: 75803 Submitted by: ITO, Takayuki <yuki@euc.jp>
* Add CVE names for exim issue.nectar2005-01-101-0/+3
|
* Update distinfo after last updatearved2005-01-102-4/+4
| | | | | | PR: 75996 Submitted by: Darrien <darrien.l@gmail.com> Forgotten by: lioux
* Remove obsolete patch.lofi2005-01-101-15/+0
| | | | Noticed by: YONETANI Tomokazu <qhwt+fbsd@les.ath.cx>
* Remove redundant USE_PERL5_BUILD.marcus2005-01-091-1/+0
| | | | Reported by: Matthew Luckie <mjl@luckie.org.nz>
* Reset undeliverable maintainer email address:kris2005-01-092-2/+2
| | | | | <hmendes@brturbo.com>: host mx.brturbo.com[200.199.201.144] said: 550 User unknown: hmendes@brturbo.com
* Update to 0.2.4krion2005-01-094-4/+5
|
* o Update to 0.0.9.2lioux2005-01-094-8/+32
| | | | | | | | | | o Add net as a secondary CATEGORY o Uphold CFLAGS o DESCR: - Add additional text from developer's www site - Update WWW tag with new location Approved by: maintainer
* Document format string vulnerability in dillo.simon2005-01-091-0/+25
|
* Upgrade to 1.6.8p6mharo2005-01-092-4/+4
|
* - Spell wpa_supplicant with two 'p's in PORTNAMEbrooks2005-01-094-49/+49
| | | | | | | | | | - Remove now unnecessicary DISTNAME - Add net to CATEGORIES - Ditch the pkg-plist file in favor of PLIST_FILES, there were only three lines in the plist - Make the patch files relative to WRKSRC so we can drop PATCH_ARGS - Install some documentation - Bump PORTREVISION for new docs
* - Shorten exim entrysem2005-01-091-12/+0
| | | | Thanks to: simon
* Fix typo in latest tiff entry.simon2005-01-091-1/+2
| | | | Noticed by: bmah
* New port: security/py-clamav A python binding to libclamav written in Csem2005-01-095-0/+60
| | | | | PR: ports/75539 Submitted by: Marcus Grando <marcus(at)corp.grupos.com.br>
* Change the behavior of `make newentry' so that it invokes ${EDITOR}nectar2005-01-091-13/+9
| | | | | | | | | | after adding the template, since this is certainly the next required action. [1] Fix the error checking: a pipeline was masking some errors, and `set errexit' was not effective in some other places. Suggested by: delphij [1]
* - Update to 0.44clement2005-01-095-28/+16
|
* Add a target, `newentry', that will insert a VuXML <vuln> templatenectar2005-01-082-0/+68
| | | | | | | (including generated VID) to the top of the `vuln.xml' file. This will save a little time when adding new entries. Inspired by: a patch from simon
* Update to 4418jeh2005-01-082-3/+3
|
* FIx build on amd64.krion2005-01-081-0/+14
|
* upadate to courier-authlib 0.52, courier-imap 4.0.1 and sqwebmail 5.0.0oliver2005-01-088-14/+56
| | | | Special thanks for testing and sugestions to: Brian Candler <B.Candler@pobox.com>
* - Document that two older tiff vulnerabilities also affectssimon2005-01-081-1/+7
| | | | | | | | | | linux-tiff. [1] - Add an extra reference to each of the two entries while I'm here anyway. - In one of the tiff title elements do s/---/--/ for consistency. Discussed with: nectar [1] Approved by: portmgr (implicit, VuXML)
* The tnftp port has been updated.nectar2005-01-071-1/+1
| | | | Approved by: portmgr (implicit, VuXML)
* Fix up last commit (tnftp entry):nectar2005-01-071-4/+4
| | | | | | | | | | | | | - Malformed XML - mismatched tags (<packages></package>) - invalid entity reference &content-type= (ampersand should have been replaced with &amp;) - Replace <range> so that it matches all possible versions for now, until a fixed version is available in the ports tree - <entry> date was in the past Approved by: portmgr (implicit, VuXML) Pointy hat to: ahze (hint: make validate)
* Document vulnerabilites in tnftpahze2005-01-071-0/+28
| | | | | | PR: ports/75782 Submitted by: Tom McLaughlin Approved by: portmgr (krion)
* Document several vulnerabilites in tiff.simon2005-01-071-0/+96
| | | | Approved by: portmgr (implicit, VuXML)
* Fill in forgotten `cite' attribute value.nectar2005-01-071-1/+1
| | | | | Noticed by: simon Approved by: portmgr (implicit, VuXML)
* Document a local vulnerability in VIM's modeline handling.nectar2005-01-071-0/+41
| | | | Approved by: portmgr (implicit, VuXML)
* Add a CERT VU reference for the latest Acrobat Reader vulnerability.nectar2005-01-061-0/+5
| | | | | | | Add old package names (acroread4, acroread5) for an older Acrobat Reader vulnerability. Approved by: portmgr (implicit, VuXML)
* Document buffer overflow vulnerabilities in pcal.simon2005-01-061-0/+28
| | | | Approved by: portmgr (implicit, VuXML)
* Add (now deleted) exim-ldap package to latest exim entry.simon2005-01-061-0/+1
| | | | Approved by: portmgr (implicit, VuXML)
* Document Horde's XSS vulnerabilities.thierry2005-01-051-0/+1
| | | | Approved by: portmgr (krion).
* s/le/lt/ on my last commit. it's "<", not "<=".sem2005-01-051-5/+5
| | | | Approved by: portmgr (implicitly)
* exim -- two relatively minor security issuessem2005-01-051-0/+43
| | | | Approved by: portmgr (implicitly, VuXML)
* For the "kdelibs3 -- konqueror FTP command injection vulnerability"simon2005-01-051-2/+2
| | | | | | | | entry: replace references to Debian and KDE bugtracking systems with a KDE advisory which basically contains the same information but is more readable. Approved by: portmgr (implicit, VuXML)
* Document security issues in golddig, greed, mpg123.josef2005-01-041-0/+95
| | | | | Submitted by: niels Approved by: portmgr(implicit, VuXML)
* Update stunnel to 4.07, which incorporates most of our fixes to 4.06roam2005-01-033-34/+9
| | | | | | and also fixes a crash if a client connection is closed too early. Approved by: portmgr (krion)
* Mark open-motif-2.2.3_1 as fixed with regard to the "xpm -- imagesimon2005-01-031-2/+5
| | | | | | | | decoding vulnerabilities" entry. PR: misc/75726 Submitted by: Hilko Meyer <hilko.meyer@gmx.de> Approved by: portmgr (implicit, VuXML)
* - Note that the port update to up-imapproxy 1.2.2 included a patch tosimon2005-01-021-1/+5
| | | | | | | | | fix the security vulnerability. - Mark pop3proxy as vulnerable to the up-imapproxy vulnerability, since pop3proxy is derived from up-imapproxy. Reported by: mbr Approved by: portmgr (implicit, VuXML)
* Document vulnerabilities in up-imapproxy.simon2005-01-021-0/+34
| | | | Approved by: portmgr (implicit, VuXML)
* BROKEN by libevent update: Does not linkkris2005-01-022-0/+4
| | | | Approved by: portmgr (self)
* Add two bugtraq ids to the latest a2ps entry.simon2005-01-021-0/+3
| | | | Approved by: portmgr (implicit, VuXML)
* BROKEN on alpha 4.x: Internal compiler errorkris2005-01-021-0/+4
| | | | Approved by: portmgr (self)
* Add --disable-gpg-check to CONFIGURE_ARGS to avoid breakage with gpg-1.4.0.marcus2005-01-021-0/+1
| | | | | | | | This has been fixed in seahorse CVS, but the ports system makes this check superfluous anyway so temporarily removing it shouldn't hurt. Reported by: pointyhat via kris Approved by: portmgr (implicit)
* Document FTP command injection vulnerability in kdelibs3.simon2005-01-011-0/+36
| | | | Approved by: portmgr (implicit, VuXML)
* - Fix gnu-crypto.info:lioux2004-12-312-2/+20
| | | | | | | | o Properly categorize it under "GNU Libraries" o Register it within post-install target - Bump PORTREVISION since it fixes installation issues Submitted by: Tim Welch <twelch@thepentagon.org>
* o Update to <bsd.java.mk> standard 2.0lioux2004-12-311-6/+3
| | | | | | o Bump PORTREVISION due to jar location changes Prompted by: hq
* New port gnu-crypto version 2.0.1: Java cryptographic primitiveslioux2004-12-314-0/+84
| | | | and tools
* Improve topic for latest phpbb vulnerability to highlight the mainsimon2004-12-311-1/+2
| | | | | | problem (arbitrary command execution). Prodded by: remko
* Document insecure temporary file creation in a2ps.simon2004-12-311-0/+29
|
* Okay then, purge the last reference to MySQL in the startup script...roam2004-12-302-2/+2
|
* The last update for this year, I hope :)roam2004-12-304-39/+79
| | | | | Make stunnel use the rc_subr framework, allowing for much cleaner startup and shutdown of multiple instances of stunnel.
* Fix a getnameinfo() out-of-memory error caused by passing a 20-characterroam2004-12-302-4/+7
| | | | | | | buffer to hold a numeric IPv4/v6 address. Of course, IPv6 addresses may be a bit longer than 20 characters :) A-ha! moment during: discussion with the stunnel author
* Add more references to two older entries.simon2004-12-301-1/+5
|
* Update mhash to version 0.9.1, which provides three new hashes.roam2004-12-303-4/+16
| | | | | Shorten COMMENT at portlint's suggestion. Install a couple of docfiles.
* Maintainer has stated that he no longer has time to maintain this port.linimon2004-12-301-1/+1
| | | | We appreciate your past work.
* - Fix plistsem2004-12-302-3/+3
| | | | | | | - use GCONF_SCHEMAS PR: ports/75357 Submitted by: maintainer
* Update to 2.32.marcus2004-12-306-12/+14
| | | | | PR: 75599 Submitted by: maintainer
* Update to DAT 4417jeh2004-12-302-3/+3
|
* Add m odified date to my last commit.josef2004-12-301-0/+1
| | | | Spotted by: simon
* libxine is also affected by the mplayer vulnerabilities.josef2004-12-301-1/+8
| | | | Add cvenames.
* Document vulnerability in libxine.josef2004-12-301-0/+24
|
* Upgrade to 1.4.0.kuriyama2004-12-296-34/+26
|
* Fix the build on FreeBSD versions around 5.2 when EAI_NODATA wasroam2004-12-291-4/+6
| | | | | | | | temporarily aliased to EAI_NONAME. No PORTREVISION bump, since this is a no-op on earlier and later versions, and it didn't build at all until now on the affected versions. Reported by: Bretislav Kubesa <bretislav.kubesa@centrum.cz>
* - Fix build with gcc 3.4pav2004-12-294-7/+88
| | | | | PR: ports/75590 Submitted by: Samy Al Bahra <samy@kerneled.org>
* - Fix fetching, unbreakpav2004-12-291-5/+1
| | | | | PR: ports/75591 Submitted by: Samy Al Bahra <samy@kerneled.org>
* - Update to 2.2.1pav2004-12-283-12/+12
| | | | | PR: ports/75513 Submitted by: Blaz Zupan <blaz@si.FreeBSD.org> (maintainer)
* - update to 1.2clsung2004-12-282-3/+12
| | | | | | | | + Install README in $DOCSDIR + Install scripts/virus_action.sh in $DOCSDIR PR: ports/75406 Submitted by: Marcus Grando <marcus AT corp.grupos.com.br>
* Update to stunnel-4.06. In addition to the PR:roam2004-12-277-36/+68
| | | | | | | | | | | | | - enable the new IPv6 functionality when WITH_IPV6 is defined; - at last move over to libtool-1.5 and get rid of the .la file; - update the WITH_STUNNEL_SSL_ENGINE message to also mention FreeBSD 6.x; - remove the obsolete sock_ioctlsocket() definition from patch-aa; - fix a couple of getnameinfo(3)-related buglets; - fix a poll(2)-related buglet: it seems FreeBSD insists (correctly) that INFTIM passed to poll(2) should be -1, not just any negative value. PR: 75519 (somewhat) Submitted by: Dan Langille <dan@langille.org>
* Patch up for http://secunia.com/advisories/13566/tobez2004-12-272-0/+12
|
* Document vulnerability in jabberd1josef2004-12-271-0/+24
|
* Update to 4.1.2krion2004-12-273-4/+5
|
* Update to 0.5.2.knu2004-12-262-3/+3
|
* Update to 1.5.2.knu2004-12-262-3/+3
|
* Remove deprecated USE_SIZElioux2004-12-251-1/+0
|
* s/kpdf/kdegraphicsjosef2004-12-251-1/+1
|
* Add ports to xpdf report that come with own xpdf in distfile.josef2004-12-241-0/+21
| | | | | For kdegraphics: Reported by: lofi
* Update to 0.0.9.1krion2004-12-246-8/+6
| | | | | PR: ports/75440 Submitted by: maintainer
* Update to 0.24krion2004-12-242-3/+3
| | | | | PR: ports/75456 Submitted by: maintainer
* Remove duplicate word in the latest squid entry.simon2004-12-231-1/+1
| | | | Noticed by: josef
* - Update to 5.2.1clement2004-12-234-28/+8
| | | | | PR: 75392 Submitted by: delphij
* Clean up SQLite and related ports.nork2004-12-231-2/+2
| | | | | | | | | o Move databases/sqlite to databases/sqlite2. o Fix dependency on databases/sqlite. o Update sqlite2 to 2.8.15. o Bump PORTREVISION, accordingly. Approved by: portmgr, maintainers of sqlite and related ports
* Attempt to make pam_alreadyloggedin work on 4.x again.green2004-12-232-4/+15
| | | | Submitted by: vs
* Document potentially confusing results results on empty ACLsimon2004-12-231-0/+30
| | | | | | | declarations in squid. PR: ports/75403 (part of) Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>
* Document multiple vulnerabilities in ethereal.simon2004-12-231-0/+49
|
* Document a buffer overflow vulnerability in xpdf.simon2004-12-231-0/+31
|
* Update to 1.9.14lofi2004-12-235-6/+21
|
* Update to 0.6.9lofi2004-12-234-16/+6
|
* Fix build on 4.X.marcus2004-12-232-0/+35
| | | | Reported by: Mike Harding <mvh@ix.netcom.com>
* Update to DAT 4416jeh2004-12-232-3/+3
|
* Document phpBB vulnerability that exists on phpBB < 2.0.11delphij2004-12-221-0/+34
| | | | Submitted by: Kang LIU <liukang bjut edu cn>
* Fix ports: security/clamav and security/clamav-devel (change dbedwin2004-12-2212-30/+36
| | | | | | | | | | | | directory to /var/db/clamav and fix removal of db on deinstall) For the sake of coherence, the ClamAV database should be installed in /var/db/clamav, not /usr/local/share/clamav. Also fixes the database removal on package deinstallation. PR: ports/74172 Submitted by: Jean-Yves Lefort <jylefort@brutele.be> Approved by: Rob Evers <rob@debank.tv>
* Update to 0.7.5.marcus2004-12-226-63/+65
| | | | Approved by: maintainer
* Document a vulnerability in acroread.simon2004-12-221-0/+36
|
* Update port: security/pear-LiveUser to 0.14.0edwin2004-12-222-53/+35
| | | | | | | | + update port: security/pear-LiveUser to 0.14.0 + changelog: http://pear.php.net/package/LiveUser/download/0.14.0/ PR: ports/75333 Submitted by: Antônio Carlos Venâncio Júnior <antonio@php.net>
* Document a vulnerability in ecartis.simon2004-12-221-0/+30
|
* Document multiple vulnerabilities in mplayer.simon2004-12-221-0/+40
|
* Fix pkg-plist.skv2004-12-214-6/+5
| | | | Pointed by: kris
* - gpgme et gpgme03 are no longer in conflictclement2004-12-212-4/+0
|
* - Rework gpgme03 port to avoid conflict with gpgme 1.0clement2004-12-2111-14/+141
| | | | | | | - Make ports depending on it use new layout - Bump PORTREVISION (except elmo*) Approved by: portmgr (marcus)
* Document a heap buffer overflow vulnerability in MIT Kerberos 5.simon2004-12-211-0/+37
|
* Update 1.3.5 --> 1.3.6cy2004-12-218-44/+40
|
* Document an integer overflow vulnerability in samba.simon2004-12-211-0/+40
|
* Crypto-publish.org no longer maintains a current release of MIT-KRB5.cy2004-12-218-60/+0
| | | | Remove code to alternatively fetch from that site.
* - Move gpgme.h to ${PREFIX}/include/gpgme/ to make gpgme-1.x andclement2004-12-212-3/+5
| | | | | | | | gpgme-0.3.x coexists (Note : CONFLICTS will be remove after gpgme03 commit) Approved by: lofi
* - Fix pkg-plist.sem2004-12-216-3/+6
| | | | | PR: ports/75292 Submitted by: maintainer
* Corrected typo (blockquote in wrong place).niels2004-12-201-1/+1
| | | | Approved by: nectar (implicit)
* Update to version 0.0.21krion2004-12-202-9/+5
| | | | | PR: ports/75269 Submitted by: Ports Fury
* Update the wording on IGNORE.linimon2004-12-201-1/+1
|
* s/BUILD_DEPEND/BUILD_DEPENDS/ and bump PORTREVISIONkris2004-12-201-1/+2
|
* This is the Metasploit Project.sem2004-12-205-0/+595
| | | | | PR: ports/74558 Submitted by: Yonatan <onatan(at)gmail.com>
* - Update the corrected version number for recent phpMyAdmin entry to matchsimon2004-12-191-2/+4
| | | | | the actual ports version number for phpMyAdmin 2.6.1-rc1. - Bump modification date for the updated entries.
* Add courier-authliboliver2004-12-1920-0/+956
| | | | | | | | | | | | | | | <quote> Copies of this library code used to exist in other tarballs: Courier, Courier-IMAP, and SqWebMail. Building and installing any of these packages would've automatically installed this authentication code. The authentication library is now a separate, standalone package. This authentication library must now be installed, separately, before upgrading to the following builds (or if installing them for the first time): Courier 0.48, Courier-IMAP 4.0, and SqWebMail 5.0. See NEWS for more information. </quote> http://www.courier-mta.org/authlib/
* Switch from FORBIDDEN to IGNORE, since no security issue seems to be stated.linimon2004-12-191-1/+1
|
* This port is scheduled to be removed on 2005-02-18 if it is stillkris2004-12-193-0/+6
| | | | broken at that time, and a fix has not been submitted to GNATS.
* Change dependency file to something gpgme03-specific.lofi2004-12-191-1/+1
|
* - sshd child process crashes when user with expired password logs in.pav2004-12-191-1/+1
| | | | | | | Fix unitialized pointer in our local patch. PR: ports/75204 Submitted by: Andriy Gapon <avg@icyb.net.ua>
* Updates for the latest PHP entry:simon2004-12-191-1/+4
| | | | | | - Correctly match the www/mod_php4 port (it was missing PORTEPOCH). - Add a few more references. - Bump modified date.
* - Update to 0.6.7sem2004-12-193-5/+7
| | | | | | | | - Fix config file name (tinyca.cnf -> tinyca.cnf.sample) - Switch to bzip2 distfile PR: ports/75219 Submitted by: maintainer
* - remove %D/%%SITE_PERL%%/%%PERL_ARCH%%/auto from pkg-plistleeym2004-12-191-1/+0
| | | | Noticed by: kris
* PR: ports/71050niels2004-12-186-0/+73
| | | | | Submitted by: Philippe Rocques <phil(at)teaser.fr> Approved by: nectar (mentor)
* Properly NULL-terminate the array of command-line options.marcus2004-12-184-2/+26
| | | | Submitted by: Sean McNeil <sean@mcneil.com>
* Fix some alignment errors with socket authentication which fixesmarcus2004-12-186-44/+160
| | | | | | gnome-keyring on non-i386 platforms. Submitted by: Sean McNeil <sean@mcneil.com>
* This file should never have been here.marcus2004-12-182-0/+0
|
* Correct recent php entry, 4.3.10 and 5.0.3 are fixed.simon2004-12-171-4/+4
|
* Update to 0.9.0lofi2004-12-174-5/+19
|
* Fix VID for the last commit.sem2004-12-171-1/+1
|
* Update to 1.26krion2004-12-172-3/+3
| | | | | PR: ports/75151 Submitted by: maintainer
* Multiple vulnerabilities in PHP. From Secunia report.sem2004-12-171-0/+52
|
* Set LATEST_LINK to gpgme03lofi2004-12-171-0/+2
|
* - Update to 4.7vs2004-12-164-6/+15
| | | | | | - Fix WWW-URL Submitted by: maintainer
* Update to 4.6, chase MASTER_SITEvs2004-12-164-18/+9
| | | | | PR: ports/70853 Submitted by: maintainer
* Added 5 MySQL vulnerabilitiesniels2004-12-161-0/+177
| | | | Approved by: nectar (mentor)
* Clean up handling of locale directories at deinstall-time:kris2004-12-163-31/+0
| | | | | * Don't remove "system directories" (which were created by BSD.*.dist) * Silently try to remove locale directories which we might have created
* Document two vulnerabilities in phpMyAdmin.simon2004-12-161-0/+65
|
* Update to 0.2.3krion2004-12-164-5/+5
|
* Update to DAT 4415jeh2004-12-162-3/+3
|
* Create certificates on separate Makefile target.sem2004-12-164-14/+44
| | | | | | It will fix extra files on pointyhat. Submitted by: maintainer
* Update to 20041213 snapshot.ale2004-12-153-25/+15
| | | | Approved by: maintainer
* Only depend on p5-IO for perl <5.6 (bump PORTREV)vs2004-12-151-2/+6
| | | | | | PR: ports/72292 Submitted by: Jin-Shan Tseng Approved by: maintainer
* Fix path to scanlogd in rc-script (bump PORTREV)vs2004-12-152-3/+3
| | | | | | PR: ports/75034 Submitted by: Hilko Meyer Approved by: maintainer
* [MAINTAINER] security/f-prot-sig: update to 20041214edwin2004-12-152-3/+3
| | | | | | | | Note: W32/Zafi.D@mm is marked as "High Risk" by Frisk, so I've set the priority of this PR to high. PR: ports/75069 Submitted by: Tim Bishop <tim@bishnet.net>
* Document multiple vulnerabilities in wget.simon2004-12-151-0/+44
|
* Update to 4414jeh2004-12-152-3/+3
|
* - Update to a new snapshot from the OpenBSD 2.6 branch dated 20041207simon2004-12-148-60/+83
| | | | | | | | | | | which, among many other things, fixes the know security vulnerabilities. - Remove some notes about tracking NetBSD, since the port does not do that anymore. - Remove out-of-date information from pkg-descr. - Take maintainership. Approved by: nectar
* Change dependency to gpgme03.lofi2004-12-141-2/+2
|
* gpgme and gpgme03 are conflicting ports.lofi2004-12-142-0/+4
|
* Update to KDE 3.3.2lofi2004-12-144-8/+4
|
* - Grant maintainership to submitter of previous patch.sem2004-12-141-1/+1
|
* - Fix ipfw parser on FreeBSD 4.xsem2004-12-143-2/+22
| | | | | | | | | - Reset maintainership on maintainer request - While I'm here: add extra locale directories in plist PR: ports/74984 Submitted by: Michael Ranner <mranner(1t)inode.at> Approved by: former maintainer
* Updated to 1.10skv2004-12-133-7/+4
|
* Use RC_SUBR.krion2004-12-132-5/+38
| | | | | | | Cleanups for net/libnids dependency. PR: ports/75009 Submitted by: maintainer
* Clean up properly after ourselves now that bsd.port.mk allows it. Bumpkris2004-12-132-4/+18
| | | | | | PORTREVISION. Approved by: maintainer
* Add support for EAP. It might not work only in 802.1x mode, but shouldimp2004-12-134-0/+168
| | | | | | work in WPA+802.1x. Submitted by: sam
* Fix grammatical errorimp2004-12-131-1/+1
| | | | Submitted by: kris
* Fix grammatical error Kris pointed out.imp2004-12-131-1/+1
| | | | Submitted by: kris
* wpa_supplicant is only for current.imp2004-12-131-1/+7
|
* hostapd is only supported in -current.imp2004-12-131-1/+7
|
* WPA supplicant daemon for 802.11 networks.imp2004-12-136-0/+43
| | | | Submitted by: sam
* Add hostapd, for software host 802.11 access points.imp2004-12-136-0/+42
| | | | Submitted by: sam@
* - Add bugtraqid references to several entries.simon2004-12-131-1/+12
| | | | | - Fix typo in msgid for a samba entry. - Bump modification date for updated entries.
* - Remove extra files on deinstallsem2004-12-134-13/+18
| | | | | | - While I'm here: make rm silent Submitted by: maintainer
* Document security issue in Konqueror.josef2004-12-131-0/+26
|
* - Add patch to fix hashish with current version of cryptoppsem2004-12-132-2/+14
|
* Optionalize pth support.lofi2004-12-132-9/+20
|
* - Fix permission violation on ${PREFIX}/binclement2004-12-121-3/+2
| | | | Noticed by: kris
* BROKEN on 4.x: Does not compilekris2004-12-121-0/+4
|
* BROKEN: Does not compilekris2004-12-121-7/+3
|
* Update to 1.1.0-3 which amongst several fixes and some minor new featuresmarius2004-12-129-28/+155
| | | | | | | brings native binaries for FreeBSD/i386 5-STABLE. For a complete list of changes since 1.1 please see the installed ChangeLog. Approved by: netchild
* Fix the self-tests instead of just omitting them.lofi2004-12-122-4/+17
|
* - Upgrade to nessus version 2.2.2asem2004-12-1210-15/+383
| | | | | | | - Fix installing of default config files PR: ports/74939 Submitted by: maintainer
* Remove obsolete patch.lofi2004-12-121-27/+0
|
* - Upgrade to nessus version 2.2.2asem2004-12-1211-17/+387
| | | | | | | - Fix installing of default config files PR: ports/74938 Submitted by: maintainer
* Document a NULL pointer dereference vulnerability in mod_access_referer.simon2004-12-121-0/+31
| | | | Submitted by: Niels Heinen <niels.heinen@ubizen.com>
* Fix dependencies, enable pth-library, respect PTHREAD_LIBS,lofi2004-12-114-19/+482
| | | | fix build on 4.x, bump PORTREVISION, take maintainership.
* Switch to using gpgme03 until the maintainer approves the 0.7.5 update.marcus2004-12-111-1/+1
|
* Switch maintainer to ports@.marcus2004-12-111-1/+1
|
* Update to 1.0.1.marcus2004-12-117-52/+13
|
* Switch gpgme dependency to gpgme03.marcus2004-12-111-1/+1
|
* Add gpgme03 after a repocopy from ports/security/gpgme. Gpgme03 is the oldermarcus2004-12-111-0/+1
| | | | | 0.3.x version of gpgme needed by a few ports. The security/gpgme port itself will be updated to 1.0.x.
* Fix buildjesper2004-12-111-3/+3
|
* Update to 4413jeh2004-12-102-3/+3
|
* Chase OpenLDAP 2.2vs2004-12-091-4/+4
| | | | | PR: ports/74069 Submitted by: ceri
* Integrate the following vendor patches as published onsem2004-12-091-0/+27
| | | | | | | | | | | | | | | http://www.squid-cache.org/Versions/v2/2.5/bugs/: - a malformed hostname can cause squid to return random data as error messages, possibly leaking internal information from former requests (squid bug #1143). (This is classified as a minor security issue by the squid developers, so maintainer cc'ed security-team@. See VuXML entry.) - the "httpd_accel_port 0" directive does not work on its own (squid bug #1121) - fix crashes occuring when using cachemgr's "vm_objects" operation (squid bug #1149) PR: ports/74859 Submitted by: maintainer
* Update to 4412jeh2004-12-092-3/+3
|
* Document information leakage in viewcvs.simon2004-12-081-0/+25
|
* Document a symlink attack vulnerability in cscope.simon2004-12-071-0/+28
|
* Build and install *.pycsumikawa2004-12-072-1/+14
| | | | Submitted by: sf
* Stop begging for donations in pkg-message. It doesn't work.cperciva2004-12-071-4/+0
| | | | | Approved by: pav With hats: maintainer, author, beggar
* A command line idea encryption and decryption utility written bysem2004-12-076-0/+79
| | | | | | | | | Dr. Richard De Moliner. Permission by the Author Dr. Richard De Moliner has been granted. PR: ports/72337 Submitted by: Emanuel Haupt <ehaupt@critical.ch>
* Bump PORTREVISION for the previous committing.sumikawa2004-12-071-1/+1
|
* Make it executable with python-2.4.sumikawa2004-12-071-2/+5
| | | | Submitted by: sf
* Upgrade to 2.0.4.vanilla2004-12-059-12/+36
| | | | | PR: ports/74689 Submitted by: maintainer
* Upgrade to 2.0.4.vanilla2004-12-059-24/+33
| | | | | PR: ports/74688 Submitted by: maintainer
* Bump PORTREVISION for previous commitjesper2004-12-051-0/+1
|
* Fix PLIST_FILES and PLIST_DIRSjesper2004-12-051-1/+3
|
* . Put the topic in the same format all other recent topics have been in forglewis2004-12-051-1/+6
| | | | | | | | the Java plugin vulnerability. . Note that the diablo-jdk and diablo-jre packages are vulnerable to the plugin issue. [1] Prodded by: simon [1]
* - update to 1.38clsung2004-12-052-3/+3
| | | | | PR: ports/74703 Submitted by: Jim Shewmaker (maintainer)
* Add cvename to bnc vulnerability.simon2004-12-051-0/+1
|
* Document a remote code execution vulnerability in bnc.simon2004-12-051-0/+34
|
* Chase the gaim-1.1.0 update.marcus2004-12-052-2/+2
|
* Fix grammar nit in ImageMagick entry.simon2004-12-051-1/+1
| | | | Submitted by: Daniel Seuffert <DS@praxisvermittlung24.de>
* For the Java plugin vulnerability, also match the linux-jdk packagesimon2004-12-051-1/+2
| | | | (old name for linux-jdk-sun).
* Update to 1.9.13lofi2004-12-053-3/+4
|
* - Chase permanent redirectionpav2004-12-042-4/+2
| | | | Reported by: pointyhat via kris
* . Note that although linux-sun-jdk13 had one plugin vulnerability fixedglewis2004-12-041-1/+1
| | | | in 1.3.1.13, it contained another problem. This is fixed in 1.3.1.14.
* Add ipv6 on CATEGORIES.sumikawa2004-12-032-2/+2
| | | | | PR: ports/70025 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
* Update to 0.9.10lofi2004-12-032-4/+4
|
* Update to 20041201 snapshot.ale2004-12-033-7/+28
| | | | Approved by: maintainer
* Document vulnerability that allows arbitrary command execution in rsshrushani2004-12-031-0/+33
| | | | | | and scponly. Approved & reviewed by: josef (security team)
* Document buffer overflows in rockdodger.naddy2004-12-031-0/+27
|
* - Add missed filesem2004-12-021-0/+20
| | | | Reported by: kris (via pointyhat)
* Add CVE to zip vulnerability.simon2004-12-021-0/+1
|
* Document a long path buffer overflow in zip.simon2004-12-021-0/+33
|
* update to 4411jeh2004-12-022-3/+3
|
* Document signal delivery vulnerability in sudoscript.simon2004-12-011-0/+23
|
* remove rubbish from the broken Makefileedwin2004-12-011-101/+0
|
* New port: security/pear-LiveUser PEAR user authentication andedwin2004-12-015-0/+217
| | | | | | | | | | | | | | | | | | permission management framework LiveUser is a set of classes for dealing with user authentication and permission management. Basically, there are three main elements that make up this package: * The LiveUser class * The Auth containers * The Perm containers Currently available are containers using: PEAR::DB, PEAR::MDB, PEAR::MDB2, PEAR::XML_Tree and PEAR::Auth. PR: ports/74528 Submitted by: Ant?nio Carlos Ven?ncio J?nior <antonio@php.net>
* Document vulnerability in net/jabberd.josef2004-12-011-0/+27
|
* update to version 3.77eik2004-12-015-6/+6
|
* build & install two useful programs; testsaslauthd and saslcache.ume2004-12-012-1/+9
| | | | Submitted by: Yuri Ryazantsev <yuri@unix.ru>
* Chase MASTER_SITESvs2004-11-301-1/+2
| | | | | PR: ports/74501 Submitted by: maintainer
* Update to 1.6.8p5mharo2004-11-302-4/+4
|
* Fix build with native java.krion2004-11-301-0/+13
| | | | Submitted by: glewis
* Document vulnerability in net/opendchub.josef2004-11-301-0/+26
| | | | Based on submission by: Niels Heinen <niels.heinen@ubizen.com>
* - Teach configure about ia64 platform (similar to the recent amd64 fix)sergei2004-11-292-7/+8
| | | | | | | - Propagate the detached GPG signature to distfiles mirrors PR: ports/74510 Submitted by: Johan van Selst (maintainer)
* Update to 0.2.2krion2004-11-294-3/+8
|
* Add Bugtraq ID for SA-04:16.fetch entry.simon2004-11-291-0/+1
|
* remove needless definition.ume2004-11-282-10/+0
|
* cyrus-sasl2-saslauthd couldn't be built with system OpenSSL and BDB42.ume2004-11-282-2/+12
| | | | | PR: ports/74463 Submitted by: NIIMI Satoshi <sa2c@sa2c.net>
* - Update to 0.5sem2004-11-275-6/+28
| | | | | | | - Respect PREFIX PR: ports/74337 Submitted by: maintainer
* Update to 4.1.1krion2004-11-274-23/+15
|
* Update: security/osiris 4.0.5 -> 4.0.6edwin2004-11-273-12/+3
| | | | | | | | | | | | | | | | | | | | | | | | Updating the Osiris integrity checking system to 4.0.6. PDF and RTF docs were removed from the plist and makefile, as they were removed from the distribution. They are available in HTML format on the Osiris homepage. Code changes: FIXED: : typo in generic osirismd rc script. : changed verify cert depth to 10, from 4. : moved 'continue' prompt to beginning of installer, where it should be. : fixed regular expression filter value bug with parens. FEATURES: : added default config for Linksys WRT54G(S). : changed notification subject lines for easier parsing. PR: ports/74336 Submitted by: David Thiel <lx@redundancy.redundancy.org>
* New port: security/pear-Crypt_RC4 PEAR encryption class for RC4 encryptionedwin2004-11-274-0/+29
| | | | | | | PEAR RC4 encryption class. PR: ports/74384 Submitted by: Antônio Carlos Venâncio Júnior <antonio@php.net>
* Document two vulnerabilities in unarj.simon2004-11-271-0/+53
|
* . Mark linux-ibm-jdk as also vulnerable to the Java plugin vulnerability.glewis2004-11-261-0/+4
|
* Update to 0.6.8lofi2004-11-263-3/+13
|
* . Fix the range and add an additional range for the jdk vulnerability.glewis2004-11-261-1/+12
| | | | . Note that linux-sun-jdk and linux-blackdown-jdk are also vulnerable.
* . Fix whitespace.glewis2004-11-261-6/+6
|
* . Add an entry for the problem in the Java plugin.glewis2004-11-261-0/+31
|
* Update ruby CGI DoS entry to note that the most recent version insimon2004-11-251-2/+3
| | | | | ports is fixed. Also remove ruby-static as vulnerable, since it does not contain cgi.rb.
* Document vulnerability in ftp/prozilla.josef2004-11-251-0/+27
| | | | Submitted by: Niels Heinen <niels.heinen@ubizen.com>
* - Update to 4.32.1sem2004-11-258-411/+322
| | | | | | | - Pass maintainership to submitter PR: ports/72511 Submitted by: Demin Alexander <support(at)spectrum.ru>
* - Change Ocaml build dependency to a lighter lang/ocaml-nox11sergei2004-11-255-5/+48
| | | | | | | | - Change BDB dependency to (allegedly more reliable) db42 - Teach configure about amd64 machines PR: ports/74170 Submitted by: Johan van Selst (maintainer)
* - Update to 4.32.2sem2004-11-257-172/+160
| | | | | | | - Pass maintainer to submitter PR: ports/72510 Submitted by: maintainer
* Update to DAT 4410jeh2004-11-252-3/+3
|
* [MAINTAINER] security/f-prot: Make dependency on signatures optionaldaichi2004-11-251-3/+16
| | | | | PR: ports/74209 Submitted by: Tim Bishop <tim@bishnet.net> (maintainer)
* Fix build with gssapi and krb5ume2004-11-252-2/+2
| | | | | PR: ports/74321 Submitted by: Florian Kraft <lra.hassberge@gmx.de>
* correct fixed versionume2004-11-241-2/+2
| | | | Pointed out by: josef
generated by cgit (git 2.34.1) at 2025-01-26 18:28:27 +0800