aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Added wireshark (DoS) and piwik (XSS) issuesNiels Heinen2010-05-081-0/+57
| | | | | | | Approved by: itetcu (mentor, implicit) Security: http://www.wireshark.org/security/wnpa-sec-2010-03.html Security: http://www.wireshark.org/security/wnpa-sec-2010-04.html Security: http://piwik.org/blog/2010/04/piwik-0-6-security-advisory/
* Added spamass-milter remote command execution vulnerabilityNiels Heinen2010-05-071-1/+31
| | | | | | Approved by: itetcu (mentor, implicit) Security: CVE-2010-1132 Security: http://archives.neohapsis.com/archives/fulldisclosure/2010-03/0139.html
* Update to 0.4.3Sergey Skvortsov2010-05-064-85/+14
| | | | | | Changes: http://www.keepassx.org/changelog PR: ports/146259 Submitted by: Gvozdikov Veniamin <g.veniamin xx googlemail.com>
* - Added mediawiki and lxr vulnerabilitiesNiels Heinen2010-05-061-1/+68
| | | | | | | | | - Fixed vlc topic format (lower case, portname first) PR: ports/146337 Approved by: itetcu (mentor, implicit) Security: http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-April/000090.html Security: http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com
* - fix path in c_rehashDirk Meyer2010-05-054-4/+50
| | | | | | | | Submitted by: Matthias Andree Obtained from: http://rt.openssl.org/Ticket/Display.html?id=2234 - add more DTLS bugfixes Obtained from: http://sctp.fh-muenster.de/
* - Update to 1.33Philippe Audeoud2010-05-052-4/+4
| | | | - Changelog: http://search.cpan.org/src/SULLR/IO-Socket-SSL-1.33/Changes
* Add security/p5-Crypt-CAST5 0.05, a Perl module that implementsAnton Berezin2010-05-055-0/+39
| | | | CAST5 block cipher.
* Update 1.3.r7 --> 4.2.Cy Schubert2010-05-056-46/+11
| | | | | PR: 146072 Submitted by: plosher
* Update 3.0.7 --> 4.0.0.Cy Schubert2010-05-057-148/+332
|
* Welcome the new fwbuilder-devel and libfwbuilder-devel ports.Cy Schubert2010-05-051-0/+2
|
* Welcome the new fwbuilder-devel port.Cy Schubert2010-05-054-57/+219
|
* Welcome the new libfwbuilder-devel port.Cy Schubert2010-05-053-90/+117
|
* Added 38 missing CVE names to 24 VuXML entriesNiels Heinen2010-05-051-5/+62
| | | | | | | (256 CVE names to go) Approved by: itetcu (mentor, implicit) Security: http://people.freebsd.org/~niels/vuxml/
* - Update to 20100504Renato Botelho2010-05-052-5/+5
| | | | - Try to fix build on sparc64 disabling LLVM/JIT build
* Disable LLVM/JIT build for sparc64, it should unbreak it on this archRenato Botelho2010-05-051-1/+1
|
* Fix build issue WITH_OPENSSL_PORT.Norikatsu Shigemura2010-05-041-0/+1
| | | | | PR: ports/146289 Submitted by: Dan Lukes dan obluda cz
* Fix build issue WITH_OPENSSL_PORT.Norikatsu Shigemura2010-05-041-0/+2
| | | | | PR: ports/146288 Submitted by: Dan Lukes dan obluda cz
* Fix build issue WITH_OPENSSL_PORT.Norikatsu Shigemura2010-05-041-0/+2
| | | | | PR: ports/146286 Submitted by: Dan Lukes dan obluda cz
* Fix build issue WITH_OPENSSL_PORT.Norikatsu Shigemura2010-05-041-0/+2
| | | | | PR: ports/146285 Submitted by: Dan Lukes dan obluda cz
* - Annotate the combination of X509 and KERB_GSSAPI patches as brokenPav Lucistnik2010-05-041-0/+4
| | | | | | PR: ports/142819 Submitted by: Scot Hetzel <swhetzel@gmail.com> Approved by: maintainer timeout (1 month)
* Fix build error WITH_OPENSSL_PORT.Norikatsu Shigemura2010-05-041-0/+2
| | | | | PR: 146283 Submitted by: Dan Lukes dan obluda cz
* - Use @dirrmtry instead of @dirrmWen Heping2010-05-041-3/+3
| | | | | PR: ports/144965 Submitted by: Kimo <kimor79@yahoo.com>
* Update to 2.6.Roman Bogorodskiy2010-05-042-4/+4
|
* Update to 2.8.6.Roman Bogorodskiy2010-05-043-4/+5
|
* Update to 2.9.10.Roman Bogorodskiy2010-05-044-26/+57
|
* - Update to 1.5.0Sahil Tandon2010-05-032-5/+4
| | | | | | PR: ports/146234 Submitted by: Petr Rehor <prehor@gmail.com> (maintainer) Approved by: wxs@ (mentor)
* Added 34 missing CVE names to 24 VuXML entriesNiels Heinen2010-05-021-7/+60
| | | | | | | (294 CVE names to go) Approved by: miwi (secteam) Security: http://people.freebsd.org/~niels/vuxml/
* Update to version 1.07 (unbreak port)Niels Heinen2010-05-023-20/+31
| | | | Approved by: itetcu (mentor, implicit)
* - Update to 0.2.2.13-alphaMartin Wilke2010-05-022-4/+4
| | | | | PR: 146091 Submitted by: Andrei Lavreniyuk <andy.lavr@gmail.com> (maintainer)
* 2010-04-30 audio/py-flac: has been marked IGNORE for past 24 monthsMartin Wilke2010-05-027-111/+0
| | | | | | | | | | | | | | | | | 2010-02-20 databases/mysql-connector-java50: Old version: please use databases/mysql-connector-java instead 2010-04-15 databases/p5-DBIx-Class-HTML-FormFu: This module is obsoleted by www/p5-HTML-FormFu-Model-DBIC 2010-04-29 devel/py-rbtree: "does not build with new pyrex and it's not active maintained" 2010-04-08 devel/tavrasm: No longer maintained, use devel/avra instead 2010-04-27 mail/postfix23: it's no longer maintened by upstream developer 2010-04-30 math/libgmp4: Use math/gmp instead. 2010-04-04 misc/ezload: does not build with new USB stack in 8-STABLE 2010-01-31 misc/gkrellmbgchg: use misc/gkrellmbgchg2 2010-03-04 multimedia/kbtv: no longer under development by author 2010-02-16 net/plb: broken; abandoned by author; use net/relayd or www/nginx instead 2010-04-30 security/vpnd: This software is no longer developed 2010-03-15 textproc/isearch: abandoned upstream, uses an obsolete version of GCC, not used by any other port 2010-04-02 www/caudium12: No longer maintained upstream, please switch to www/caudium14 2010-03-08 www/p5-Catalyst-Plugin-Cache-FileCache: Deprecated by module author in favor of www/p5-Catalyst-Plugin-Cache
* - VideoLAN has released 1.0.6 to address serveral vulnerabilities they ↵Sylvio Cesar Teixeira2010-05-021-0/+27
| | | | | | | discoverd while working towards the 1.1.0 release. These vulnerabilities could potentially allow for a specially crafted file to execute code. PR: ports/146099 Submitted by: Joseph S. Atkinson <jsa@wickedmachine.net> (maintainer)
* Updated port to version 1.06Niels Heinen2010-05-023-18/+57
| | | | Approved by: itetcu (mentor, implicit)
* Update to version 1.33bNiels Heinen2010-05-022-4/+5
| | | | | Reviewed by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor, implicit)
* Update to 1.2.15Johan van Selst2010-04-302-4/+4
|
* - fix version for apache+mod_sslDirk Meyer2010-04-301-1/+1
|
* - fix info for apache+mod_sslDirk Meyer2010-04-301-1/+1
|
* - Assign to new volunteerPhilip M. Gollucci2010-04-301-1/+1
|
* - fix dependencyCheng-Lung Sung2010-04-291-0/+2
| | | | | | | - bump PORTREVISION PR: ports/144709 Submitted by: Rainer Duffner <rainer_AT_ultra-secure dot de>
* Fix the 'nss-config --libs' by remove the '-Wl,-R/usr/local/lib/nss' to allowJeremy Messenger2010-04-292-1/+2
| | | | | | | other gecko applications to be able to build with nss. PR: ports/144994 Submitted by: mi
* Mark kdebase3 as safe now.Max Brazhnikov2010-04-291-1/+1
|
* - Re-assign all my rubygem-* ports to ruby@Philip M. Gollucci2010-04-284-6/+6
| | | | | | | | | this gives us more eyes and brings us inline with perl@ Current ruby@ members (stas, dinoex, pgollucci) http://wiki.freebsd.org/Ruby Discussed with: stas on #bsdports
* - Documented multiple Joomla! vulnerabilitiesNiels Heinen2010-04-271-0/+52
| | | | | | | - Added new reference to the recent cacti issue Approved by: remko (secteam) Security: http://developer.joomla.org/security/
* Welcome to krb5-appl-1.0. MIT split the Kerberos applications from theCy Schubert2010-04-2625-597/+57
| | | | base Kerberos distribution, creating krb5-appl.
* Welcome the new krb5-1.8.1. Significant changes include the removal ofCy Schubert2010-04-2616-574/+193
| | | | the MIT KRB5 applications (now in a separate tarball and port).
* Krb5-17 has been merged into krb5 and a new krb5-appl has been repocopiedCy Schubert2010-04-261-1/+1
| | | | | | | from krb5-l7. The old krb5-17 port has been removed. All this is in preparation for the krb5 1.8.1 commit. PR: 145968
* Remove krb5-17, which has been merged into the krb5 port.Cy Schubert2010-04-2626-1061/+0
|
* MFkrb5-17.Cy Schubert2010-04-2612-220/+89
|
* - Update to 201017Sylvio Cesar Teixeira2010-04-262-4/+4
| | | | | PR: ports/145762 Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer)
* Documented vulnerabilities in moodle, tomcat55, tomcat66 and cactiNiels Heinen2010-04-251-0/+94
| | | | | | | | | PR: ports/146021 PR: ports/146022 Approved by: remko (secteam) Security: http://seclists.org/bugtraq/2010/Apr/200 Security: http://docs.moodle.org/en/Moodle_1.9.8_release_notes Security: http://www.bonsai-sec.com/en/research/vulnerability.php
* - Update to 5.3Sahil Tandon2010-04-255-50/+10
| | | | | | | | | - Use ${PORTNAME} variable where possible PR: ports/145524 Submitted by: Laurent LEVIER <llevier@argosnet.com> (maintainer) Tweaked by: sahil@ (myself) Approved by: wxs@ (mentor)
* Documented emacs movemail vulnerability and marked the seperateNiels Heinen2010-04-241-0/+67
| | | | | | | mail/movemail port vulnerable to an old format string vulnerability. Approved by: remko (secteam) Security: http://www.ubuntu.com/usn/USN-919-1
* - PHP 5.2 slave portDirk Meyer2010-04-242-0/+15
| | | | | PR: 145772 Submitted by: Alex Keda
* - PHP 5.2 slave portDirk Meyer2010-04-243-0/+29
| | | | | PR: 145772 Submitted by: Alex Keda
* - PHP 5.2 slave portDirk Meyer2010-04-241-0/+1
| | | | | PR: 145772 Submitted by: Alex Keda
* - PHP 5.2 slave portDirk Meyer2010-04-234-0/+54
| | | | | PR: 145772 Submitted by: Alex Keda
* - PHP 5.2 slave portDirk Meyer2010-04-231-0/+1
| | | | | PR: 145772 Submitted by: Alex Keda
* - Update MASTER_SITESKirill Ponomarev2010-04-231-3/+1
| | | | | PR: ports/145730 Submitted by: sylvio@FreeBSD.org
* Added krb5 double free vulnerabilityNiels Heinen2010-04-221-0/+30
| | | | | | Approved by: remko (secteam) Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-004.txt Security: CVE-2010-1320
* Upgraded to version 1.05Niels Heinen2010-04-213-118/+202
| | | | Approved by: itetcu (mentor)
* JBroFuzz is a web application fuzzer for requests being made overNiels Heinen2010-04-216-0/+74
| | | | | | | | | HTTP or HTTPS. Its purpose is to provide a single, portable application that offers stable web protocol fuzzing capabilities. WWW: http://www.owasp.org/index.php/Category:OWASP_JBroFuzz Approved by: itetcu (mentor)
* Upgraded to version 1.32bNiels Heinen2010-04-212-4/+4
| | | | | Reviewed by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor)
* Documented the following vulnerabilities:Niels Heinen2010-04-211-0/+161
| | | | | | | | | | | | | | | | | | - png: libpng decompression denial of service - e107: code execution and XSS vulnerabilities - pidgin: multiple remote denial of service vulnerabilities - fetchmail: denial of service vulnerability PR: ports/145885 PR: ports/145857 Approved by: remko (secteam) Security: CVE-2010-0996 Security: CVE-2010-0997 Security: CVE-2010-1167 Security: CVE-2010-0277 Security: CVE-2010-0420 Security: CVE-2010-0423 Security: CVE-2010-0205
* - fix LIB_DEPENDS about libnetCheng-Lung Sung2010-04-202-5/+6
| | | | | | | | | - snortsam patch for snort has changed - ref: http://lists.snortsam.net/pipermail/snortsam-discussion/2010-March/000502.html - bump PORTREVISION PR: ports/145632 Submitted by: olli hauer <ohauer_AT_gmx dot de>
* Documented the following vulnerabilities:Niels Heinen2010-04-201-0/+111
| | | | | | | | | | | | - curl: libcurl buffer overflow vulnerability - irssi: multiple vulnerabilities - ejabberd: queue overload denial of service vulnerability Approved by: remko (secteam) Security: http://curl.haxx.se/docs/adv_20100209.html Security: http://support.process-one.net/browse/EJAB-1173 Security: http://xforce.iss.net/xforce/xfdb/57790 Security: http://xforce.iss.net/xforce/xfdb/57791
* New port: Fuzzdb is a comprehensive set of fuzzing patterns thatNiels Heinen2010-04-195-0/+152
| | | | | | | | can be used during discovery or security testing of web applications. WWW: http://code.google.com/p/fuzzdb/ Approved by: itetcu (mentor)
* Switch to use newer GMP version.Alex Dupre2010-04-1912-19/+24
| | | | | | PR: ports/144487 Submitted by: ale Approved by: portmgr (-exp run by erwin)
* - Added three krb5 vulnerabilitiesNiels Heinen2010-04-191-6/+80
| | | | | | | | | | - Fixed indent on mahara entry - Fixed title of KDM entry Approved by: remko (secteam) Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-001.txt Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-002.txt Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-003.txt
* Mark BROKEN on 9.x: does not buildErwin Lansing2010-04-191-0/+4
|
* Mark BROKEN on 9.x: leaves files behind on deinstallErwin Lansing2010-04-191-0/+4
|
* Document mahara sql injection vulnerabilityNiels Heinen2010-04-191-0/+32
| | | | | Approved by: remko (secteam) Security: http://www.debian.org/security/2010/dsa-2030
* Upgrade to version 1.31bNiels Heinen2010-04-182-4/+4
| | | | | Reviewed by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor)
* - Fix pkg-plist so directories installed out of PREFIX are removedGreg Larkin2010-04-171-0/+1
| | | | | | | when empty PR: ports/145741 Submitted by: sahil
* Update to 1.2.5 and hand maintainership to Sofian Brabez.David Thiel2010-04-172-5/+54
| | | | | PR: ports/145760 Submitted by: sbrabez@gmail.com
* Update to stunnel-4.33; hopefully, the stability problems are fixed now.Peter Pentchev2010-04-165-16/+13
|
* Correct CVE entry. The advisory from Todd[0] says CVE 2010-0426, which isWesley Shields2010-04-161-1/+1
| | | | | | | | | the entry assigned to the original sudoedit vulnerability[1]. The new one (CVE-2010-1163) was just assigned. I believe the one assigned by CVE folks is the proper one to use. [0]: http://sudo.ws/sudo/alerts/sudoedit_escalate2.html [1]: 018a84d0-2548-11df-b4a3-00e0815b8da8
* - Update to 1.7.2p6 (security fix).Wesley Shields2010-04-162-5/+5
| | | | Security: 1a9f678d-48ca-11df-85f8-000c29a67389
* - Document sudo privilege escalation bug. This is similar toWesley Shields2010-04-161-0/+36
| | | | 018a84d0-2548-11df-b4a3-00e0815b8da8.
* Mark FORBDDEN due to security vulnerabilities.Cy Schubert2010-04-152-0/+2
| | | | Security: MITKRB5-SA-2010-001, MITKRB5-SA-2010-002, MITKRB5-SA-2010-003.
* - Do not match x11/kdebase4 in latest KDM vulnerability.Alberto Villa2010-04-151-1/+2
| | | | Approved by: tabthorpe (mentor)
* - Mark BROKEN: does not compilePav Lucistnik2010-04-154-0/+8
| | | | Reported by: pointyhat
* - Document KDM local privilege escalation vulnerability.Alberto Villa2010-04-151-0/+35
| | | | Approved by: tabthorpe (mentor), delphij (secteam)
* - Fix build with opensslWen Heping2010-04-141-3/+11
| | | | | PR: ports/145620 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)
* Bumped PORTREVISION due to new patchNiels Heinen2010-04-141-0/+1
| | | | Approved by: miwi (mentor)
* Fix plugins location patchNiels Heinen2010-04-141-9/+3
| | | | Approved by: miwi (mentor)
* - update to 1.0.13Dirk Meyer2010-04-142-4/+4
|
* - Unbreak after recent PHP 5.3.2 updateGreg Larkin2010-04-131-3/+42
| | | | | Reported by: pointyhat Approved by: portmgr (itetcu, erwin - blanket)
* - Update to 20100412Renato Botelho2010-04-123-5/+6
| | | | | - Use ${TOUCH} instead of touch - Fix pkg-plist to delete directories installed out of PREFIX (on /var)
* - Use ${TOUCH} instead of touchRenato Botelho2010-04-122-1/+3
| | | | | | | | - Fix pkg-plist to delete directories installed out of PREFIX (on /var) [1] - Bump PORTREVISION because of [1] PR: ports/145448 [1] Submitted by: sahil@ [1]
* Unit tests require python built with thread support, disable make check whenRenato Botelho2010-04-122-2/+34
| | | | | | | local python doesn't have this PR: ports/145520 Submitted by: Michael Scheidell <scheidell at secnap.net>
* New port: WhatWeb can be used to detect the software packages thatNiels Heinen2010-04-126-0/+264
| | | | | | | | | | are used for a website. It can detect content management systems (CMS), blogging platforms, stats/analytics packages, javascript libraries, servers, etc.. WWW: http://www.morningstarsecurity.com/research/whatweb Approved by: itetcu (mentor)
* Removed old patch to fix previous commit:Niels Heinen2010-04-121-30/+0
| | | | | | | | Upgraded to version 1.30b Submitted by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor) Reported by: QAT
* Upgraded to version 1.30bNiels Heinen2010-04-125-17/+36
| | | | | Submitted by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor)
* Add forgotten dependency on gnutlsJohan van Selst2010-04-111-1/+3
|
* - Update to 3.12.6Beat Gaetzi2010-04-104-27/+26
| | | | Approved by: marcus
* - Update to 1.1.4Sylvio Cesar Teixeira2010-04-102-6/+4
| | | | | | PR: ports/145523 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Approved by: itetcu (mentor, implicit)
* Python and gmake are just necessary when LLVM option is setRenato Botelho2010-04-101-14/+16
|
* Python and gmaker are needed just if LLVM option is setRenato Botelho2010-04-101-14/+16
|
* Update to 0.9.30 release.Alex Dupre2010-04-092-4/+4
|
* Update to PHP 5.3.2 release!Alex Dupre2010-04-093-31/+1
|
* - Remove nmap-i18n-man - security/nmap now comes with translated manual pagesDmitry Marakasov2010-04-085-180/+0
| | | | | PR: 145439 Submitted by: Daniel Roethlisberger <daniel@roe.ch> (maintainer)
* - add option WITHOUT_ASMDirk Meyer2010-04-071-0/+7
|
* - Document dojo - cross-site scripting and other vulnerabilitiesGreg Larkin2010-04-071-0/+72
| | | | | | | | - Document ZendFramework - security issues in bundled Dojo library Approved by: secteam (remko) Security: http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/ Security: http://framework.zend.com/security/advisory/ZF2010-07
* - Reduce differences between it and security/clamav-develRenato Botelho2010-04-071-10/+16
| | | | | | | - Make JIT bytecode compiler as an OPTION, On by default [1] PR: ports/145435 [1] Submitted by: Alexander Wittig <alexander at wittig.name> [1]
* - Update to 20100406Renato Botelho2010-04-073-30/+30
| | | | | - Reduce differences between it and security/clamav - Make JIT bytecode compiler as an OPTION, On by default
* - fix build on sparc64Dirk Meyer2010-04-071-0/+4
| | | | Submitted by: kwm
* - Remove duplicated BUILD_DEPENDSRenato Botelho2010-04-071-2/+0
|
* Chase clamav's lib bumpRenato Botelho2010-04-0610-9/+12
|
* - Update to 0.96Renato Botelho2010-04-066-54/+62
| | | | | | | | - Fix error on make check when LC_ALL != en and subversion is installed [1] PR: ports/145340 [1] Submitted by: Alexander Wittig <alexander@wittig.name> [1] Obtained from: https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1922 [1]
* - chase updated patches for sctp-17 and dtlsDirk Meyer2010-04-062-13/+28
|
* - Document firefox -- Re-use of freed object due to scope confusionBeat Gaetzi2010-04-061-0/+26
| | | | | Submitted by: Florian Smeets <flo AT smeets.im> Approved by: miwi
* - add options WITH_MD2Dirk Meyer2010-04-062-2/+36
| | | | | | Suggested by: Tatsuki Makino - add options WITH_RC5 and WITH_RFC3779
* - strip text for optionsDirk Meyer2010-04-051-1/+1
| | | | Reported by: Richard J. Dawes
* re-assign back to ports@Philip M. Gollucci2010-04-051-1/+1
|
* - Update to v0.008Henrik Brix Andersen2010-04-042-4/+4
|
* Build warning fixes, forgotten in previous commit:Niels Heinen2010-04-042-0/+22
| | | | | | | - Upgrade to version 1.29b Approved by: itetcu (mentor) Approved by: Ryan Steinmetz (maintainer)
* Upgrade to version 1.29bNiels Heinen2010-04-043-17/+29
| | | | | Reviewed by: Ryan Steinmetz (maintainer) Approved by: itetcu (mentor)
* Marked broken for 6.x: does not buildNiels Heinen2010-04-031-1/+8
| | | | | Approved by: itetcu (mentor) Reported by: pointyhat
* Chase the ftp/curl shlib version bump.Peter Pentchev2010-04-039-7/+13
|
* Add files/patch-lib_netio.c to fix build without starttls.Johan van Selst2010-04-031-0/+14
| | | | Unfortunately this addition was forgotten in the previous commit.
* Upgrade to version 5.2gNiels Heinen2010-04-032-11/+11
| | | | | | PR: ports/145149 Submitted by: Gerard <gerard@seibercom.net> (maintainer) Approved by: miwi (co-mentor)
* Upgrade to version 20100313Niels Heinen2010-04-032-4/+4
| | | | | | PR: ports/145191 Submitted by: Bapt <baptiste.daroussin@gmail.com> (maintainer) Approved by: miwi (co-mentor)
* - update to 1.0.0Dirk Meyer2010-04-035-162/+266
| | | | | | - regression tested on i386, amd64 and ia64 - use DIST_SUBDIR to resolve conflicts with old patchfiles - new options DTLS_RENEGOTIATION, DTLS_HEARTBEAT, TLS_EXTRACTOR, SCTP
* Update to 0.0.43Johan van Selst2010-04-033-6/+7
|
* Mark as broken on powerpc. While here, pet portlint.Mark Linimon2010-04-011-2/+8
| | | | Hat: portmgr
* Also broken on powerpc.Mark Linimon2010-04-011-2/+2
| | | | Hat: powerpc
* Revert previous commit: it had already been fixed.Mark Linimon2010-04-011-7/+1
|
* Mark as not yet ported to powerpc.Mark Linimon2010-04-011-1/+7
| | | | Hat: portmgr
* Mark as broken on powerpc.Mark Linimon2010-04-011-1/+7
| | | | Hat: portmgr
* Also mark as broken on powerpc.Mark Linimon2010-04-011-1/+1
| | | | Hat: portmgr
* Add the actual python module directory.David Thiel2010-04-011-0/+19
|
* Make the python and libfixbuf dependencies mandatory -- they're prettyDavid Thiel2010-04-012-26/+20
| | | | ingrained in the product now.
* - Document mozilla -- multiple vulnerabilitiesBeat Gaetzi2010-03-311-0/+67
| | | | Approved by: delphij
* - Security update to 0.9.8nDirk Meyer2010-03-312-7/+4
| | | | Security: http://www.openssl.org/news/secadv_20100324.txt
* Fix rc.d script return valueEmanuel Haupt2010-03-312-3/+4
| | | | | PR: 145207 Submitted by: Dominic Fandrey <kamikaze@bsdforen.de>
* Update to 2.14(.)01.Anton Berezin2010-03-302-4/+5
| | | | Changes: http://search.cpan.org/dist/Authen-SASL/Changes
* - update to 1.4.1Dirk Meyer2010-03-2866-60/+66
| | | | | Reviewed by: exp8 run on pointyhat Supported by: miwi
* Python-otr is a set of python bindings for libotr. This givesMartin Wilke2010-03-285-0/+39
| | | | | | | | | developers the flexibility to implement OTR encryption for their python-based Instant Messaging clients. WWW: http://python-otr.pentabarf.de/ Submitted by: Frank Steinborn <steinex at nognu.de>
* - update to 0.13.1Dirk Meyer2010-03-282-4/+4
|
* RC_SUBR_SUFFIX has not been needed for a long time now, all supportedDoug Barton2010-03-277-10/+4
| | | | | versions of FreeBSD now use /etc/rc.subr and rc.d scripts without .sh appended to the script name.
* Begin the process of deprecating sysutils/rc_subr byDoug Barton2010-03-2768-69/+69
| | | | s#. %%RC_SUBR%%#. /etc/rc.subr#
* Update to 0.1.5Johan van Selst2010-03-264-5/+12
| | | | This includes a shlib version bump
* - Update to 0.4.2Alexander Logvinov2010-03-265-6/+39
| | | | - Add option for SSH1 support
* Document postgresql bitsubstr overflow vulnerabilityXin LI2010-03-261-0/+37
|
* skipfish is a high-performance, easy, and sophisticated Web applicationNiels Heinen2010-03-257-0/+126
| | | | | | | | | | | | security testing tool. It features a single-threaded multiplexing HTTP stack, heuristic detection of obscure Web frameworks, and advanced, differential security checks capable of detecting blind injection vulnerabilities, stored XSS, and so forth. PR: ports/144942 Submitted by: Ryan Steinmetz <rpsfa@rit.edu> Approved by: itetcu (mentor) WWW: http://code.google.com/p/skipfish/
* Marked DEPRECATED and expiration date is set to 2010-04-30. TheNiels Heinen2010-03-251-0/+3
| | | | | | port is broken and the software is no longer available/developed Approved by: itetcu (mentor)
* Update to version 0.6.0Niels Heinen2010-03-254-16/+7
| | | | Approved by: itetcu (mentor)
* Upgrade to 1.1.1 (pointed out by www.portscout.org)Niels Heinen2010-03-253-66/+130
| | | | Approved by: itetcu (mentor)
* Document a buffer overflow in gtar's rmt client functionality.Christian Weisgerber2010-03-251-0/+27
|
* This is the bi-weekly update of openvpn-devel (week 12)Niels Heinen2010-03-242-4/+4
| | | | | | PR: ports/144945 Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer) Approved by: miwi (mentor)
* Update to 2.2.0.David Thiel2010-03-243-39/+39
|
* - update to 0.13.0Dirk Meyer2010-03-242-4/+21
|
* - Document firefox -- WOFF heap corruption due to integer overflowBeat Gaetzi2010-03-231-0/+26
| | | | Approved by: miwi
* - restore snortsam checksumCheng-Lung Sung2010-03-231-0/+3
| | | | | PR: ports/144715 Submitted by: olli hauer <ohauer_AT_gmx dot de>
* - Update to 2.5.Marcelo Araujo2010-03-232-7/+6
|
* Updated the xzgv entry: 0.9 version (now in portstree) is not vulnerableNiels Heinen2010-03-231-2/+2
| | | | | | Approved by: itetcu (mentor), miwi (secteam) Security: http://www.vuxml.org/freebsd/a813a219-d2d4-11da-a672-000e0c2e438a.html Security: http://www.gentoo.org/security/en/glsa/glsa-200604-10.xml
* Update to 2.6.4.David Thiel2010-03-232-4/+4
|
* Update to version 0.8 of sqlmap which adds quite some new featuresNiels Heinen2010-03-225-251/+345
| | | | | WWW: http://sqlmap.sourceforge.net/ Approved by: itetcu (mentor)
* - Update to version 2.3Niels Heinen2010-03-223-19/+20
| | | | | | | - Now supports Ruby Reviewed by: lx (maintainer) Approved by: itetcu (mentor)
* - Update to 0.2.1.25Martin Wilke2010-03-212-4/+4
|
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-212-0/+8
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-212-0/+6
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-211-0/+4
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-202-0/+8
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-201-0/+5
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-203-2/+18
| | | | Reported by: pointyhat
* - Mark BROKEN on HEAD: fails to build with new utmpxMartin Wilke2010-03-201-1/+7
| | | | Reported by: pointyhat
* - Add directory filesSylvio Cesar Teixeira2010-03-201-0/+9
| | | | | | PR: ports/144899 Submitted by: Ashish Shukla (wahjava@gmail.com) Approved by: miwi (mentor)
* - Update to 0.2.7Sylvio Cesar Teixeira2010-03-203-8/+27
| | | | | | PR: ports/143602 Submitted by: Ashish Shukla <wahjava@gmail.com> (maintainer) Approved by: miwi (mentor)
* - Fix buildMartin Wilke2010-03-191-10/+10
|
* - Document mozilla -- multiple vulnerabilitiesBeat Gaetzi2010-03-191-1/+52
| | | | | | - Fix a typo Approved by: miwi
* - add target freebsd-powerpcDirk Meyer2010-03-181-6/+9
|
* - Update to 0.1.3Johan van Selst2010-03-183-4/+5
|
* - Update to 0.0.42Johan van Selst2010-03-184-5/+22
| | | | | - Add patch for FreeBSD <=7 where configure rejects our stat() but cannot use the included version either. Use ours anyway.
* - Update MASTER_SITESMartin Wilke2010-03-171-2/+1
| | | | | PR: 144693 Submitted by: Dax Labrador <semprix@bsdmail.org> (maintainer)
* - Update MASTER_SITESMartin Wilke2010-03-171-1/+1
| | | | | PR: 144692 Submitted by: Dax Labrador <semprix@bsdmail.org> (maintainer)
* - Mark BROKEN: fails to build with new utmpxMartin Wilke2010-03-172-0/+8
| | | | Reported by: pointyhat
* Committed patch which improves the Sophos AV shared library checkNiels Heinen2010-03-161-3/+3
| | | | | | PR: ports/143047 Reviewed by: Gary J. Hayers (maintainer) Approved by: itetcu (mentor)
* - Upgrade to sqlmap 0.7 (many new features)Niels Heinen2010-03-166-82/+339
| | | | | | - Took maintainership of the port Approved by: itetcu (mentor)
* Maintainer updated to 201010 snapshotNiels Heinen2010-03-152-4/+4
| | | | | | PR: ports/144699 Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer) Approved by: itetcu (mentor)
* Use the cannonical path to Perl in the vers_string script.Joe Marcus Clarke2010-03-141-0/+4
| | | | PR: 144108
* Fix coredump and take maintainershipNiels Heinen2010-03-142-1/+13
| | | | | | PR: ports/143035 Submitted by: Jonathan Hanna <jhanna [at] pangolin-systems.com> Approved by: itetcu (mentor)
* Upgrade to version 1.4.5Niels Heinen2010-03-142-5/+5
| | | | | | | PR: ports/144312 Submitted by: Sunpoet Po-Chuan Hsieh <sunpoet at sunpoet.net> Reviewed by: Hirohisa Yamaguchi (maintainer) Approved by: itetcu (mentor)
* Update to 20100312Renato Botelho2010-03-134-7/+19
|
* Fix compilation with gcc44.Hajimu UMEMOTO2010-03-121-0/+20
| | | | | | | | It seems there is this fix in cyrus-sasl-2.1.24rc1. PR: 132573 Submitted by: Anonymous <swell.k__at__gmail.com> Reviewed by: OISHI Masakuni <yamasa__at__bsdhouse.org>
* Document eGroupware vulnerabilities.Xin LI2010-03-121-0/+33
| | | | Submitted by: wenheping
* - Update to 0.9.2Martin Wilke2010-03-122-4/+4
|
* Update to 2.14.Anton Berezin2010-03-122-9/+4
| | | | Changes: http://search.cpan.org/dist/Authen-SASL/Changes
* Use CMGROUP_MAX instead of NGROUPS and the argument to SOCKCREDSIZE().Brooks Davis2010-03-112-1/+15
| | | | This is a NO-OP except on 8/9 where it is a bugfix.
* OWASP WebScarab is aframework for analysing HTTP and HTTPS web application ↵Niels Heinen2010-03-116-0/+99
| | | | | | | traffic Approved by: itetcu (mentor) WWW: http://www.owasp.org/index.php/Category:OWASP_WebScarab_Project
* - Respect PREFIX, hopefully fixing the previous commit.Pietro Cerutti2010-03-111-9/+11
| | | | Reported by: QAT
* - Fix previous commit (missing ${MKDIR})Pietro Cerutti2010-03-101-0/+1
|
* - Update to 0.2.1.24Martin Wilke2010-03-102-4/+4
|
* - Update to 2.2.10-alphaMartin Wilke2010-03-103-10/+8
|
* - Update to 1.0-rc2Pietro Cerutti2010-03-107-317/+1184
| | | | | | | PR: 144396 Submitted by: Niels Heinen <niels@heinen.ws> Reviewed by: Sofian Brabez <sbrabez@gmail.com> (maintainer) Approved by: jadawin (wants his PRs, can't commit right now)
* - Update to 4.25Martin Wilke2010-03-102-4/+4
| | | | | PR: 144593 Submitted by: Ports Fury
* The clamav-unofficial-sigs script provides the capability to download, test,Martin Wilke2010-03-1010-0/+217
| | | | | | | | and update the third-party ClamAV signature databases provided by Sanesecurity, SecuriteInfo, MalwarePatrol, OITC, INetMsg and ScamNailer. PR: ports/144509 Submitted by: Marko Njezic <sf at maxempire.com>
* OWASP DirBuster is a multi threaded java application designed toNiels Heinen2010-03-106-0/+84
| | | | | | | | brute force directories and files names on web/application servers. Approved by: itetcu (mentor) Feature safe: yes WWW: http://www.owasp.org/index.php/Category:OWASP_DirBuster_Project
* - update to 1.4.0Dirk Meyer2010-03-092-6/+6
|
* - Update to 20100308Renato Botelho2010-03-094-63/+11
| | | | | - Disable make check for 6.x, it doesn't work (segfault) because libcheck is linked against -pthread and test program is linked against -lthr
* - Update to 4.24Martin Wilke2010-03-093-6/+6
| | | | | PR: 144429 Submitted by: Ports Fury
* - Document drupal -- multiple vulnerabilitiesMartin Wilke2010-03-091-0/+45
| | | | Feature safe: yep
* Burp Suite is an integrated platform for testing web applicationsNiels Heinen2010-03-095-0/+68
| | | | | | | PR: ports/144150 Submitted by: niels Approved by: itetcu (mentor) WWW: http://www.portswigger.net/suite/
* - UnbreakSylvio Cesar Teixeira2010-03-082-5/+40
| | | | | | | | | | | - Add a MASTER_SITES - Add OPTIONS to the GUI - Pass maintainership to submitter. PR: ports/143639 Submitted by: Rob Farmer <rfarmer@predatorlabs.net> Approved by: itetcu (mentor) Feature safe: yes
* - Update to 2.8.5.3Cheng-Lung Sung2010-03-072-7/+4
|
* Update to 0.8.0Max Brazhnikov2010-03-072-5/+4
| | | | Feature safe: yes
* - Fix plist and bump PORTREVISIONWesley Shields2010-03-062-2/+1
| | | | | | | PR: ports/144401 Submitted by: olli hauer <ohauer@gmx.de> Approved by: Daniel Roethlisberger <daniel@roe.ch> (maintainer) Feature safe: yes
* Fix compilation of p5-Authen-TacacsPlus on HEAD.Ed Schouten2010-03-061-0/+10
| | | | | Approved by: miwi (portmgr, implicit) Feature safe: yes
* - Update to 2.12Wen Heping2010-03-052-4/+4
| | | | Feature safe: yes
* - upgrade to 2.1.1Ion-Mihai Tetcu2010-03-043-26/+20
| | | | | | | | - pass maintainership to submiter since he's more interested in this port PR: 143943 Submitted by: Niels Heinen Feature safe: yes
* - Update to 1.7.2p5. Security fix (1.7.2p4) and general bug fixes beyond that.Wesley Shields2010-03-022-5/+5
| | | | | Security: 018a84d0-2548-11df-b4a3-00e0815b8da8 Feature safe: yes
* - Document sudo privilege escalation vulnerability when usingWesley Shields2010-03-021-0/+40
| | | | | | pseudo-command sudoedit Feature safe: yes
* Attempt to properly take care of the ooo3 -RC and -devel ports too (doh!)Juergen Lock2010-03-011-0/+3
| | | | Feature safe: yes
* - Document thunderbird3 vulnerabilitiesBeat Gaetzi2010-02-281-0/+5
| | | | | Approved by: miwi Feature safe: yes
* - Update to 3.3Wesley Shields2010-02-272-10/+26
| | | | | | | PR: ports/143220 Submitted by: Sofian Brabez <sbrabez@gmail.com> Approved by: Jonatan B <onatan@gmail.com> (maintainer) Feature safe: yes
* Document openoffice -- multiple vulnerabilitiesJuergen Lock2010-02-271-0/+50
| | | | | Reviewed by: delphij Feature safe: yes
* - update to 0.9.8mDirk Meyer2010-02-275-294/+76
| | | | | | | | | | - support RFC5746 Security: CVE-2008-1678 Security: CVE-2009-1377 Security: CVE-2009-1378 Security: CVE-2009-1379 Approved by: portmgr (pav) Feature safe: yes
* Update to 0.1.2Johan van Selst2010-02-263-6/+5
| | | | Feature safe: yes
* - Update to 20100212Martin Wilke2010-02-262-4/+4
| | | | | | PR: 144210 Submitted by: Bapt <baptiste.daroussin@gmail.com> (maintainer) Feature safe: yes
* - Fix buildPietro Cerutti2010-02-251-0/+20
| | | | | | | PR: 144236 Submitted by: Dmitry Marakasov <amdmi3@amdmi3.ru> Fixed bx: Sofian Brabez <sbrabez@gmail.com> (committer) Feature safe: yes
* - Updated to 4.2.1Greg Larkin2010-02-243-9/+25
| | | | | | | | | - Passed to new maintainer - Option added to enable OpenMP PR: ports/139556 Submitted by: Charlie Kester <corky1951@comcast.net> (new maintainer) Feature safe: yes
* Pass maintainership to people that use it.Marcelo Araujo2010-02-243-3/+3
| | | | Feature safe: yes
* Update my mail address to @FreeBSD.orgJohan van Selst2010-02-247-7/+7
| | | | Feature safe: yes
* Revive openvpn-devel port and pass maintainership to Eric F. Christ.Matthias Andree2010-02-238-0/+385
| | | | | | | | | | NOTE that the port is more of a development snapshot than it used to be, so it should be used SOLELY for testing and development, NOT IN PRODUCTION. PR: ports/144115 Approved by: mandree@ (previous maintainer) Approved by: garga@ (mentor) Feature safe: yes
* - Bump PORTREVISION to chase the update of math/ntlWen Heping2010-02-231-0/+1
| | | | | Thanks to: bf1783@gmail.com Feature safe: yes
* Update to 1.2.4.David Thiel2010-02-232-4/+4
| | | | | | PR: ports/144202 Submitted by: Sofian Brabez <sbrabez@gmail.com> Feature safe: yes
* Install HTML PORTDOCS and fix CONFIGURE_ARGS.David Thiel2010-02-232-1/+37
| | | | | | PR: ports/144157 Submitted by: Niels Heinen <niels@heinen.ws> Feature safe: yes
* - Update to 1.13Li-Wen Hsu2010-02-204-17/+7
| | | | | | | PR: ports/144122 Submitted by: Peter Johnson <johnson.peter AT gmail.com> Feature safe: yes
* - Update to 0.10Pietro Cerutti2010-02-184-247/+29
| | | | | | | | | | - Respect NOPORTEXAMPLES - Remove unnecessary patch, it is now applied upstream PR: 142784 Submitted by: Sofian Brabez <sbrabez@gmail.com> Approved by: maintainer timeout (more than 1 month) Feature safe: yes
* - Document mozilla -- multiple vulnerabilitiesBeat Gaetzi2010-02-181-0/+51
| | | | | Approved by: miwi (secteam) Feature safe: yes
* Update to 2.0.David Thiel2010-02-183-106/+6
| | | | Feature safe: yes
* Document lighttpd remote DoS vulnerability.Xin LI2010-02-171-0/+30
| | | | | Reported by: Dan Rowe <dan dracosplace com> Feature safe: yes
* Update to 0.11.13 release.Alex Dupre2010-02-162-4/+4
| | | | Feature safe: yes
* Update to 0.6.20 release.Alex Dupre2010-02-162-4/+4
| | | | Feature safe: yes
* Update to 2.11a.Anton Berezin2010-02-162-4/+5
| | | | | | | | Changes file not helpful at the moment. The diffs to 2.10 show no functionality changes. Changes: http://search.cpan.org/dist/Crypt-Blowfish/Changes Feature safe: yes
* Update www/squid and www/squid30 to address Squid HTCP Packet ProcessingXin LI2010-02-151-0/+31
| | | | NULL Pointer Dereference vulnerability (SQUID-2010:2)
* - Update to 0.4.1Alexander Logvinov2010-02-143-5/+5
|
* Document linux-flashplugin -- multiple vulnerabilities.Juergen Lock2010-02-141-0/+36
| | | | Reviewed by: miwi
* Add CVE-2010-0414 and CVE-2010-0422 for gnome-screensaver.Koop Mast2010-02-131-0/+34
| | | | Reviewed by: miwi@
* Fix range for fetchmail CVE-2010-0562.Matthias Andree2010-02-121-2/+1
| | | | Approved by: miwi@ (mentor)
* Update to 1.1.3Johan van Selst2010-02-122-8/+7
|
* Add CVE-2010-0562 entry for mail/fetchmail.Matthias Andree2010-02-121-0/+35
| | | | Approved by: miwi (mentor).
* - Fix runtime to actually workPhilip M. Gollucci2010-02-124-1/+229
| | | | | | | | | | update the custom Makefile add a required header fix bigcrypt PR: ports/138483 Submitted by: Ben Schumacher <me@benschumacher.com> Approved by: Michael Schout <mschout@gkg.net> (maintainer)
* - update to 1.0.12Dirk Meyer2010-02-112-4/+4
|
* - Remove unneeded utmp.h include to fix build on CURRENTBeat Gaetzi2010-02-111-0/+10
| | | | Reported by: pointyhat via erwin
* - Update to 1.24Wen Heping2010-02-103-6/+8
| | | | | PR: ports/143719 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org> (maintainer)
* Document wireshark lwres buffer overflow vulnerability.Xin LI2010-02-101-0/+32
| | | | Reported by: Andreas <akoga hawaii edu>
* Update to 2.4.Roman Bogorodskiy2010-02-102-7/+6
| | | | | PR: 143269 Submitted by: Hung-Yi Chen <gaod@hychen.org>
* Update to 1.2.3.David Thiel2010-02-092-5/+13
| | | | | PR: ports/143542 Submitted by: Sofian Brabez
* Document "otrs" - SQL injection.Sergey Skvortsov2010-02-091-0/+34
|
* - Update to 0.2 to fix build on 9-current (utmp)Renato Botelho2010-02-083-15/+12
| | | | | | | - Remove 4 lines pkg-plist PR: ports/143482 Submitted by: maintainer
generated by cgit (git 2.34.1) at 2025-02-25 09:19:21 +0800