aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Atempt to fix build with gcc 4.x on HEADitetcu2007-01-218-0/+89
| | | | | PR: ports/108166 Submitted by: Lars Sommer (maintainer)
* - update version to 1.0.4itetcu2007-01-212-6/+6
| | | | | | | - pass maintainership to submitter PR: 108116 Submitted by: Marcelo Araujo
* Updating to 2.3.1.lx2007-01-212-6/+5
| | | | Approved by: edwin (mentor)
* Updating to 4.2.3.lx2007-01-212-5/+5
| | | | Approved by: edwin (mentor)
* BROKEN: Broken distinfokris2007-01-202-0/+4
|
* - update to 1.2.2 [1]itetcu2007-01-193-11/+10
| | | | | | | | - pass maintainership to submitter [1] - use SUB_FILES for pkg-message instead of custom trick [2] PR: ports/108108 [1] Submitted by: Marcelo Araujo [1], me (itetcu) [2]
* Chase comms/lirc update.bland2007-01-192-2/+2
|
* joomla -- multiple remote vulnerabilitiesgabor2007-01-181-0/+41
| | | | | Reviewed by: secteam (remko) Approved by: erwin (mentor, implicit)
* update to 0.59.1oliver2007-01-172-4/+4
|
* - updated prelude version;clsung2007-01-171-1/+2
| | | | | | | - bump PORTREVISION PR: ports/107987 Submitted by: Robin Gruyters <r dot gruyters_AT_yirdis dot nl>
* - update to 0.9.7.1;bsam2007-01-174-21/+9
| | | | | | | | - change variable WITH(OUT)_DB to WITH(OUT)_PRELUDEDB; - delete the patch files/patch-xmlmod.c (merged upstream). PR: 107986 Submitted by: Robin Gruyters <r.gruyters at yirdis.nl> (maintainer)
* - update Prelude versionlx2007-01-171-1/+2
| | | | | | | | - bump PORTREVISION PR: ports/107985 Submitted by: Robin Gruyters <r.gruyters at yirdis.nl> Approved by: edwin (mentor)
* Customize barnyard.conf for use ONLY with sguil 0.6.0.bsam2007-01-172-0/+300
| | | | | PR: 107965 Submitted by: Paul Schmehl <pauls at utdallas.edu> (maintainer)
* Add p5-Authen-Bitcard 0.86, bitcard authentication verification.rafan2007-01-165-0/+51
| | | | | PR: ports/107968 Submitted by: chinsan
* . correct init scripts, [1] [2]bsam2007-01-164-30/+6
| | | | | | | . bump PORTREVISIONs. PR: 107894 [1], 107895 [2] Submitted by: Paul Schmehl <pauls at utdallas.edu> (maintainer) [1], [2]
* Stop using USE_X_PREFIX.lx2007-01-161-2/+1
| | | | Approved by: edwin (mentor)
* Replace outdated master sites with new ones.delphij2007-01-161-2/+1
| | | | Submitted by: Wei Dai <weidai at weidai dot com>
* Document two sircd vulnerabilities:gabor2007-01-151-0/+62
| | | | | | | | sircd -- remote reverse DNS buffer overflow sircd -- remote operator privilege escalation vulnerability Reviewed by: secteam (remko) Approved by: erwin (mentor)
* Change a dependency from teTeX-base to the smaller texinfo.cy2007-01-154-4/+4
|
* - needs at least perl5.6clsung2007-01-151-1/+7
| | | | Noted by: kris(bot)
* - update to 1.01leeym2007-01-153-16/+5
|
* Fix plist.itetcu2007-01-151-0/+3
| | | | | Submitted by: krismail Approved by: maintainer (private email).
* Fix breakage.kuriyama2007-01-141-1/+9
|
* - Make GPGSM dependency optional (then we can use this port without LDAPkuriyama2007-01-142-15/+16
| | | | | | | | | | | | | | dependency). [1] - Remove libpth hack in configure since this problem was fixed in 2.0.1. [2] - Remove silly conflict detections which breaks BATCH building [2],[3] - Check libassuan package version (to avoid using old lib) [4] PR: ports/107185 (I'm still working on NLS problem) [2], ports/107349 [3] Submitted by: Brian Minard <bminard@flatfoot.ca> [1], dougb [2], Ulrich Spoerlein <uspoerlein@gmail.com> [3], Ian Lister <freebsd-ports@lister.dnsalias.net> [4]
* Include new documentation dependencies.cy2007-01-144-8/+48
| | | | Conditionally build and install documentation using a new knob.
* Update to 5.4delphij2007-01-144-398/+6
|
* Fix PLIST.sumikawa2007-01-132-1/+2
|
* - Update to 0.8.0miwi2007-01-133-238/+226
| | | | | | PR: ports/107841 Submitted by: Li-Wen Hsu <lwhsu@lwhsu.org> Approved by: maintainer
* Revert last change. The term is intended to imply 'distfile should belinimon2007-01-121-1/+1
| | | | | | | | fetched onto pointyhat manually, then the build can be tried'. There should be some better mechanism for this. Requested by: kris
* - Document multple net/cacti vulnerabilities.sem2007-01-121-0/+29
|
* Disable -Werror to fix the build with GCC 4.x.marcus2007-01-121-0/+1
| | | | Reported by: pointyhat via kris
* - Mark as DEPRECATED: This project ceased few years ago. As this is mainlyrafan2007-01-111-0/+3
| | | | used for chinese/oicq and mark it as deprecated.
* Mark broken under 4.X.cy2007-01-113-3/+24
|
* Update 1.5.1 --> 1.6cy2007-01-1020-152/+68
| | | | | Security: MITKRB5-SA-2006-002, MITKRB5-SA-2006-003, and US-CERT Technical Cyber Security Alert TA07-009B
* - updated to 1.2.6itetcu2007-01-102-8/+4
| | | | | | | - mark unbroken on 4.x PR: ports/107682 Submitted by: Peter Thoenen (maintainer)
* - Update to 1.16miwi2007-01-103-6/+7
| | | | | PR: ports/107627 Submitted by: Wesley Shields <wxs@csh.rit.edu> (maintainer)
* Add mplayer RealMedia RTSP streams buffer overflow entry.itetcu2007-01-091-0/+40
| | | | | | PR: ports/107217 Submitted by: Thomas E. Zander (multimedia/mplayer maintainer) Reviewed by: simon@
* - Update to 0.9.11.2clsung2007-01-083-15/+4
| | | | | | | | | | | | | | | Changelog libpreludedb: - Prevent binding generation error when using old SWIG version. - Generate bindings for the error handling API. - Small Perl/Python detection improvement. Fix #182. - Fix bindings compilation when using make -j. - New configure --with-perl-installdirs flags: might be used to override default site perl installation. - Various bug fixes. - Fix make installation error when Perl bindings are disabled. PR: ports/107678 Submitted by: maintainer (Robin Gruyters)
* - Update to 0.9.12.2clsung2007-01-083-16/+4
| | | | | | | | | | | | | | | | Changelog libprelude: - Ability to debug TLS communication through a new LIBPRELUDE_TLS_DEBUG environment variable. - Prevent binding generation error when using old SWIG version. - Generate bindings for the error handling API. - Small Perl/Python detection improvement. Fix #182. - Fix bindings compilation when using make -j. - New configure --with-perl-installdirs flags: might be used to override default site perl installation. - Fix make installation error when Perl bindings are disabled. PR: ports/107677 Submitted by: maintainer (Robin Gruyters)
* Fix build if dependencies are built WITHOUT_NLS.lofi2007-01-081-0/+2
| | | | Submitted by: dinoex
* pkcs11-helper is a library that simplifies the interactionale2007-01-086-0/+89
| | | | | | | | | | | | | | | | | | with PKCS#11 providers for end-user applications. pkcs11-helper allows using multiple PKCS#11 providers at the same time, enumerating available token certificates, or selecting a certificate directly by serialized id, handling card removal and card insert events, handling card re-insert to a different slot, supporting session expiration and much more all using a simple API. pkcs11-helper is not designed to manage card content, since object attributes are usually vendor specific, and 99% of application need to access existing objects in order to perform signature and decryption. WWW: http://www.opensc-project.org/pkcs11-helper/
* - Fix build with gcc 4.xpav2007-01-082-1/+14
| | | | | | | | - Force -O optimization level, problems reported with higher optimization levels PR: ports/107658 Submitted by: Fredrik Lindberg <fli@shapeshifter.se> (maintainer)
* - Use new USE_TCL_BUILD/USE_TK_BUILD macrospav2007-01-082-4/+3
|
* - Fix build with 4.Xmiwi2007-01-081-0/+1
| | | | Approved by: novel@
* - Update to 2.1 [1]barner2007-01-073-14/+11
| | | | | | | | | - Pass maintainership to submitter [1] - Add entry to UPDATING (migration guide for libwhisker 1.x users) [1] - Remove former maintainer from pkg-descr Submitted by: Marcelo Araujo <araujo@bsdmail.org> [1] PR: ports/107615 (with modifications)
* - Update to 1.1clsung2007-01-072-5/+11
|
* - Update to 0.28clsung2007-01-072-4/+4
|
* Fix SIBGUS and SIGSEGV violations on amd64 platform.cy2007-01-076-3/+39
|
* Document two fetchmail vulnerabilities.barner2007-01-061-0/+75
| | | | | | | See also: http://fetchmail.berlios.de/fetchmail-SA-2006-02.txt http://fetchmail.berlios.de/fetchmail-SA-2006-03.txt Reported by: Matthias Andree (upstream author)
* Document opera -- multiple vulnerabilities.simon2007-01-061-0/+58
|
* ptsname(3) is supported under FreeBSD 5.X and up.cy2007-01-066-30/+24
| | | | Submitted by: jkim
* Upgrade drupal to 4.7.5 fixing a couple security issues.brooks2007-01-061-0/+41
| | | | | | | Upgrade drupal-pubcookie and drupal-textile to the 4.7 versions. Submitted by: Nick Hilliard <nick at foobar dot org> (upgrade to 4.7.4) Security: vid:3d8d3548-9d02-11db-a541-000ae42e9b93
* 2007-01-01 graphics/teddy: No new releases in the past 4 yearsmiwi2007-01-069-174/+0
| | | | | | | | | 2007-01-01 net/arla: "does not compile" 2007-01-02 sysutils/lsmlib: distfile and homepage disappeared 2007-01-02 security/ifd-gpr400: distfile and homepage disappeared 2007-01-04 science/mmtk: distfile and homepage disappeared 2007-01-04 print/xtem: distfile and homepage disappeared 2007-01-04 net/mrt: distfile and homepage disappeared
* 2006-12-01 net-p2p/gnome-btdownload: does not run with BitTorrent 4.x yetmiwi2007-01-065-99/+0
| | | | | | | 2006-12-01 print/ec-fonts-mftraced: Installs files before 'make install' 2006-12-01 print/yatex-xemacs-mule: hangs during build 2006-12-01 security/gnu-crypto: Does not compile 2006-12-01 www/linux-beonex: Security issues. From http://www.beonex.com/ 'The currently available Beonex Communicator 0.8 builds have several known security bugs'
* - update to 1.0leeym2007-01-064-56/+8
| | | | - assign to perl@
* Fix errant ifdefs which also fixes build under 4.X.cy2007-01-056-27/+9
| | | | Submitted by: jkim
* Cosmetic changes to sync up the style of the patch to that of thecy2007-01-053-75/+81
| | | | original code.
* Unbreak file by using &amp; in w3m entry.simon2007-01-041-3/+3
| | | | | Pointy hat to: nobutaka Reported by: Philipp Wuensche
* - Fix build with amd64miwi2007-01-042-8/+25
| | | | | PR: 107478 Submitted by: Daniel Roethlisberger <daniel@roe.ch> (maintainer)
* - Update to 2.04gabor2007-01-032-5/+5
| | | | Approved by: erwin (mentor)
* Update to 0.7laszlof2007-01-032-5/+4
|
* Document a format string vulnerability of w3m.nobutaka2007-01-021-0/+35
|
* Update 0.3.8.novel2007-01-022-5/+5
|
* Update to 0.15.tobez2007-01-022-11/+4
| | | | | Submitted by: gslin@gslin.org PR: 107387
* Update to 0.5.11.novel2007-01-023-5/+12
|
* Update to 1.7.1.novel2007-01-023-8/+9
|
* - Chase security/gnutls updatenovel2007-01-023-5/+6
| | | | | - Add an entry to UPDATING - Pet portlint(1) for some ports while I'm here
* Update to 1.6.1.novel2007-01-024-8/+22
|
* update to 0.59oliver2007-01-024-51/+51
|
* - utilize USE_BDBleeym2007-01-011-4/+5
| | | | | PR: 89023 Submitted by: swhetzel at gmail.com
* - Update to 2.6miwi2006-12-313-16/+9
| | | | | PR: ports/107326 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu> (maintainer)
* - Update to 0.9.659miwi2006-12-314-9/+47
| | | | | PR: ports/107329 Submitted by: Sergei Vyshenski <svysh@cryptocom.ru> (maintainer)
* Upgrade to 20061228a. IKEv1 has been supported.sumikawa2006-12-308-269/+5
|
* Update to 0.53erwin2006-12-302-4/+4
|
* Text::Password::Pronounceable - Generate pronounceable passwordsclsung2006-12-295-0/+39
| | | | | | | This module generates pronuceable passwords, based the the English digraphs by D Edwards. WWW: http://search.cpan.org/dist/Text-Password-Pronounceable/
* Updating to 0.10.5.lx2006-12-283-21/+24
| | | | Approved by: edwin (mentor)
* - Add rc.d scriptgabor2006-12-283-0/+23
| | | | | | | | - Bump PORTREVISION PR: ports/107208 Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> Approved by: erwin (mentor)
* - Document www/plone vulnerabilitygabor2006-12-281-0/+29
| | | | | Reviewed by: simon Approved by: erwin (mentor)
* - Update the www/zope entry to indicate it is fixed nowgabor2006-12-281-2/+3
| | | | | | | PR: ports/106505 Submitted by: HAYASHI Yasushi <yasi@yasi.to> Reviewed by: simon Approved by: erwin (mentor)
* Vinetto extracts the thumbnails and associated metadata from the Thumbs.dbitetcu2006-12-275-0/+66
| | | | | | | | | | | | | | | | | | | | | files. The Windows systems (98, ME, 2000, XP and 2003 Server) can store thumbnails and metadata of the picture files contained in the directories of its FAT32 or NTFS filesystems. The thumbnails and associated metadata are stored in Thumbs.db files. The Thumbs.db files are undocumented OLE structured files. Once a picture file has been deleted from the filesystem, the related thumbnail and associated metada remain stored in the Thumbs.db file. So, the data contained in those Thumbs.db files are an helpful source of information for the forensics investigator. WWW: http://vinetto.sourceforge.net/ PR: ports/107235 Submitted by: Aleksander Fafula <alex at BSDGuru.org>
* Remove PACKAGE_BUILDING term to prevent this from being tried on pointyhatlinimon2006-12-271-1/+1
| | | | | | over and over again. Hat: portmgr
* Overview:gabor2006-12-268-0/+448
| | | | | | | | | | | | | | Pantera uses an improved version of SpikeProxy to provide a powerful web application analysis engine. Goals: The primary goal of Pantera is to combine automated capabilities with complete manual testing to get the best penetration testing results. WWW: http://www.owasp.org/index.php/Category:OWASP_Pantera_Web_Assessment_Studio_Project PR: ports/105291 Submitted by: Yonatan <onatan at gmail.com>
* - I forgot to bump PORTREVISION to sync with security/gnupg as ofkuriyama2006-12-254-0/+13
| | | | | | | | | | before 2.0 upgrade. - Add a patch to fix info/dir entry in gnupg1.info [1]. - Recover symlink during removing this port after installing security/gnupg (2.0) (I forgot to add this before...). PR: ports/106819 [1] Submitted by: Dmitry A Grigorovich <odip@bionet.nsc.ru>
* - Force USE_GETTEXT=YES (remove from OPTIONS) because 2.0.x cannot bekuriyama2006-12-251-0/+11
| | | | | | | | compiled without libintl.so (I didn't notice this by hidden dependencies). PR: ports/107089 Investigated with: Roland Smith <rsmith@xs4all.nl>
* - Force USE_GETTEXT=YES (remove from OPTIONS) because 2.0.x cannot bekuriyama2006-12-251-10/+12
| | | | | | | | compiled without libintl.so (I didn't notice this by hidden dependencies). PR: ports/107089 Investigated with: Roland Smith <rsmith@xs4all.nl>
* phpbb -- NULL byte injection vulnerability has been fixed indelphij2006-12-241-2/+2
| | | | their 2.0.22, so mark it as safe. Update to the port is pending.
* The pam_bsdbioapi(8) module always prompts for finger swiping beforeehaupt2006-12-244-2/+77
| | | | | | | | | | | | | failing and proceeding to the next module, even when the user has not enrolled yet. This patchset adds a command line option to skip this behaviour. NOTE: This patch will go into the next upstream release. PR: 106564 Submitted by: Eugene M. Kim <freebsd.org@ab.ote.we.lv> Approved by: Fredrik Lindberg <fli@shapeshifter.se> (maintainer)
* - Fix build on FreeBSD 4.x.shaun2006-12-233-7/+34
| | | | | PR: ports/106911 Submitted by: Daniel Roethlisberger <daniel@roe.ch> (maintainer)
* - Fix MASTER_SITESrafan2006-12-233-15/+24
| | | | | | | | | | - Add binary for 6.1 or above - Update distfiles - Add IA32_BINARY_PORT - Fix WWW PR: ports/107017 Submitted by: Demin Alexander <support at spectrum.ru> (maintainer)
* - Fix MASTER_SITESrafan2006-12-232-14/+22
| | | | | | | | | - Add binary for 6.1 or above - Update distfiles - Add IA32_BINARY_PORT PR: ports/107016 Submitted by: Demin Alexander <support at spectrum.ru> (maintainer)
* - Fix MASTER_SITESrafan2006-12-232-14/+22
| | | | | | | | | - Add binary for 6.1 or above - Update distfiles - Add IA32_BINARY_PORT PR: ports/106993 Submitted by: Demin Alexander <support at spectrum.ru> (maintainer)
* - Update to 1.61gabor2006-12-222-4/+4
| | | | | | | PR: ports/107021, ports/107078 (related) Submitted by: Gea-Suan Lin <gslin@gslin.org> Approved by: erwin (mentor)
* - Added post installment for configuration filesmiwi2006-12-222-0/+30
| | | | | | | - Bump PORTREVISION PR: ports/107079 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Fix post installment for configuration files. (if not exists...)miwi2006-12-221-1/+2
| | | | | | | - Bump PORTREVISION PR: ports/107081 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Fix post installment for configuration files. (if not exists...)miwi2006-12-221-2/+3
| | | | | | | - Bump PORTREVISION PR: ports/107080 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Add ipv6 categorymiwi2006-12-221-1/+1
| | | | | PR: ports/107052 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
* - Since security/gnupg (2.x) installs symlink $PREFIX/bin/gpg,kuriyama2006-12-2217-37/+37
| | | | | | | | depending on $PREFIX/bin/gpg for security/gnupg1 (1.4.x) is not correct. To work around this, change dependency line from bin/gpg to bin/gpgv which exists in security/gnupg1 port only. Spotted by: ume
* Fix Makefile now that gnupg-devel has disappeared, and gnupg1 has beenade2006-12-221-1/+1
| | | | | | repocopied. Takes care of current INDEX breakage. Submitted by: various scripts
* - Update to 0.91miwi2006-12-222-5/+4
| | | | | | PR: ports/106949 Submitted by: miwi Approved by: maintainer
* [MAINTAINER] update my email address in 76 ports + mirror some distfilesedwin2006-12-221-3/+4
| | | | | | | | | I've got a brand new hosting, so change my email to the new one. Also, now I can mirror some distfiles, so update MASTER_SITES for some ports. PR: ports/107038 Submitted by: Dmitry Marakasov <amdmi3@mail.ru>
* Looks like I missed thislofi2006-12-221-2/+2
|
* - Update to 0.9.12miwi2006-12-224-11/+12
| | | | | | | | | | | | | | | | | - Updated patch Perl Prelude bindings Changelog libprelude-0.9.12: - Correctly pack and unpack float value when sending/receiving. - More error checking on IDMEF object copy. - Fix a crash that occured when destroying a copied object. - Correct registration warning when using AF_UNIX socket. - Compile on systems lacking poll(). - IpV6 compatibility fixes. - Fix OS X compilation issues. - Various portability fixes. PR: ports/107009 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Update to 0.9.11miwi2006-12-222-8/+11
| | | | | | | | | | | | Changelog libpreludedb-0.9.11: - Avoid using GNU sed extension when generating postgresql/sqlite schema. - Fix a Python binding memory leak upon alert list deletion. - Compile and run on OS X. - Various bugfixes. - Various portability fixes. PR: ports/107008 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Update to 0.9.7miwi2006-12-224-6/+27
| | | | | | | | | | | | | Changelog prelude-manager-0.9.7: - Fix a startup problem on system with different address of different family mapping to the same IP. - Fix for system using the GnuLib poll replacement modules. The module was broken when used in conjunction with server socket. - Various portability fixes (this release should compile and run on OSX out of the box). PR: ports/107010 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* - Update to 0.9.8.1miwi2006-12-223-6/+33
| | | | | | | | | Changelog prelude-lml-0.9.8.1: - Compile and run under OS X. - Various portability fixes. PR: ports/107011 Submitted by: Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
* Retire gnupg-devel after three years of porting, patching and bugginglofi2006-12-218-116/+4
| | | | | gnupg-developers to include freebsd-fixes in what is now the all new and shiny gnupg 2.0. Thanks to everyone who contributed.
* - Update to 1.2.1gabor2006-12-213-7/+5
| | | | | | | | - Eliminate pkg-plist PR: ports/106945 Submitted by: Petr Rehor <prehor@gmail.com> Approved by: erwin (mentor)
* gnupg-devel and gnupg-2.x conflict.lofi2006-12-212-0/+4
|
* Fix dependency on shells/bash2 -> shells/bash.laszlof2006-12-211-1/+2
| | | | | | | Bump PORTREVISION PR: ports/107004 Submitted by: bsam@
* - Upgrade gnupg to 2.0.1. Old stable version (1.4.6) was repocopiedkuriyama2006-12-2127-198/+441
| | | | | | to security/gnupg1. Thanks to: dougb, lofi
* Fix build with gcc41arved2006-12-212-2/+24
|
* Add an entry for recently fixed proftpd remote code executiondelphij2006-12-211-0/+26
| | | | | | vulnerabilities. Reviewed by: remoko
* OpenID is a decentralized identity system, but one that's actuallyclsung2006-12-205-0/+83
| | | | | | | | | | | | | | | | decentralized and doesn't entirely crumble if one company turns evil or goes out of business. An OpenID identity is just a URL. You can have multiple identities in the same way you can have multiple URLs. All OpenID does is provide a way to prove that you own a URL (identity). Anybody can run their own site using OpenID, and anybody can be an OpenID server, and they all work with each other without having to register with or pay anybody to "get started". An owner of a URL can pick which OpenID server to use. WWW: http://www.openidenabled.com/openid/libraries/perl/
* Python OpenID library implements recent changes to the OpenIDclsung2006-12-205-0/+97
| | | | | | | | | | | | | specification as well as making API changes that should make integration with applications easier. This library allows the use of XRI as OpenID identifiers, allowing users to log in with their i-names. For full XRI compatibility, relying parties integrating this library should take note of the user's CanonicalID, as described in the "Identifying the End User" section of the OpenID 2.0 specification. WWW: http://www.openidenabled.com/openid/libraries/python/
* - Pass maintainership to chinsanrafan2006-12-201-1/+1
| | | | Approved by: Jeff Palmer <scorpio at drkshdw.org> (maintainer)
* Add phpmyid 0.3, a single user Identity Provider for the OpenIDclsung2006-12-205-0/+42
| | | | | | | framework. PR: ports/106874 Submitted by: Gea-Suan Lin <gslin at gslin.org>
* - Update to 1.6.5clsung2006-12-202-4/+4
| | | | | | PR: ports/105070 Submitted by: Thomas Abthorpe <thomas_AT_goodking dot ca> Approved by: maintainer (timeout)
* Update to KDE 3.5.5 / KOffice 1.6.1lofi2006-12-202-6/+6
| | | | Approved by: portmgr
* Document gzip -- multiple vulnerabilities, this is FreeBSD-SA06:21.gzipremko2006-12-201-0/+48
|
* Document bind9 -- Denial of Service in named(8) which is also knownremko2006-12-201-0/+55
| | | | | | as FreeBSD-SA-06:20.bind Notice: The previous commit was FreeBSD-SA-06:19.openssl
* Document openssl -- Incorrect PKCS#1 v1.5 padding validation in crypto(3)remko2006-12-201-0/+46
|
* - Update to 2.06sat2006-12-202-4/+4
|
* sql-ledger -- multiple vulnerabilitieslth2006-12-191-0/+39
| | | | Reviewed by: remko
* - Update to 2.6.1.2clsung2006-12-192-4/+4
|
* - Update to 1.07rafan2006-12-195-190/+9
| | | | | | PR: ports/106214 Submitted by: chinsan Approved by: maintainer timeout (17 days)
* MyPasswordSafe is a straight-forward, easy-to-use password manager thatalepulver2006-12-188-0/+99
| | | | | | | | | | | | | | | | | | maintains compatibility with Password Safe files. MyPasswordSafe has the following features: * Safes are encrypted when they are stored to disk. * Passwords never have to be seen, because they are copied to the clipboard. * Random passwords can be generated. * Window size, position, and column widths are remembered. * Passwords remain encrypted until they need to be decrypted at the dialog and file levels. * A safe can be made active so it will always be opened when MyPasswordSafe starts. * Supports Unicode in the safes. * Languages supported: English and French. WWW: http://www.semanticgap.com/myps/
* - Update to 20061217garga2006-12-172-6/+4
|
* - Updatre to 3.26.2miwi2006-12-162-4/+4
| | | | Submitted by: farrokhi
* - Update to 0.1.1.26miwi2006-12-162-5/+4
| | | | | PR: ports/106779 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer)
* Update several entries, making them a bit clearer (Were possible),remko2006-12-161-36/+16
| | | | | | adjusting some package names, and collapsing some ruby entries that can be combined. Also properly sort the <bid> and <cvename> tags. b comes before c.
* make it compilable with gcc 4.1.ume2006-12-151-0/+13
| | | | Reported by: pointyhat via kris
* Document the recent D-BUS vulnerability as described by CVE-2006-6107.marcus2006-12-151-0/+32
| | | | Submitted by: mnag
* Fix build with gcc41arved2006-12-151-0/+34
| | | | Reported by: pointyhat
* - evince -- Buffer Overflow Vulnerabilitymnag2006-12-151-0/+31
|
* - Change spaces to tabs in <name> and <range>mnag2006-12-141-28/+24
| | | | | | - Remove some empty lines - Respect 2 spaces between <body> and <p> - Respect empty line between <vuln vid=""> entry.
* - Update to 1.4.1miwi2006-12-145-51/+9
| | | | | PR: 106679 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org>
* - Update to 0.7.6garga2006-12-142-4/+4
| | | | Changelog at: http://www.allard.nu/pfw/history
* - fix the bug =>clsung2006-12-141-1/+2
| | | | | | | | | | The port security/blocksshd has the location of the config file hard-coded into it as "/etc/blocksshd.conf", while the port places the config file into "/usr/local/etc/blocksshd.conf" - bump PORTREVISION PR: ports/106629 Submitted by: Rob B<rbyrnes_AT_mailshack dot com>
* - Unbreak on 7.0 (hopefully..)alexbl2006-12-142-2/+8
| | | | Submitted by: pointyhat via kris
* tDiary - Injection Vulnerabilitymiwi2006-12-141-0/+23
|
* - wv -- Multiple Integer Overflow Vulnerabilitiesmnag2006-12-131-0/+35
|
* Update the ftp/curl port to 7.16.0.roam2006-12-135-5/+19
| | | | | | | | | | Bump PORTREVISION of all dependent ports. Fix the build errors in the few ports that still use the long deprecated, and now obsoleted, cURL options. Thanks to everyone who took the time to look over the patch! Discussed on: -ports
* - wv2 -- Integer Overflow Vulnerabilitymnag2006-12-131-0/+32
|
* - Fix tnftpd entry (made validate happy)miwi2006-12-131-1/+0
|
* tnftpd - remote root exploitmiwi2006-12-131-0/+24
| | | | | Reviewed by: simon Approved by: secteam
* - pass maintainership to python@ (it should have been that way in thealexbl2006-12-131-1/+1
| | | | first place)
* - Add hashlib-20060408aalexbl2006-12-135-0/+45
| | | | | | | Python secure hash and message digest module MD5, SHA1, SHA224, SHA256, SHA384 and SHA512 (backported from Python 2.5 for use on 2.3 and 2.4) WWW: http://code.krypto.org/python/hashlib/
* - Mark as FORBIDDENmnag2006-12-131-0/+2
| | | | | Security: http://www.vuxml.org/freebsd/eb5124a4-8a20-11db-b033-00123ffe8333.html With hat: secteam
* - clamav -- Multipart Nestings Denial of Servicemnag2006-12-131-0/+35
|
* - Update to 4.20miwi2006-12-133-5/+12
| | | | | | PR: ports/106567 Submitted by: Jose Fernandes<jose@diasfernandes.pt> Approved by: maintainer
* - Update to 0.9.633miwi2006-12-133-62/+146
| | | | | PR: ports/106609 Submitted by: Sergei Vyshenski <svysh@cryptocom.ru> (maintainer)
* Pkg-plist fixup.cy2006-12-133-0/+6
| | | | Noticed by: kris (via pointyhat)
* - Update clamav to 0.88.7mnag2006-12-132-4/+4
| | | | | | | | PR: 106620 Submitted by: Michael Scheidell <scheidell___secnap.net> Approved by: maintainer timeout (18 hours) With hat: secteam Security: http://secunia.com/advisories/23347/, http://www.quantenblog.net/security/virus-scanner-bypass
* Fix the CFLAGS reinplace so it actually works.laszlof2006-12-121-2/+2
|
* Record checksum of final distfile from author.cy2006-12-116-6/+15
| | | | | | | Portlint fixups. PR: TBA Submitted by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw>
* Record checksums of final version of distifle.cy2006-12-116-9/+18
| | | | | | | Portlint fixups. PR: TBA Submitted by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw>
* Update from 2.0.10 to 2.1.8.cy2006-12-1124-546/+552
| | | | | | | | Vadim Kurland, the author of libfwbuilder and fwbuilder, wishes that I maintain this port for him. Submitted by: Vadim Kurland <vadim@fwbuilder.org> Approved by: Maintainer: Vadim Kurland <vadim@fwbuilder.org>
* BROKEN: Does not compilekris2006-12-101-0/+2
|
* Rewrite the libxine entry:remko2006-12-091-24/+17
| | | | | | | o Use the FDP style to fill in the entry. o Remove the secunia references and use the libxine information. o Properly sort the references section o Add the modified tag (since I changed it).
* - Chase security/gnupg upgrade (but still 1.4.6) after repocopy.kuriyama2006-12-097-25/+43
| | | | | | | | (not connected in ../Makefile) - Tweak installation directory for documents to avoid conflict against coming gnupg upgrade (2.0.1). I'm still testing my patch to upgrade to 2.0.1, so please wait. :-)
* - PAR::Filter is moved to PAR::Packer distributionrafan2006-12-091-1/+1
| | | | | Noticed by: pointyhat via kris Pointy hat to: rafan
* Change my e-mail address.gabor2006-12-0849-49/+49
| | | | Approved by: erwin (mentor)
* - Update f-prot to 4.6.7.tdb2006-12-084-9/+9
|
* - Unbreak locale.kuriyama2006-12-082-0/+11
| | | | | PR: ports/106456 Submitted by: jjuanino@gmail.com
* Add an entry for libxine multiple buffer overflow vulnerabilities.nobutaka2006-12-081-0/+45
|
* Update to version 0.1.2.4laszlof2006-12-082-6/+5
| | | | | PR: ports/106477 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer)
* - Ok. gnupg-devel are not affected.mnag2006-12-071-4/+0
|
* - Add gnupg-devel package in last entrymnag2006-12-071-0/+5
| | | | - Add secunia reference in las entry
* - Update snort to latest version (2.6.1.1)clsung2006-12-073-4/+20
| | | | | PR: ports/106368 Submitted by: Sunpoet Po-Chuan Hsieh <sunpoet_AT_sunpoet dot net>
* * Fix typo in the latest GnuPG entry, inherited from the original messagevd2006-12-071-2/+2
| | | | | * Fix the URL in references, the former one gives 404 Not found. Kuriyama, where did you get it from?
* Add CVE-2006-6235 entry for GnuPG.kuriyama2006-12-071-0/+60
|
* - Upgrade to 1.4.6 (including security fix).kuriyama2006-12-073-21/+9
| | | | | Security: CVE-2006-6235 References: http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000491.html
* - Bump PORT_REVISION and change LIB_DEPENDS to reflect update in devel/libeventmnag2006-12-055-7/+10
| | | | - Fix many wrong BUILD_DEPENDS. Thanks to ldd(1)
* Update to 1.0.1lofi2006-12-054-12/+20
|
* update to 0.9.630miwi2006-12-053-4/+153
| | | | | PR: ports/106069 Submitted by: Sergei Vyshenski <svysh@cryptocom.ru> (maintainer)
* The tool is a simple flow-analyzing passive L7 fingerprinter. Itmiwi2006-12-056-0/+65
| | | | | | | | | | | | examines the sequence of client-server exchanges, their relative layer 7 payload sizes, and transmission intervals (as opposed to inspecting the contents, which is what most passive fingerprinters and "smart" sniffers would do to analyze transmissions). This is then matched against a database of traffic pattern signatures to infer some interesting facts about the traffic. PR: ports/106351 Submitted by: trasz <trasz at pin.if.uz.zgora.pl>
* - Add a modified field for the entry, touched by the previous commitstas2006-12-051-0/+1
|
* - List all affected packages for the Novermber ruby cgi DOS vulnerabilitystas2006-12-051-1/+16
| | | | - This vulnerability was not fixed in ruby_static
* - Documenet ruby cgi library vulnerabilitystas2006-12-051-0/+46
|
* - An option to force NATT functionalitysat2006-12-041-3/+7
| | | | | | | | | - Sneak in master sites beautification and use_ldconfig while I'm here PR: ports/105488 Submitted by: bz Approved by: VANHULLEBUS Yvan <yvan.vanhullebus@netasq.com> (maintainer)
* Add sshblock, a tool to block abusive SSH login attempts.anders2006-12-046-0/+93
|
* - Deprecateerwin2006-12-041-0/+3
| | | | | | | - Set EXPIRATION_DATE PR: 106237 Submitted by: gabor
* - Deprecateerwin2006-12-041-0/+3
| | | | | | | - Set EXPIRATION_DATE PR: 106236 Submitted by: gabor
* Correct path to Compress::Zlib.pm after recent p5-Compress-Zlib update.demon2006-12-033-3/+3
|
* Update to 0.9.16 release.ale2006-12-032-4/+4
|
* - Document buffer overflow vulnerabilities in the libmusicbrainz.stas2006-12-031-0/+34
|
* Fix markup in last entry so the file is valid XML again.simon2006-12-031-3/+2
| | | | Pointy hat to: simon
* - Add a entry for www/tDiary, www/tDiary-develmiwi2006-12-021-0/+25
| | | | Reviewed by: simon
* - update to 1.02leeym2006-12-022-4/+4
|
* - Document the SGI Image File heap overflow vulnerability in ImageMagickstas2006-12-021-0/+34
|
* Update to stunnel 4.20.roam2006-12-022-4/+4
|
* - Use features of bsd.wx.mk, especially USE_WXpav2006-12-013-8/+6
| | | | | PR: ports/101613 Submitted by: alepulver
* - Update dependencies:clsung2006-12-012-3/+19
| | | | | | | | | | | ! Remove Proc::Daemon & Proc::PID::File ! Add Net::Subnets - Respect PREFIX for default configuration file. - Change back TARGETDIR to PREFIX. - Bump PORTREVISION. PR: ports/105953 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* BROKEN: Incomplete pkg-plistkris2006-12-011-0/+1
|
* Document "gtar -- GNUTYPE_NAMES directory traversal vulnerability".naddy2006-12-011-0/+31
|
* Document 'kronolith -- arbitrary local file inclusion vulnerability'shaun2006-11-301-0/+33
|
* - Switch to SF mirrorssat2006-11-301-2/+1
| | | | | | PR: ports/104944 Submitted by: Thomas Abthorpe <thomas@goodking.ca> Approved by: Howard Owen <hbo@egbok.com> (maintainer timeout, 30 days)
* Update to 0.9.15 release.ale2006-11-292-4/+4
|
* In latest gnupg entry:simon2006-11-281-10/+8
| | | | | | - Use "Werner Koch reports" instead of "Author reports" to follow normal style in vuln.xml. - Fix some indentation and markup in body.
* Fix buffer overflow.lofi2006-11-282-0/+13
| | | | Security: https://bugs.g10code.com/gnupg/issue728
* Update to 0.11.2-pre3 release:ale2006-11-283-8/+31
| | | | | - add optional signer plugin - fix build when libassuan is installed
* Add recent gnupg one.kuriyama2006-11-281-0/+33
|
* Fix buffer overflow.kuriyama2006-11-284-2/+26
| | | | References: http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000241.html
* - Update to 4.2.2miwi2006-11-272-4/+4
| | | | | PR: ports/105882 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* - Update to 2.4.4erwin2006-11-273-9/+15
| | | | | | | | | - Don't quote amavis_p0f_daemon_flags in the p0f rc.d script [1] - Don't use -p option of daemon on 4.X since it doesn't have such [1] Requested by: Michael Scheidell <scheidell@secnap.net> [1] PR: 105862 Submitted by: gabor (maintainer)
* Remove empty patch file.erwin2006-11-271-0/+0
| | | | Forgotten by: erwin
* - Update to 0.9.11clsung2006-11-278-12/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | - library version update of related ports Changelog libprelude: - Hook class comparison function. Accept NULL, equal, not equal operator. - Introduce better error checking in the idmef-class API, which is now considered public and might be used by external application. Rename error code to reflect the API. - Change to the way IDMEF listed element are handled. Specifying negative number as the position of the element from the low level API now allow to position the element at the specified (reversed) index. Using the high level API a negative index permit to address a list of element backward (replace an element). - Build fixes for SWIG > 1.3.27. - Modify idmef_value_match() so that it always unroll listed value (do it for both val1 and val2. Remove assertion, and let idmef_value_type_compare() return an error code in case there is an issue. - Handle path using IDMEF_LIST_APPEND or IDMEF_LIST_PREPEND as path using an undefined list index on idmef_path_get() call. - Make criteria parser accept (*) list index. - Implement comparison function for all IDMEF object. PR: ports/104328 Submitted by: maintainer (Robin Gruyters) Approved by: portmgr (pav)
* - Add WWW Entryrafan2006-11-271-0/+2
| | | | | PR: ports/105866 Submitted by: TAKAHASHI Kaoru <kaoru at kaisei.org> (maintainer)
* Update to 0.6.12-pre1 release.ale2006-11-262-4/+4
|
* Fix build on CURRENT where INCSDIR seems to be spelled INCLUDEDIRarved2006-11-251-7/+4
|
* - Update to 0.47miwi2006-11-253-5/+46
| | | | | PR: ports/105816 Submitted by: Luiz Eduardo Roncato Cordeiro <cordeiro@cert.br> (maintainer)
* A library for connecting to and sending commands to a localmiwi2006-11-245-0/+49
| | | | | | | | | | | ClamAV clamd service - an anti-virus daemon process. You can find more information about clam anti-virus at WWW: http://www.clamav.net/ File::Scan::ClamAV was originally based on the Clamd module Submitted by: Jan-Peter Koopmann <Jan-Peter.Koopmann at seceidos.de>
* Update to 0.9.14 release.ale2006-11-232-4/+4
|
* - Move patch from pre-configure to post-patch.clsung2006-11-232-7/+8
| | | | | | | | | - Use denyhost.conf (FreeBSD's default config file) instead of denyhost.cfg. - Bump PORTREVISION. PR: ports/105305 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org> Approved by: maintainer (Mohacsi Janos)
* - Update to 1.0clsung2006-11-233-14/+11
|
* Update to 3.11.4ahze2006-11-232-4/+4
|
* - Update to 0.24clsung2006-11-222-5/+4
|
* - Update to 1.2.7miwi2006-11-222-4/+4
| | | | | PR: ports/105727 Submitted by: Linh Pham (maintainer)
* - Update to 5.3pav2006-11-224-25/+55
| | | | | | | | - Fix detection for optional subversion module PR: ports/104891 Submitted by: Nicolas Blais <nb_root@videotron.ca> Approved by: maintainer timeout (3 weeks)
* Add <modified> tag to previous proftpd entry.shaun2006-11-211-0/+1
| | | | Requested by: remko
* - Update to 2.4miwi2006-11-192-12/+11
| | | | | PR: ports/105596 Submitted by: Joshua D. Abraham <jabra@ccs.neu.edu> (maintainer)
* - Update to 2.05sat2006-11-182-4/+4
|
* Update HPN patch to v14 for openssh 4.5p1.ale2006-11-182-4/+4
| | | | Approved by: mnag
* - Update to 105618miwi2006-11-177-18/+84
| | | | | PR: ports/105618 Submitted by: Andrea Venturoli <freebsd@netfence.it> (maintainer)
* Unbreak, don't abuse DESTDIR as PREFIX.arved2006-11-172-9/+4
| | | | Take Maintainership.
* - Update to 0.10.3miwi2006-11-174-45/+51
| | | | | PR: ports/105591 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Sguil (pronounced "sgweel") is a graphical interface to snort,miwi2006-11-168-0/+253
| | | | | | | | | | | | | | | | | | | | | an open source intrusion detection system. The actual interface and GUI server are written in tcl/tk. Sguil also relies on other open source software in order to function properly. The client requires gpg, iwidgets and other tcl packages and may also use wireshark, festival and tls depending on your selection of options. Run "make config" in the port to see what options are available. Sguil currently functions as an analysis interface and has no snort sensor or rule management capabilities. WWW: http://sguil.sourceforge.net/index.php pauls@utdallas.edu PR: ports/105496 Submitted by: Paul Schmehl <pauls at utdallas.edu>
* - Pass maintainership to submittermiwi2006-11-161-1/+1
| | | | | PR: ports/105552 Submitted by: Lars Sommer<lasg@lasg.dk>
* Add proftpd-mysql to the previous entry.shaun2006-11-151-0/+1
|
* Update to stunnel 4.19 and fix the NOPORTDOCS installation to reallyroam2006-11-152-5/+6
| | | | | skip over the installation of example files and scripts. Of course, stunnel.conf-sample is still installed into etc/stunnel/.
* Update to 0.9.12 release.ale2006-11-152-4/+4
|
* Update to 0.6.11-pre1 release (it's 0.6.10 + a few BSD fixes).ale2006-11-154-34/+8
|
* Document "proftpd -- Remote Code Execution Vulnerability".shaun2006-11-151-0/+32
|
* The Command Injection Vulnerability was corrected by awstats 6.5_2,1.delphij2006-11-151-2/+2
| | | | | Submitted by: Alex Samorukov PR: ports/105233
* Correct pkg-plist, and add dependency for cracklib.laszlof2006-11-142-2/+4
| | | | | | PR: ports/105299 Submitted by: Bill Moran <wmoran@collaborativefusion.com> (maintainer) Approved by: flz (mentor)
* Add archivers/unzoo Directory Traversal Vulnerability.ehaupt2006-11-141-0/+34
| | | | Reviewed by: simon
* - Update to 1.1.0.r1miwi2006-11-143-10/+28
| | | | | PR: ports/105486 Submitted by: Thomas Abthorpe <thomas@goodking.ca> (maintainer)
* - Ignore Perl < 5.6clsung2006-11-141-2/+8
| | | | | | | - Change maintainer to perl@ PR: ports/105509 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>
* Register conflicts for srp in security/heimdal, security/krb4, and ↵laszlof2006-11-147-12/+19
| | | | | | | | | | | securiry/krb5. Bump PORTREVISION accordingly. PR: ports/105442 Submitted by: Ruben van Staveren <ruben@verweg.com> Reviewed by: shaun@, cy@ Approved by: flz (mentor)
* - Update to 0.3.8miwi2006-11-132-4/+5
| | | | | PR: ports/105432 Submitted by: Milan Obuch<bsd@dino.sk> (maintainer)
* - Remove .svn from the pkg-plistmiwi2006-11-132-9974/+379
| | | | | Submitted by: miwi via privat mail Approved by: maintainer
* Fix build on 4.x.ale2006-11-133-4/+15
|
* - Update to 3.0-beta3miwi2006-11-133-39/+9930
| | | | | PR: ports/105397 Submitted by: Jonathan <afarsec@012.net.il> (maintainer)
* Update to 2.1_rc1.itetcu2006-11-132-4/+4
| | | | | PR: ports/105449 Submitted by: Matthias Andree (maintainer)
* Reset inactive maintainer asa@gascom.ru.linimon2006-11-131-1/+1
| | | | Hat: portmgr
* Add bugzilla -- multiple vulnerabilities entry.simon2006-11-111-2/+57
| | | | | | Update earleir bugzilla entry with better topic, add ja-bugzilla as also potentially vulnerable (thought the version currently in ja-bugzilla isn't), and add more references.
* New Port: security/osslsigncodelaszlof2006-11-115-0/+53
| | | | | | | | | Platform-independent tool for Authenticode signing of EXE/CAB files - uses OpenSSL and libcurl. It also supports timestamping. PR: ports/105353 Submitted By: Nick Barkas <snb@threerings.net> Approved By: flz (mentor)
* Fix typo in COMMENTitetcu2006-11-111-1/+1
| | | | | PR: 105391 Submitted by: Paul Schmehl (maintainer)
* - Fix typo in COMMENTpav2006-11-111-1/+1
| | | | | PR: ports/105388 Submitted by: Paul Schmehl <pauls@utdallas.edu> (maintainer)
* - Fix CHROOT patch using chroot() before setusercontext() and add strerror() ↵mnag2006-11-101-18/+14
| | | | | | in message if chroot() fail. Notified by: Chris Gardner <chris_g_g___hotmail.com>
generated by cgit (git 2.34.1) at 2025-03-09 13:33:27 +0800