aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* - Add missing s in latest awstats entry's title.simon2006-05-061-1/+36
* - Cancel last rsync entry. Does not affect FreeBSD port.mnag2006-05-061-32/+1
* Document awstat -- arbitrary command execution vulnerability.simon2006-05-061-1/+44
* Update to 1.3.5.novel2006-05-062-7/+5
* Update to DAT 4756jeh2006-05-062-4/+4
* Chase security/libtasn1 shlib version bump.novel2006-05-063-9/+8
* Update to 0.3.1.novel2006-05-063-11/+16
* - Add security/p5-Crypt-OpenSSL-Bignum as a dependencygarga2006-05-051-1/+3
* - Chase libprelude versiongarga2006-05-055-6/+10
* - Update to 0.9.8garga2006-05-053-10/+16
* Require perl 5.6 or later.skv2006-05-051-1/+7
* . Make that pre-su-install, and pass the pointy hat. *sigh*glewis2006-05-051-1/+1
* . pre-install -> su-pre-install since the pre install step installs filesglewis2006-05-051-1/+1
* Change maintainer addresserwin2006-05-051-2/+2
* Update to DAT 4755jeh2006-05-052-4/+4
* - Add forgotten files;thierry2006-05-042-12/+15
* * Update from 1.7 to 1.7.0.2vd2006-05-043-19/+23
* - Update to 5.34leeym2006-05-042-4/+4
* phpwebftp -- "language" Local File Inclusionmnag2006-05-041-0/+34
* Update to DAT 4754jeh2006-05-042-4/+4
* Makefile:garga2006-05-045-20/+221
* Update to 20060503garga2006-05-033-17/+4
* - Chase libgpg-error shlib version bump (.1 -> .2)sergei2006-05-034-5/+8
* - Update to 1.3 (shlib version bumped to 2)sergei2006-05-033-8/+11
* Add py-gnome-desktop to fix build after GNOME 2.14 import.kwm2006-05-031-1/+2
* Document firefox -- denial of service vulnerabilityvd2006-05-031-0/+38
* - Updating the Medusa password brute-forcer to 1.1.clsung2006-05-033-4/+11
* trac -- Wiki Macro Script Insertion Vulnerabilitymnag2006-05-031-0/+34
* rsync -- "xattrs.diff" Patch Integer Overflow Vulnerabilitymnag2006-05-031-0/+35
* clamav -- Freshclam HTTP Header Buffer Overflow Vulnerabilitymnag2006-05-031-0/+40
* Take maintainership.thierry2006-05-031-1/+1
* Update to DAT 4753jeh2006-05-032-4/+4
* - update to 0.13clsung2006-05-022-5/+4
* Updating the Samhain HIDS to 2.2.0. Changes since last version:clsung2006-05-023-10/+7
* Add medusa 1.0, a speedy, massively parallel, modular, loginclsung2006-05-025-0/+44
* courierpasswd is an authentication and password changing utilitypav2006-05-024-0/+54
* - uphold CC flagaz2006-05-021-0/+5
* Update to DAT 4752jeh2006-05-022-4/+4
* - Add last jabberd entry:mnag2006-05-011-0/+33
* add p5-Authen-TypeKey 0.05ijliao2006-05-015-0/+52
* - Update to 0.5.1pav2006-05-013-28/+28
* Update to 0.88.2garga2006-04-302-4/+4
* Presenting GNOME 2.14.1 for FreeBSD! Checkoutmarcus2006-04-3012-103/+42
* Tcl SASL provides a Tcl interface to the Cyrus SASLv2 library.pav2006-04-297-0/+90
* Password Manager helps to manage large numbers of passwords and relatedpav2006-04-295-0/+109
* Add an additional mirror.ehaupt2006-04-291-1/+2
* - Preserv .conf file.mnag2006-04-293-9/+15
* Update to DAT 4751jeh2006-04-292-4/+4
* - Add LDAP support (off by default)sem2006-04-292-1/+30
* Update to 3.6.0ehaupt2006-04-284-15/+17
* Update to 1.08erwin2006-04-282-4/+6
* - Update to 0.9.7.1mnag2006-04-283-4/+7
* upgrade to 1.3ijliao2006-04-282-4/+4
* - Take MAINTAINERmnag2006-04-281-1/+1
* Add a message explaining why it won't be upgraded to 2.0.7 version, togarga2006-04-273-0/+18
* Also mark linux-seamonkey vulnerable to recent mozillasimon2006-04-271-1/+2
* Add a forgotten patch to fix build on 4.xgarga2006-04-271-0/+13
* cacti -- ADOdb "server.php" Insecure Test Script Security Issuemnag2006-04-271-0/+30
* amaya -- Attribute Value Buffer Overflow Vulnerabilitiesmnag2006-04-271-0/+35
* lifetype -- ADOdb "server.php" Insecure Test Script Security Issuemnag2006-04-271-2/+33
* ethereal -- Multiple Protocol Dissector Vulnerabilitiesmnag2006-04-271-0/+47
* Update to DAT 4749jeh2006-04-272-4/+4
* Remove uneeded patch, it was added to sourcegarga2006-04-261-11/+0
* - Update to 20060426garga2006-04-263-4/+6
* - Update net-ssh to 1.0.9pav2006-04-264-18/+6
* - Update to 1.1.2pav2006-04-262-6/+34
* - Update to 0.3.3mnag2006-04-262-7/+4
* My 100th commit to the vuln.xml file:remko2006-04-261-0/+29
* - Update to 5.2pav2006-04-262-6/+4
* Change paraview checks to be < 2.4.3 now that paraview uses system libtiff.anholt2006-04-261-5/+20
* Update to DAT 4748jeh2006-04-262-4/+4
* - Update to 0.9.7.2garga2006-04-253-4/+5
* - relocate BUILD_DEPENDSleeym2006-04-251-2/+2
* - New port:jmelo2006-04-255-0/+73
* Update to DAT 4747jeh2006-04-252-4/+4
* Allow to build it on system wich have WITHOUT_KERBEROS definedache2006-04-241-3/+7
* - Update to 0.10mnag2006-04-242-5/+11
* Document zgv, xzgv -- heap overflow vulnerability.remko2006-04-241-0/+39
* Document crossfire-server -- denial of service and remote code executionremko2006-04-231-0/+34
* Document p5-DBI -- insecure temporary file creation vulnerability.remko2006-04-231-0/+32
* Document wordpress -- full path disclosure.remko2006-04-231-0/+30
* Document xine -- multiple remote string vulnerabilities.remko2006-04-231-0/+33
* The perl module Crypt::Rijndael has a bug in it causing it to fail on allerwin2006-04-231-0/+11
* The perl module Crypt::Rijndael has a bug in it causing it to fail on allerwin2006-04-231-0/+1
* - add BUILD_DEPENDSleeym2006-04-231-0/+2
* BROKEN: Does not compilekris2006-04-231-0/+2
* Fix the build error on 5.005 due to the warnings pragmaerwin2006-04-221-4/+8
* - Bump adns library version and PORTREVISION after last dns/adns updatesem2006-04-221-1/+1
* Add an entry for cyrus-sasl -- DIGEST-MD5 Pre-Authenticationume2006-04-221-0/+25
* Update to DAT 4745jeh2006-04-212-4/+4
* Update to stunnel 4.15, which has the major new feature of almost allroam2006-04-218-42/+25
* - Fix build with gcc 3.x (FreeBSD 5.0+)sem2006-04-201-4/+10
* Also mark all other versions of FreeBSD (That were released) asremko2006-04-201-0/+2
* Add FreeBSD -- FPU information disclosure (SA-06:14) to theremko2006-04-201-0/+50
* Update to 1.12erwin2006-04-202-4/+4
* - Clean up Makefiledanfe2006-04-191-10/+9
* - update to 0.53clsung2006-04-192-4/+4
* - Tarball was rerolledgarga2006-04-191-5/+5
* Add some CERT references to latest Mozilla entry.simon2006-04-191-0/+13
* Give sensible sentences for IGNORE.ume2006-04-192-2/+2
* plone -- "member_id" Parameter Portrait Manipulation Vulnerabilitymnag2006-04-181-0/+31
* Replace BROKEN with IGNORE.ume2006-04-182-2/+2
* Restore mbr as maintainer at his request. It seems I lost his mail replyinglinimon2006-04-181-1/+1
* - Fix build on sparc64 and ia64sem2006-04-181-0/+11
* Remove expired ports:vd2006-04-1732-3145/+0
* Fix copy/paste error in last commit and mark linux-mozilla < 1.7.13 assimon2006-04-171-1/+1
* Document mozilla/firefox/thunderbirds's latest attempt at Internetsimon2006-04-171-0/+118
* - Update to 20060416tdb2006-04-172-5/+5
* Enable support for db-4.4.ume2006-04-162-17/+10
* Avoid unnecessary invocations of pkg_info by checking whether thesimon2006-04-162-1/+5
* Update entry for sysutils/heartbeat. The insecure temporary file creationehaupt2006-04-161-1/+2
* mailman -- Private Archive Script Cross-Site Scriptingmnag2006-04-161-0/+35
* - Update to 0.72pav2006-04-163-8/+10
* - Update to 0.6pav2006-04-158-55/+87
* There was mistake in the configuration file - drweb_smf.confanray2006-04-151-1/+1
* Update security/bcwipe from 1.5.4 to 1.6.1vs2006-04-152-5/+5
* - update to 1.4.12clsung2006-04-153-7/+15
* Reset mbr due to no answer to an email inquiry about his status, andlinimon2006-04-151-1/+1
* - update to 0.23leeym2006-04-153-23/+11
* Reset max@FreeBSD.org due to no response to email about status.linimon2006-04-151-1/+1
* Reset markp due to lack of response to email and maintainer-timeouts.linimon2006-04-152-2/+2
* Reset pat due to no response to email about his status.linimon2006-04-154-4/+4
* Reset petef due to no response to email. We hope to see him back sometime.linimon2006-04-154-4/+4
* Reset vsevolod as maintainer due to unreponsiveness. We hope to see himlinimon2006-04-157-7/+7
* Update to DAT 4741jeh2006-04-152-4/+4
* Update to DAT 4740jeh2006-04-142-4/+4
* - Update to 1.1.18johans2006-04-134-16/+15
* On request of maintianer, also remove the dependency on p5-File-Tailedwin2006-04-131-2/+1
* Reinstate maintainer, seems it was his secondary MX host which complained.edwin2006-04-131-1/+1
* Update to DAT 4739jeh2006-04-132-4/+4
* Also fix IGNORE to follow style.edwin2006-04-121-1/+1
* bruteforceblocker needs p5-File-Tailedwin2006-04-121-2/+3
* - Fix a faulty linkage, where the existing libfn.so binary for 5.x was linkedehaupt2006-04-112-12/+14
* - Update to 0.9.4.1garga2006-04-113-10/+9
* Document f2c -- insecure temporary files.remko2006-04-111-0/+29
* Udate to DAT 4737jeh2006-04-112-4/+4
* When yule is installed, add the yule user and group as well. This islawrance2006-04-093-3/+63
* - Update to 1.3apav2006-04-093-8/+9
* mplayer -- Multiple integer overflowsmnag2006-04-081-0/+38
* - update to 0.21leeym2006-04-082-5/+5
* Update to DAT 4736jeh2006-04-082-4/+4
* - Add Secunia references for last phpMyAdmin issue.mnag2006-04-071-0/+2
* Document kaffeine -- buffer overflow vulnerability.remko2006-04-071-0/+30
* Document thunderbird -- javascript execution.remko2006-04-071-0/+29
* - Update to 20060406 snapshot -- fix multiple vulnerabilitiesgarga2006-04-0714-141/+122
* Take over maintainershipgarga2006-04-072-2/+2
* Update to DAT 4735jeh2006-04-072-4/+4
* Update the latest zoo entry to match the latest update to the port.remko2006-04-071-1/+2
* - Mark as FORBIDDENmnag2006-04-071-0/+2
* phpmyadmin -- XSS vulnerabilitiesmnag2006-04-071-0/+58
* clamav -- Multiple Vulnerabilitiesmnag2006-04-061-0/+43
* - Update to 0.88.1 -- Fix multiple vulnerabilitiesgarga2006-04-066-32/+11
* Remove the skip port. Created before there was an IPSec implementation onarchie2006-04-0695-3868/+0
* Add cvename to the recent OpenVPN entry.remko2006-04-061-0/+2
* - Change my ports MAINTAINER to jmelo@FreeBSD.org.jmelo2006-04-063-4/+4
* Update to DAT 4734jeh2006-04-062-4/+4
* Document mediawiki -- hardcoded placeholder string security bypassremko2006-04-061-0/+30
* Document netpbm -- buffer overflow in pnmtopng.remko2006-04-061-0/+31
* Document zoo -- stack based buffer overflow.remko2006-04-061-0/+30
* - Update to 2.4.0garga2006-04-064-26/+14
* Document mediawiki -- cross site scripting vulnerability.remko2006-04-061-0/+30
* Update to DAT 4733jeh2006-04-062-4/+4
* dia -- XFig Import Plugin Buffer Overflowmnag2006-04-061-0/+34
* openvpn -- LD_PRELOAD code execution on client through malicious or compromis...mnag2006-04-051-0/+35
* - Update to 2.0.6garga2006-04-059-216/+12
* - Update to 0.7.2garga2006-04-052-4/+4
* samba -- Exposure of machine account credentials in winbind log filesmnag2006-04-051-0/+44
* Upgrade pubcookie from 3.3.0-beta2 to 3.3.0a fixing serious XSSbrooks2006-04-051-0/+93
* Drop maintainer-shipehaupt2006-04-041-1/+1
* Update to 1.3.9ehaupt2006-04-042-4/+4
* Update to 2.2.6.novel2006-04-042-5/+4
* Update to DAT 4732jeh2006-04-042-4/+4
* - Upgrade to 1.4.3.kuriyama2006-04-038-48/+30
* Update to 1.07erwin2006-04-032-4/+4
* BROKEN: Does not compilekris2006-04-031-0/+2
* - Update to 1.2.3pav2006-04-022-5/+6
* Fill in the version numbers for the vidsedwin2006-04-011-2/+2
* The Project Cyrus web site is migrated to a new server.ume2006-04-014-4/+4
* Update to DAT 4731jeh2006-04-012-4/+4
* Sorry for deletion of PORTEOCH.shige2006-04-011-0/+1
* Reset green@ as maintainer at his request.linimon2006-03-312-2/+2
* change master siteijliao2006-03-312-3/+2
* upgrade to 2.2ijliao2006-03-316-21/+68
* Update to KDE 3.5.2lofi2006-03-318-138/+10
* Update to 1.60.shige2006-03-313-9/+8
* Update to DAT 4730jeh2006-03-312-4/+4
* For horde -- remote code execution vulnerability in the help viewersimon2006-03-301-4/+8
* Reset maintainer; nectar is away from FreeBSD work right now.linimon2006-03-301-1/+1
* freeradius -- EAP-MSCHAPv2 Authentication Bypassmnag2006-03-301-0/+32
* Update to DAT 4729jeh2006-03-302-4/+4
* When building calife-devel on 4.X-stable, @comment-out the PAM configthomas2006-03-292-2/+5
* Add an entry about Horde's remote code execution vulnerability in thethierry2006-03-291-0/+31
* UPEK TouchChip TFM/ESS Fingerprint BSP is a (binary only) BioAPI BSP whichsem2006-03-296-0/+393
* Teach the mod_install utility to not remove the shared object whensem2006-03-292-2/+13
* - Install libcrmf (needed for firefox 2.0)ahze2006-03-282-1/+4
* Update to 0.3.1ehaupt2006-03-282-4/+4
* - Chase libpreludedb versiongarga2006-03-281-2/+2
* - Update to 0.9.7garga2006-03-283-10/+10
* Make the port depend on the newly created security/p5-GSSAPI. Bumptobez2006-03-281-1/+3
* Add security/p5-GSSAPI 0.20, a Perl extension providing access to thetobez2006-03-285-0/+50
* - Make rc.d script more like what the Porters Handbook suggests.simon2006-03-282-4/+5
* Upgrade to 0.4.5.1.thierry2006-03-282-8/+7
* linux-realplayer -- buffer overrunmnag2006-03-281-0/+69
* Update to DAT 4727jeh2006-03-282-4/+4
* Update to 2.10. Require perl from ports.tobez2006-03-273-9/+26
* - Update email address in headerpav2006-03-262-2/+3
* Anti-bruteforce PAM module for authentification services. It can be used tosem2006-03-265-0/+45
* - Install an isakmpd rc.d startup script based on the ike startup scriptsimon2006-03-262-2/+24
* - Fix rc.d startup scriptgarga2006-03-252-1/+2
* - Fix rc.d startup scriptgarga2006-03-252-1/+2
* s/8 spaces/tab/ in the sendmail entry.remko2006-03-251-1/+1
* Record that our sendmail port was also vulnerable.remko2006-03-251-0/+5
* Update to DAT 4726jeh2006-03-252-4/+4
* Update the 'Evolution - remote format string vulnerabilities' entry.remko2006-03-241-1/+2
* Document the latest three FreeBSD Security Advisories:remko2006-03-241-0/+127
* Reset jedgar as maintainer; has not responded to email about status.linimon2006-03-241-1/+1
* Reset maintainer at his request; nectar is away from FreeBSD work right now.linimon2006-03-242-2/+2
* - Correct use of autotoolsmnag2006-03-241-1/+1
* Update to DAT 4725jeh2006-03-242-4/+4
* Fix byteorder determination, which led to the digest being computedtobez2006-03-242-0/+23
* - Update to 0.9.7.1garga2006-03-232-4/+4
* Update to 1.15skv2006-03-232-5/+5
* - Mark it BROKEN on ${OSVERSION} >= 700000ehaupt2006-03-233-7/+23
* Update to DAT 4724jeh2006-03-232-4/+4
* Add a missing @dirrm.des2006-03-222-0/+2
* - Use ECHO_MSG instead ECHOgarga2006-03-221-1/+1
* - Use ECHO_MSG instead ECHOgarga2006-03-221-1/+1
* Update to DAT 4723jeh2006-03-222-4/+4
* xorg-server -- privilege escalationlesi2006-03-221-0/+30
* - Update to 2.4.4 [1]garga2006-03-222-9/+8
* Update to 0.14.tobez2006-03-212-4/+11
* * security/libprelude: [1]garga2006-03-2113-43/+92
* - Update to 2.2.0ehaupt2006-03-216-23/+91
* - Update to 3.18.1tdb2006-03-212-4/+4
* Fix build on 4.xgarga2006-03-211-3/+2
* Update to DAT 4722jeh2006-03-212-4/+4
* Password Gorilla is cross-platform Password Manager.pav2006-03-216-0/+81
* Upgrade to 1.10.vanilla2006-03-212-10/+4
* Update to 0.16.des2006-03-213-7/+7
* - heimdal -- Multiple vulnerabilitiesmnag2006-03-201-0/+44
* - Update to 0.6.6mnag2006-03-203-33/+36
* Document ftp/curl's TFTP packet buffer overflow vulnerabilityvd2006-03-201-0/+35
* Add silktools.jylefort2006-03-206-0/+112
* - Update to 1.2pav2006-03-203-13/+7
* Fix SSL support.ehaupt2006-03-201-2/+11
* - Update to 20060319tdb2006-03-202-5/+5
* Update to 0.2.12krion2006-03-193-8/+12
* Reset maintainer at his request due to current lack of FreeBSD time.linimon2006-03-191-1/+1
* - Update to 1.5pav2006-03-195-6/+57
* - Update to 2.1.2mnag2006-03-192-5/+10