aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* Chase the Gaim 1.1.3 update.marcus2005-02-192-0/+2
* Add poly1305-20050218, Prof. Daniel J. Bernstein's public domain messageroam2005-02-195-0/+84
* As previously announced, remove ports that have reached their expiry date,kris2005-02-195-77/+0
* Document insecure temporary file creation in kdelibs.simon2005-02-191-0/+30
* Document format string vulnerability in bidwatcher.simon2005-02-191-0/+32
* SSCEP is a client-only implementation of the SCEP (Cisco System's Simplesem2005-02-196-0/+76
* Document a directory traversal vulnerability in gftp.simon2005-02-191-0/+33
* - Document two Opera vulnerabilities.simon2005-02-191-1/+73
* - Depend on pkg-config to allow for clean package deinstallationsergei2005-02-183-22/+7
* amavis-stats is a simple AMaViS statistics generator based on rrdtool. Itpav2005-02-1810-0/+178
* - Update to 0.83pav2005-02-183-22/+9
* Document multiple buffer overflows in postgresql.simon2005-02-181-0/+31
* - Update to 0.32 (also fixes fetching)sergei2005-02-182-3/+3
* UPdate to 4429jeh2005-02-172-3/+3
* - update to 1.4.4clsung2005-02-174-26/+34
* Fix entry date for last commit.simon2005-02-171-1/+1
* Document vulnerabilities in awstats. Note that this entry will mostsimon2005-02-171-0/+35
* UPdate to 4428jeh2005-02-172-3/+3
* - Chase master sitevs2005-02-164-12/+19
* - Update to 0.3.8. See ChangeLog for details.brooks2005-02-166-153/+104
* Add a few more references to the awstats entry.simon2005-02-161-0/+3
* Remove empty pkgconfig directory upon uninstallation, to pleaseanders2005-02-151-0/+1
* Update to 1.2.4vs2005-02-157-56/+4
* Reset undeliverable maintainer address [1]. Comment out unfetchable masterkris2005-02-151-2/+2
* Update to 4.1.2:vs2005-02-152-4/+3
* - Distfile rerolledpav2005-02-151-2/+2
* security/rng_82802 is obsoleteskv2005-02-151-1/+0
* Obsoleteskv2005-02-155-79/+0
* - Update to 2.3.0sem2005-02-152-11/+12
* Change affected packages version for the emacs movemail format stringnobutaka2005-02-141-1/+1
* Update to 1.7.1vs2005-02-142-5/+6
* - Update to 2.3.0sem2005-02-149-36/+159
* - Update to 2.2.3sem2005-02-149-3922/+155
* - correct the arguments of pw groupaddleeym2005-02-141-2/+2
* Document DoS in powerdns.simon2005-02-141-0/+26
* Document format string vulnerability in the Emacs movemail utility.simon2005-02-141-0/+53
* - update to amap-4.8leeym2005-02-144-16/+22
* Update to 1.7vs2005-02-146-120/+27
* With portmgr hat on, reset maintainership of these ports. Maintainer'slinimon2005-02-142-2/+2
* - register UID:GID 110 for vscanleeym2005-02-144-6/+9
* update to 0.54oliver2005-02-134-6/+6
* Fixed libpcap dependency, bumped PORTREVISIONniels2005-02-131-1/+2
* Fixed broken pkg-plist, bumped PORTREVISIONniels2005-02-132-7/+7
* - Reflect fixing vulnerability in `net/opendchub'danfe2005-02-131-2/+3
* - Fix a cvename that should have been a certvu.simon2005-02-131-13/+16
* Document two vulnerabilities in ngircd.simon2005-02-131-0/+57
* Document mod_python information leakage vulnerability.simon2005-02-131-0/+32
* Document mailman directory traversal vulnerability.simon2005-02-131-0/+29
* - Add forgotten startup scriptssem2005-02-132-0/+40
* Add a workaround patch to avoid protocol attack (but will not bekuriyama2005-02-124-2/+98
* BROKEN: Incomplete pkg-plistkris2005-02-121-0/+2
* Expand HTML entity reference in latest VuXML entry.nectar2005-02-121-1/+1
* BROKEN: Unfetchablekris2005-02-121-0/+2
* Document enscript-{a4,letter,letterdj} vulnerabilities.naddy2005-02-121-0/+31
* - Add (or fix) CONFLICTS line. The ports install bin/digest.sem2005-02-122-2/+4
* - Update to version 0.12leeym2005-02-122-3/+3
* Vulnerability in unrtf is fixed now.danfe2005-02-111-1/+2
* - Libtomcrypt released a patchset to fix a few security bugs.pav2005-02-112-2/+15
* use new scheme of USE_RC_SUBR.ume2005-02-113-9/+3
* - Update to 4.32.1sem2005-02-115-206/+353
* - Remove NLS dirs from pkg-plist the port shouldn't removesem2005-02-111-2/+0
* - Update to 4.32.1sem2005-02-115-220/+331
* - Unbreak on amd64sem2005-02-101-4/+2
* Barnyard is output spool reader for Snort! It decouples output overheadpav2005-02-108-0/+159
* Update to 4427jeh2005-02-102-3/+3
* Fix plistvs2005-02-101-1/+2
* - Fix crashing of milter by turning off SESSION support [1]pav2005-02-092-2/+20
* - Update to 1.7pav2005-02-094-7/+20
* - Update to 4.5pav2005-02-094-52/+5
* Update to 0.9.7.adamw2005-02-094-24/+6
* Document privilege escalation vulnerability in postgresql.simon2005-02-091-0/+38
* Document multiple protocol dissectors vulnerabilities in ethereal.simon2005-02-091-0/+53
* - There was a bug that caused osirisd not to start if built without osirismdpav2005-02-082-2/+6
* Update to version 0.2.5krion2005-02-083-4/+5
* Add another squid issue.nectar2005-02-081-0/+34
* Add CERT Vulnerability Note reference for one squid issue,nectar2005-02-081-3/+4
* Add CVE name for squid confusing empty ACL issue.nectar2005-02-081-1/+2
* - Update to 0.82sem2005-02-082-5/+8
* Add US-CERT Vulnerability Note references for recent squid issues.nectar2005-02-081-2/+5
* update to 1.6.8p7mharo2005-02-082-4/+4
* Add security/ppars - Proactive Abuse Reporting System:sergei2005-02-076-0/+97
* - Correct Whom: attribution in Makefilesergei2005-02-072-1/+2
* Add security/ipfilter2dshield:sergei2005-02-077-0/+117
* - Update to 0.2.13sergei2005-02-073-8/+37
* - Attempt to check PGP signature of the tarball (using experimentalsergei2005-02-072-0/+4
* - Upgrade to 2.3.0 [1]sergei2005-02-073-9/+48
* - Add 2 new patches missed in the previous commitsergei2005-02-072-0/+22
* - Update to 1.0.24 [1]sergei2005-02-073-6/+7
* Remove unexisting directory from PORTDOCS.krion2005-02-061-1/+2
* - Update to 4.1.1pav2005-02-064-41/+56
* - Move perl invocation to post-build, just to be surepav2005-02-061-4/+4
* VPOPMAILDIR?= ${LOCALBASE}/vpopmailoliver2005-02-056-24/+64
* Add missing <code> markups in a citation from PSF-2005-001.perky2005-02-041-5/+5
* Add an entry for PSF-2005-001,perky2005-02-041-0/+52
* Update the entry for CAN-2005-0064 to indicate that gpdf 2.8.3 has a fixmarcus2005-02-041-2/+2
* Update to 4426jeh2005-02-042-3/+3
* - Fix small big typopav2005-02-041-1/+1
* Update to 4425jeh2005-02-032-3/+3
* Note that perl does not have a suidperl by default.nectar2005-02-031-0/+4
* Note vulnerabilities in perl.nectar2005-02-031-0/+33
* Add Bugtraq ID for evolution issue.nectar2005-02-021-0/+2
* - Make it broken when Kerberos5 is not installed in the systemsumikawa2005-02-021-0/+12
* Update port: security/pear-File_Passwd to 1.1.2edwin2005-02-022-3/+22
* * Update maintainer email addressmarcus2005-02-024-1/+64
* "racoon2" is a system to exchange and to install security parameterssumikawa2005-02-0212-200/+184
* Current maintainer notes that he no longer uses this software. Welinimon2005-02-021-1/+1
* Add CVE name for squid WCCP issue.nectar2005-02-021-0/+2
* Add a <modified> tag to the perl File::Path issue since the affectednectar2005-02-011-0/+1
* Narrow perl File::Path vulnerability version range a bit.tobez2005-02-011-1/+2
* Documented vulnerabilities found in the newspost, newsfetch and newsgrab ports.niels2005-02-011-0/+113
* The latest xpdf buffer overflow has been repaired in an updatenectar2005-02-011-2/+2
* Add CVE names for recent squid vulnerabilities.nectar2005-02-011-0/+6
* Update to DAT 4424jeh2005-01-312-3/+3
* Split the postgresql ports into a server and a client part.girgen2005-01-317-15/+8
* Upgrade to 0.81.obraun2005-01-312-7/+5
* Update to 2.5.1krion2005-01-312-3/+3
* - adds _tor user and gourp for tor to run aspav2005-01-306-0/+136
* cryptopp-php is a cryptography extension for PHP based on Wei Dai'spav2005-01-304-0/+55
* - Make static library relocatablepav2005-01-302-7/+16
* Update to 0.0.4.marcus2005-01-306-8/+54
* squid -- buffer overflow in WCCP recvfrom() callsem2005-01-301-0/+39
* PEAR user authentication and permission management frameworkpav2005-01-304-0/+89
* With portmgr hat on, reset bouncing maintainer address (already notedlinimon2005-01-302-2/+2
* - Update to 1.1.9pav2005-01-294-9/+10
* Update to 20050127:vs2005-01-282-3/+3
* Mark cups-base as fixed wrt. to "makeFileKey2() buffer overflowsimon2005-01-281-1/+2
* Drop a log-related SED_SCRIPT rule undeeded since rev#1.61.yar2005-01-271-1/+0
* Introduce a variable LOGDIR instead of using a literal log directoryyar2005-01-273-9/+11
* Introduce a variable LOGDIR instead of using a literal log directoryyar2005-01-273-11/+13
* Update to DAT 4423. If you are not quick enough you could miss one, Ijeh2005-01-272-3/+3
* Document "makeFileKey2()" buffer overflow vulnerability in xpdf (andsimon2005-01-271-0/+60
* Update to 0.04skv2005-01-272-3/+3
* Update to 1.10skv2005-01-272-3/+3
* pdflib has been corrected.nectar2005-01-271-2/+2
* Update to 1.0.2lofi2005-01-264-456/+6
* Update to 0.12, assign maintainer to perl.tobez2005-01-263-7/+9
* - reset MAINTAINERleeym2005-01-262-4/+3
* Update to 2.34kevlo2005-01-266-8/+16
* Update to 0.5.1kevlo2005-01-263-14/+35
* fix pkg-plistoliver2005-01-262-4/+8
* Fix package, don't create links to WRKSRC into PREFIXarved2005-01-261-1/+2
* Fixed typo in Makefile (MAN/MAN3), bumped PORTREVISIONniels2005-01-261-3/+3
* Document a vulnerability in zhcon.nectar2005-01-251-0/+31
* Don't leave the pkgconfig data directory rotting thereyar2005-01-251-0/+1
* Don't leave the pkgconfig data directory rotting thereyar2005-01-251-0/+1
* Fix last YAMT entry update to actually make sense... Greater than andsimon2005-01-251-1/+1
* Mark latest YAMT port version as fixed.simon2005-01-251-1/+2
* Document arbitrary code execution vulnerability in evolution.simon2005-01-251-0/+31
* - Move editors/gedit2 to editors/geditpav2005-01-251-2/+2
* Correct the entry date for 4e4bd2c2-6bd5-11d9-9e1e-c296ac722cb3nectar2005-01-251-1/+1
* Document a local vulnerability in mod_dosevasive.nectar2005-01-251-0/+36
* Document a possible cache-poisoning issue affecting squid.nectar2005-01-251-0/+42
* Chase the Gaim update, and tighten CONFLICTS to make portlint a bit happier.marcus2005-01-252-0/+2
* Document Bugzilla XSS issue.nectar2005-01-251-0/+35
* Oops, forgot to set <discovery> date.nectar2005-01-251-1/+1
* Document window injection vulnerabilities affecting several web browsers.nectar2005-01-251-2/+100
* Cancel duplicate phpbb entry e8c6ade2-6bcc-11d9-8e6f-000a95bc6fae. Itnectar2005-01-241-49/+32
* - extended API for hw-cryptodinoex2005-01-242-1/+38
* Document a vulnerability in YAMT.simon2005-01-241-0/+30
* Unbreak: now compiles with latest libevent portpetef2005-01-242-4/+0
* Workaround a bug in the configure script which caused libcrypto.abms2005-01-231-0/+11
* Add squid security advisories for two recent squid entries.simon2005-01-221-2/+4
* Upgrade to 2.1.4.thierry2005-01-222-6/+7
* squid bug #1200:edwin2005-01-221-0/+31
* Fix typo in last commit.simon2005-01-221-1/+1
* Document XSS in Horde.simon2005-01-221-0/+33
* Oops, I accidently changed an <entry> date when I should havenectar2005-01-221-1/+2
* Document vulnerabilities in older versions of Midnight Commander.nectar2005-01-221-0/+39
* Document a race condition in Perl's File::Path module.nectar2005-01-221-0/+26
* Document phpBB vulnerabilities.nectar2005-01-221-0/+41
* Document vulnerabilities in the Opera web browser's Java implementation.nectar2005-01-221-0/+56
* Document that older versions of sudo lack CDPATH environmental variablenectar2005-01-221-0/+27
* Document vulnerabilities in fcron.nectar2005-01-221-0/+35
* Document vulnerabilities in RealPlayer.nectar2005-01-221-0/+31
* Add CVE name and iDEFENSE advisory references to xzgv issue.nectar2005-01-211-1/+3
* Grr, get the imlib version number right!nectar2005-01-211-1/+1
* Oops, imlib 1.9.15 is still affected. Adjust version number to reflectnectar2005-01-211-1/+1
* Document xpm heap overflows and integer overflows affecting imlib and imlib2.nectar2005-01-211-0/+40
* Document a vulnerability in eGroupWare.nectar2005-01-211-0/+24
* Document Quake II vulnerabilities reported by Richard Stanway.nectar2005-01-211-0/+31
* Add CVE names for konversation bugs.nectar2005-01-211-0/+4
* don't sed ${WRKSRC}/Makefile.in twiceoliver2005-01-212-4/+4
* Update to 4421jeh2005-01-212-3/+3
* Remove conditional dependencies on security/tcp_wrapper: That portcperciva2005-01-211-9/+0
* Update: security/osiris 4.0.6 -> 4.0.8edwin2005-01-202-3/+3
* Document security issue in irc/konversation.josef2005-01-201-0/+24
* Update to DAT 4420jeh2005-01-202-3/+3
* Correct several instances where the "msgid" attribute content had annectar2005-01-201-4/+6
* Eliminate character entity references. They are technically fine ofnectar2005-01-201-1/+1
* Update entries with 12 new CVE name references.nectar2005-01-191-6/+25
* Fix date (was YYYY-MM-DD, now 2005-01-19)edwin2005-01-191-1/+1
* squid -- no sanity check of usernames in squid_ldap_authedwin2005-01-191-0/+37
* Add CONFLICTS due to libexec/ftpd.nectar2005-01-191-0/+2
* Document remote DoS in CUPS.simon2005-01-191-0/+25
* During last year's bumpercrop of vulnerabilities in libtiff, a 2004 CVEnectar2005-01-191-0/+34
* Document exploitable vulnerabilities in zgv and xzgv.nectar2005-01-191-0/+41
* Document bug in Mozilla-based software that may leave downloaded filesnectar2005-01-191-0/+78
* Fix plist, unmark broken.bms2005-01-192-23/+1
* Add more references to exim entry.simon2005-01-191-1/+5
* pdflib contains libtiff, and thus is affected by several vulnerabilitiesnectar2005-01-181-3/+15
* Document remote command execution vulnerability in awstats.simon2005-01-181-0/+37
* Document security vulnerability in ImageMagick.simon2005-01-181-0/+36
* Update to a new version of the none ciper patch. The previous versionbrooks2005-01-182-2/+7
* Update "cups-base -- HPGL buffer overflow vulnerability" entry tosimon2005-01-181-1/+1
* Spelling corrections.nectar2005-01-181-2/+3
* Regarding CUPS lppasswd entry: Add the CVE names for each issue inlinenectar2005-01-171-4/+11
* Update to 2.0.5vs2005-01-1718-24/+21
* Document two vulnerabilities in CUPS.simon2005-01-171-0/+80
* Document mysqlaccess insecure temporary file creation.simon2005-01-171-0/+35
* Document buffer overflow vulnerability in unrtf.simon2005-01-171-0/+28
* Correct recent squid entry: WCCP is in fact enabled by default.simon2005-01-171-3/+1
* Remove leftover directory.adamw2005-01-162-1/+2
* Use a vendor-provided method for preventing gnomesu-pam installation.adamw2005-01-162-11/+1
* Fix plist.krion2005-01-151-0/+1
* Adjust the CONFLICTS to appease portlint.marcus2005-01-151-1/+1
* Instruct 4.x users to append the sample gnomesu-pam to /etc/pam.conf,adamw2005-01-151-2/+1
* Extra super OMFG-I'd-be-screwed-without-you thanks to marcus for theadamw2005-01-157-10/+54
* Update to 0.9.4.bms2005-01-146-60/+59
* Fixed build error that occurs when libsavi is installed and addedniels2005-01-141-0/+13
* Fix package.bms2005-01-143-20/+15
* - Update to 0.2.9vs2005-01-143-9/+9
* With my portmgr hat on, mark this port IGNORE on 4.X as it will corruptmarcus2005-01-141-1/+7
* Fix build on >4.x.adamw2005-01-142-0/+13
* Author rerolled distfile with an updated NEWS entry.adamw2005-01-141-2/+2
* Upgrade to version 1.2.3 which contains a fix for the reportedniels2005-01-143-11/+7
* For mod_access_referer issue:nectar2005-01-141-4/+5
* Add references to Konqueror password disclosure bug: CVE name, CERTnectar2005-01-141-0/+4
* - Update to 1.0pav2005-01-145-51/+52
* Update phpBB command execution entry references:nectar2005-01-141-3/+5
* For the latest three Squid issues, add references to the Squid bugnectar2005-01-141-8/+16
* Add a better reference and description of the jabberd vulnerability.nectar2005-01-141-3/+21
* Oops, add missing closing tag for Bugtraq ID which I recently added.nectar2005-01-141-1/+1
* Add CVE name for up-imapproxy issue.nectar2005-01-141-0/+2
* Add CVE names to greed buffer overflows issue. Re-indent <references>nectar2005-01-141-3/+6
* For mpg123 playlist issue, add CVE name, Bugtraq ID, and X-Forcenectar2005-01-141-3/+6
* Add a CVE name for VIM modeline handling issue.nectar2005-01-141-0/+2
* Cancel VID 14e8f315-600e-11d9-a9e7-0001020eed82 "tiff -- stripoffsetsnectar2005-01-141-31/+3
* Add CVE name for tnftp mget vulnerability. Re-indent <references>nectar2005-01-141-4/+6
* Fix PLIST again. Spell `password' correctly and keep the pointynectar2005-01-142-3/+3
* For recent squid WCCP DoS issue, correct the URL used in <blockquote>nectar2005-01-141-2/+3
* Document Mozilla NNTP handler vulnerability.nectar2005-01-141-0/+58
* - Document a vulnerability in mpg123.simon2005-01-141-6/+33
* Updated the port to version 0.2.2 + small cleanupniels2005-01-143-11/+3
* Mark DEPRECATED and set 1 month expiration date due to unresolvedsimon2005-01-131-0/+3
* - remove urldinoex2005-01-131-1/+0
* - add WWWdinoex2005-01-131-0/+2
* Register conflict with gnomesu. The removal of gnomesu is beingadamw2005-01-131-0/+2
* - Integrate vendor patches as published onsimon2005-01-131-0/+62
* Update to 4419jeh2005-01-132-3/+3
* Finish incorporating the changes proposed inyar2005-01-135-12/+14