| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
While here, pet portclippy.
Changes: https://metacpan.org/changes/distribution/IO-Socket-SSL
PR: 252950
Submitted by: Sergei Vyshenski <svysh.fbsd@gmail.com> (maintainer)
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D28321
|
| |
|
|
| |
Support for Python 2 has been dropped.
|
| |
|
|
|
|
|
|
|
|
|
| |
While here, also
- Remove GH_SUBDIR, not needed with go:modules
- Remove redundant post-patch target
Changes: https://github.com/future-architect/vuls/releases/tag/v0.13.7
PR: 251685
Approved by: Alexandru Ciobanu <iscandr@gmail.com> (maintainer)
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This commit captures KRB5-1.19-beta2. The beta2 announcement on
krbdev is as follows:
MIT krb5-1.19-beta2 is now available for download from
https://web.mit.edu/kerberos/dist/testing.html
The main MIT Kerberos web page is
https://web.mit.edu/kerberos/
Please send comments to the krbdev list. We plan for the final
release to occur in about one month. The README file contains a more
extensive list of changes.
Major changes in 1.19
---------------------
Administrator experience:
* When a client keytab is present, the GSSAPI krb5 mech will refresh
credentials even if the current credentials were acquired manually.
* It is now harder to accidentally delete the K/M entry from a KDB.
Developer experience:
* gss_acquire_cred_from() now supports the "password" and "verify"
options, allowing credentials to be acquired via password and
verified using a keytab key.
* When an application accepts a GSS security context, the new
GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor
both provided matching channel bindings.
* Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self
requests to identify the desired client principal by certificate.
* PKINIT certauth modules can now cause the hw-authent flag to be set
in issued tickets.
* The krb5_init_creds_step() API will now issue the same password
expiration warnings as krb5_get_init_creds_password().
Protocol evolution:
* Added client and KDC support for Microsoft's Resource-Based
Constrained Delegation, which allows cross-realm S4U2Proxy requests.
A third-party database module is required for KDC support.
* kadmin/admin is now the preferred server principal name for kadmin
connections, and the host-based form is no longer created by
default. The client will still try the host-based form as a
fallback.
* Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT
extension, which causes channel bindings to be required for the
initiator if the acceptor provided them. The client will send this
option if the client_aware_gss_bindings profile option is set.
User experience:
* kinit will now issue a warning if the des3-cbc-sha1 encryption type
is used in the reply. This encryption type will be deprecated and
removed in future releases.
* Added kvno flags --out-cache, --no-store, and --cached-only
(inspired by Heimdal's kgetcred).
|
| |
|
|
|
|
|
|
|
| |
Submitter becomes maintainer (already mainter of several ports).
Pet linters
PR: 252943
Submitted by: mbeis@xs4all.nl
|
| |
|
|
|
|
|
|
|
|
|
| |
Document mail/mutt vulnerability CVE-2021-3181
PR: 252931
Submitted by: Derek Schrock <dereks@lifeofadishwasher.com>
Reported by: Derek Schrock <dereks@lifeofadishwasher.com>
Reviewed by: osa (mentor)
Approved by: osa (mentor)
Differential Revision: https://reviews.freebsd.org/D28308
|
| |
|
|
| |
Sponsored by: Rubicon Communications, LLC ("Netgate")
|
| | |
|
| |
|
|
|
|
| |
Changes: https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.61_release_notes
Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_61_RTM
ABI: https://abi-laboratory.pro/tracker/timeline/nss/
|
| |
|
|
| |
Obtained from: https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop_19.html
|
| |
|
|
| |
Reported by: upstream notification
|
| |
|
|
|
| |
PR: 252882
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer)
|
| |
|
|
|
| |
Approved by: tcberner (mentor)
Differential Revision: https://reviews.freebsd.org/D28279
|
| | |
|
| | |
|
| |
|
|
|
|
| |
Yes, please do FIXME.
Sponsored by: Rubicon Communications, LLC ("Netgate")
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The vuln.xml file has grown a lot since 2003. To avoid having to unlock
the svn size limitation, the file is now split into 1 file per year up
to the current year + previous one. The split is made based on the date
when the entry has been added.
In order to achieve the split without breaking any consumer we use a standard
XML mechanism via the definition of entities.
While here add a new target make vuln-flat.xml which will expand the entities
in order to be able to regenerate a one uniq file if needed. This useful to for
example allow to test with pkg audit directly given the XML parser used in pkg
does not support custom entities.
The vuxml web site generator has been modified to ensure the vuln.xml file it
provides is the expanded version, so for consumers it is still only one single
file to download.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The vuln.xml file has grown a lot since 2003. To avoid having to unlock
the svn size limitation, the file is now split into 1 file per year up
to the current year + previous one. The split is made based on the date
when the entry has been added.
In order to achieve the split without breaking any consumer we use a standard
XML mechanism via the definition of entities.
While here add a new target make vuln-flat.xml which will expand the entities
in order to be able to regenerate a one uniq file if needed. This useful to for
example allow to test with pkg audit directly given the XML parser used in pkg
does not support custom entities.
The vuxml web site generator has been modified to ensure the vuln.xml file it
provides is the expanded version, so for consumers it is still only one single
file to download.
|
| |
|
|
|
|
|
|
| |
dnsmasq-devel isn't currently in ports, but if someone never
switched to dnsmasq, we should also flag the older dnsmasq-devel
vulnerable.
Security: 5b5cf6e5-5b51-11eb-95ac-7f9491278677
|
| |
|
|
|
|
|
|
|
|
|
| |
Security: 5b5cf6e5-5b51-11eb-95ac-7f9491278677
Security: CVE-2020-25684
Security: CVE-2020-25685
Security: CVE-2020-25686
Security: CVE-2020-25681
Security: CVE-2020-25682
Security: CVE-2020-25683
Security: CVE-2020-25687
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
d70886d063166786ded0007af8cdcbf57b7b4827.
wpa_supplicant uses PF_ROUTE to return the routing table in order to
determine the length of the routing table buffer. As of 81728a538d24
wpa_supplicant is started before the routing table has been populated
resulting in the length of zero to be returned. This causes
wpa_supplicant to loop endlessly. (The workaround is to kill and restart
wpa_supplicant as by the time it is restarted the routing table is
populated.)
(Personally, I was not able to reproduce this unless wlan0 was a member of
lagg0. However, others experienced this problem on standalone wlan0.)
PR: 252844
Submitted by: shu <ankohuu _ outlook.com>
Reported by: shu <ankohuu _ outlook.com>
Reviewed by: cy
Differential Revision: https://reviews.freebsd.org/D28249
|
| |
|
|
|
|
|
|
|
|
| |
Add USES=localbase so we can get rid of *-includes and *-libraries.
Reorder some variables too.
Regenerate patch.
PR: 252571
Submitted by: fernape@FreeBSD.org
Reviewed by: franco@opnsense.org (maintainer)
|
| | |
|
| |
|
|
| |
Reported by: portscout
|
| | |
|
| |
|
|
|
|
| |
https://bugs.launchpad.net/cloud-init/+bug/1911680
Reported by: Mina Galić <me@igalic.co>
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
configure:26760: checking for /nxb-bin/usr/bin/c++
configure:26788: result: no
configure:26797: error: Easybindings require a C++ compiler, but none were found.
NB: in my jail, /nxb-bin/usr/bin/c++ does indeed exist.
Approved by: portmgr (tier-2 blanket)
Obtained from: lonesome.com build testing
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Bump PORTREVSION on all consumers. ABI-breaking changes were introduced and
recompile of consumers is necessary.
Remove unused cryptopp dependency from devel/xeus. Upstream migrated to OpenSSL
several releases ago. [1]
[1] https://github.com/jupyter-xeus/xeus/commit/c98c44c174cafcf424f4203dc3c61564118feb3e
Changes: https://www.cryptopp.com/release840.html
|
| | |
|
| |
|
|
|
|
| |
Changes: https://github.com/AnsgarKlein/GPG-Gui/releases/tag/v0.2.0
Approved by: 0mp (mentor, implicit)
|
| |
|
|
| |
- Bump PORTREVISION
|
| |
|
|
| |
PR: 252159
|
| | |
|
| |
|
|
| |
PR: 252159
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
January 09, 2021. KDE today announces the release of KDE Frameworks 5.78.0.
KDE Frameworks are 83 addon libraries to Qt which provide a wide variety of
commonly needed functionality in mature, peer reviewed and well tested
libraries with friendly licensing terms. For an introduction see the KDE
Frameworks release announcement.
This release is part of a series of planned monthly releases making
improvements available to developers in a quick and pred
Full Changelog:
https://kde.org/announcements/kde-frameworks-5.78.0
PR: 252591
Exp-run by: antoine
|
| | |
|
| |
|
|
| |
Reported by: pi
|
| |
|
|
|
|
|
|
| |
PR: 248580
Requested by: joneum (ports-secteam)
Reported by: VVD <vvd@unislabs.com>
MFH: 2021Q1
Security: CVE-2020-15900
|
| |
|
|
|
| |
PR: 251778
Submitted by: Yasuhiro Kimura <yasu@utahime.org> (maintainer)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
i2pd supports logging via syslog. This may be enabled
with its configuration file, but port's startup script forces
logging to a file using command line switches that override
configuration file.
This change adds syslogging support with following rc.conf setting:
i2pd_logfile="syslog" # translates to: --log syslog
or
i2pd_logfile="syslog:warn" # translates to: --log syslog --loglevel warn
The change is backward compatible with previous settings.
PR: 252159
Approved by: amdmi3 (maintainer timeout over 3 weeks)
|
| |
|
|
| |
Changes: https://github.com/FiloSottile/age/releases/tag/v1.0.0-beta6
|
| |
|
|
|
|
| |
2021-01-14 net-im/telegram: Upstream unmaintained; please migrate to net-im/telegram-cli
2021-01-14 science/dlpoly-classic: MASTERSITE gone; possibly replaced by https://gitlab.com/DL_POLY_Classic/dl_poly?
2021-01-15 security/py-gtts-token: Obsolete, please use audio/py-gtts instead
|
| |
|
|
|
|
|
|
|
|
| |
library, designed to make it easier to write foolproof applications".
libtls provides an excellent new API, but LibreSSL can be difficult to install
on systems which already use OpenSSL. LibreTLS aims to make the libtls API more
easily and widely available.
WWW: https://git.causal.agency/libretls/about/
|
| |
|
|
| |
- Remove custom do-test target
|
| |
|
|
|
|
|
|
|
|
|
| |
- Angr binaries are now tagged as well. We may consider removing
ANGR_BINARIES_TAGNAME in the future.
- Remove restrictions on the unicorn version for now. This should prevent
the port from breaking again in the foreseeable future.
PR: 252042
Reported by: nc
Event: January 2021 Bugathon
|
| |
|
|
| |
Approved by: 0mp (mentor, implicit)
|
| | |
|
| |
|
|
|
| |
Reported by: pkg-fallout
MFH: 2021Q1
|
| |
|
|
| |
Approved by: portmgr blanket
|
| |
|
|
| |
Requested by: acm (via e-mail)
|
| |
|
|
|
|
| |
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
Sponsored by: Miles AS
|
| |
|
|
|
| |
Approved by: portmgr blanket
Differential Revision: https://reviews.freebsd.org/D28093
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
and I take security/dehydrated.
PR: 252650
Submitted by: Sascha Holzleiter <sascha@root-login.org>
|
| | |
|
| |
|
|
| |
MFH: 20201Q1
|
| |
|
|
| |
Sponsored by: The FreeBSD Foundation
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Update CONFLICTS for:
o) databases/redis4
o) databases/redis5
o) databases/redis
o) databases/redis-devel
Connect databases/redis5 to the build.
Bump PORTREVISIONs for dependant ports.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
This was reported upstream also as
https://bugs.kde.org/show_bug.cgi?id=415168
there has been a patch languishing there for a long time, which I've
now (re)submitted upstream. It fixes all of the reported problem:
a previous patch by me in FreeBSD ports only dealt with half of them.
PR: 242670
Submitted by: Andre Heinecke
Reported by: Gerhard Seibert
|
| | |
|
| | |
|
| |
|
|
| |
Reported by: upstream notification
|
| |
|
|
|
|
|
|
|
|
|
| |
This version fixes a regression introduced by 1.9.5
Changelog: https://www.sudo.ws/stable.html#1.9.5p1
PR: 252598
Submitted by: cy
MFH: 2021Q1
Sponsored by: Rubicon Communications, LLC (Netgate)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* gpg: Fix regression in 2.2.24 for gnupg_remove function under
Windows. [#5230]
* gpgconf: Fix case with neither local nor global gpg.conf. [9f37d3e6f3]
* gpgconf: Fix description of two new options. [#5221]
* Build Windows installer without timestamps. Note that the
Authenticode signatures still carry a timestamp.
Release-info: https://dev.gnupg.org/T5234
|
| | |
|
| |
|
|
|
|
| |
PR: 252577
Reported by: David Sieborger <drs-freebsd _ sieborger.nom.za>
MFH: 2021Q1
|
| | |
|
| |
|
|
|
|
|
|
|
| |
PR: 252583
Submitted by: cy
Reported by: cy
Approved by: garga (maintainer)
MFH: 2021Q1
Security: CVE-2021-23239
|
| | |
|
| |
|
|
|
|
| |
Reviewed by: 0mp (mentor)
Approved by: 0mp (mentor)
Differential Revision: https://reviews.freebsd.org/D28094
|
| |
|
|
|
|
|
|
|
|
|
|
| |
When compiled with clang 10+ and -O[2-9], the resulting package
fails to parse certificates.
As a workaround, downgrade optimization to -O1.
Upstream issue: https://gitlab.com/gnutls/libtasn1/-/issues/30
PR: 252548
Reported by: rozhuk.im@gmail.com
|
| | |
|
| | |
|
| |
|
|
| |
Also remove one manual declaration (net-mgmt/py-aggregate6)
|
| | |
|
| |
|
|
|
|
|
|
| |
- Pet portclippy while here
Changes: https://github.com/kotakanbe/go-cve-dictionary/releases/tag/v0.5.5
PR: 251653
Submitted by: Alexandru Ciobanu <iscandr@gmail.com> (maintainer)
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Core:
Fixed bug #80345 (PHPIZE configuration has outdated PHP_RELEASE_VERSION).
Fixed bug #72964 (White space not unfolded for CC/Bcc headers).
Fixed bug #80391 (Iterable not covariant to mixed).
Fixed bug #80393 (Build of PHP extension fails due to configuration gap with libtool).
Fixed bug #77069 (stream filter loses final block of data).
Fileinfo:
Fixed bug #77961 (finfo_open crafted magic parsing SIGABRT).
FPM:
Fixed bug #69625 (FPM returns 200 status on request without SCRIPT_FILENAME env).
IMAP:
Fixed bug #80438 (imap_msgno() incorrectly warns and return false on valid UIDs in PHP 8).
Fix a regression with valid UIDs in imap_savebody().
Make warnings for invalid message numbers/UIDs between functions consistent.
Intl:
Fixed bug #80425 (MessageFormatAdapter::getArgTypeList redefined).
Opcache:
Fixed bug #80404 (Incorrect range inference result when division results in float).
Fixed bug #80377 (Opcache misses executor_globals).
Fixed bug #80433 (Unable to disable the use of the AVX command when using JIT).
Fixed bug #80447 (Strange out of memory error when running with JIT).
Fixed bug #80480 (Segmentation fault with JIT enabled).
Fixed bug #80506 (Immediate SIGSEGV upon ini_set("opcache.jit_debug", 1)).
OpenSSL:
Fixed bug #80368 (OpenSSL extension fails to build against LibreSSL due to lack of OCB support).
PDO MySQL:
Fixed bug #80458 (PDOStatement::fetchAll() throws for upsert queries).
Fixed bug #63185 (nextRowset() ignores MySQL errors with native prepared statements).
Fixed bug #78152 (PDO::exec() - Bad error handling with multiple commands).
Fixed bug #66878 (Multiple rowsets not returned unless PDO statement object is unset()).
Fixed bug #70066 (Unexpected "Cannot execute queries while other unbuffered queries").
Fixed bug #71145 (Multiple statements in init command triggers unbuffered query error).
Fixed bug #76815 (PDOStatement cannot be GCed/closeCursor-ed when a PROCEDURE resultset SIGNAL).
Fixed bug #79872 (Can't execute query with pending result sets).
Fixed bug #79131 (PDO does not throw an exception when parameter values are missing).
Fixed bug #72368 (PdoStatement->execute() fails but does not throw an exception).
Fixed bug #62889 (LOAD DATA INFILE broken).
Fixed bug #67004 (Executing PDOStatement::fetch() more than once prevents releasing resultset).
Fixed bug #79132 (PDO re-uses parameter values from earlier calls to execute()).
Phar:
Fixed bug #73809 (Phar Zip parse crash - mmap fail).
Fixed bug #75102 (`PharData` says invalid checksum for valid tar).
Fixed bug #77322 (PharData::addEmptyDir('/') Possible integer overflow).
Phpdbg:
Fixed bug #76813 (Access violation near NULL on source operand).
SPL:
Fixed bug #62004 (SplFileObject: fgets after seek returns wrong line).
Standard:
Fixed bug #80366 (Return Value of zend_fstat() not Checked).
Fixed bug #77423 (FILTER_VALIDATE_URL accepts URLs with invalid userinfo). (CVE-2020-7071)
Tidy:
Fixed bug #77594 (ob_tidyhandler is never reset).
Tokenizer:
Fixed bug #80462 (Nullsafe operator tokenize with TOKEN_PARSE flag fails).
XML:
XmlParser opaque object renamed to XMLParser for consistency with other XML objects.
Zlib:
Fixed bug #48725 (Support for flushing in zlib stream).
PR: 252508
Submitted by: <michael.glaus@hostpoint.ch>, samm
Differential Revision: D28065
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Core:
Fixed bug #74558 (Can't rebind closure returned by Closure::fromCallable()).
Fixed bug #80345 (PHPIZE configuration has outdated PHP_RELEASE_VERSION).
Fixed bug #72964 (White space not unfolded for CC/Bcc headers).
Fixed bug #80362 (Running dtrace scripts can cause php to crash).
Fixed bug #80393 (Build of PHP extension fails due to configuration gap with libtool).
Fixed bug #80402 (configure filtering out -lpthread).
Fixed bug #77069 (stream filter loses final block of data).
Fileinfo:
Fixed bug #77961 (finfo_open crafted magic parsing SIGABRT).
FPM:
Fixed bug #69625 (FPM returns 200 status on request without SCRIPT_FILENAME env).
Intl:
Fixed bug #80425 (MessageFormatAdapter::getArgTypeList redefined).
OpenSSL:
Fixed bug #80368 (OpenSSL extension fails to build against LibreSSL due to lack of OCB support).
Phar:
Fixed bug #73809 (Phar Zip parse crash - mmap fail).
Fixed bug #75102 (`PharData` says invalid checksum for valid tar).
Fixed bug #77322 (PharData::addEmptyDir('/') Possible integer overflow).
PDO MySQL:
Fixed bug #80458 (PDOStatement::fetchAll() throws for upsert queries).
Fixed bug #63185 (nextRowset() ignores MySQL errors with native prepared statements).
Fixed bug #78152 (PDO::exec() - Bad error handling with multiple commands).
Fixed bug #70066 (Unexpected "Cannot execute queries while other unbuffered queries").
Fixed bug #71145 (Multiple statements in init command triggers unbuffered query error).
Fixed bug #76815 (PDOStatement cannot be GCed/closeCursor-ed when a PROCEDURE resultset SIGNAL).
Standard:
Fixed bug #77423 (FILTER_VALIDATE_URL accepts URLs with invalid userinfo). (CVE-2020-7071)
Fixed bug #80366 (Return Value of zend_fstat() not Checked).
Fixed bug #80411 (References to null-serialized object break serialize()).
Tidy:
Fixed bug #77594 (ob_tidyhandler is never reset).
Zlib:
Fixed #48725 (Support for flushing in zlib stream).
PR: 252509
Submitted by: <michael.glaus@hostpoint.ch>
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
Changelog: https://github.com/certbot/certbot/blob/v1.11.0/certbot/CHANGELOG.md
PR: 252452
Submitted by: Yasuhiro KIMURA <yasu@utahime.org>
Approved by: python (with hat)
|
| |
|
|
|
| |
PR: 252520
Approved by: Sergey Matveev <stargrave@stargrave.org> (maintainer)
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Tuesday, 5 January 2021.
Today KDE releases a bugfix update to KDE Plasma 5, versioned 5.20.5. Plasma
5.20 was released in October with many feature refinements and new modules to
complete the desktop experience.
This release adds a month’s worth of new translations and fixes from KDE’s
contributors. The bugfixes are typically small but important and include:
* Plasma NM: Fix password entry jumping to different networks with wifi scanning, by pausing the scan when appropriate.
* Plasma PA: Read text color from proper theme.
* Plasma Workspace: Move keyboard positioning in the keyboard itself.
Announcement:
https://kde.org/announcements/plasma-5.20.5/
|
| |
|
|
|
| |
Full changelog:
https://kde.org/announcements/fulllog_releases-20.12.1/
|
| | |
|
| |
|
|
|
|
| |
Reviewed by: 0mp (mentor)
Approved by: 0mp (mentor)
Differential Revision: https://reviews.freebsd.org/D28039
|
| |
|
|
| |
Approved by: swills (maintainer)
|
| |
|
|
|
|
| |
- GC patch applied upstream
Reported by: portscout
|
| |
|
|
| |
Relnotes: https://github.com/snort3/snort3/releases/tag/3.0.3-6
|
| |
|
|
|
|
| |
Reviewed by: 0mp (mentor)
Approved by: 0mp (mentor)
Differential Revision: https://reviews.freebsd.org/D28014
|
| |
|
|
| |
Obtained from: https://chromereleases.googleblog.com/2021/01/stable-channel-update-for-desktop.html
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Remove the JSON option and convert the relevant parts into fixed
components because devel/jansson has become a mandatory dependency since
the 5.0.0 release. [2]
Changelog:
https://github.com/OISF/suricata/blob/suricata-5.0.5/ChangeLog
PR: 251887
Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) [1]
Reviewed by: fernape, daniel.engberg.lists@pyret.net
Approved by: maintainer [2]
|
| |
|
|
|
|
|
|
|
| |
Changelog:
https://github.com/stamparm/maltrail/compare/0.27...0.28
PR: 252430
Submitted by: Michael Muenz <m.muenz@gmail.com> (maintainer)
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
- Clean up
PR: 245992
Reported by: jorgen at larsendata.dk
|
| | |
|
| |
|
|
| |
- Bump PORTREVISION for dependency change
|
| |
|
|
|
| |
Changes: http://git.savannah.gnu.org/cgit/gsasl.git/tree/NEWS
https://lists.gnu.org/archive/html/info-gnu/2021-01/msg00000.html
|
| |
|
|
|
| |
Changes: http://git.savannah.gnu.org/cgit/gsasl.git/tree/NEWS
https://lists.gnu.org/archive/html/info-gnu/2021-01/msg00000.html
|
| |
|
|
|
| |
PR: 245992
Reported by: ltning-freebsd at anduin.net
|
| |
|
|
|
| |
PR: 245992
Reported by: ltning-freebsd at anduin.net
|
| |
|
|
|
|
| |
PR: 252397
Submitted by: Sergei Vyshenski <svysh.fbsd@gmail.com> (maintainer)
Relnotes: https://metacpan.org/changes/distribution/Crypt-X509-CRL
|
| |
|
|
|
|
| |
PR: 252415
Submitted by: Evilham <contact@evilham.com>
Relnotes: https://dovecot.org/pipermail/dovecot-news/2021-January/000448.html
|
| |
|
|
| |
/wrkdirs/usr/ports/security/s2n/work/s2n-0.10.23/pq-crypto/sike_r2/config.h:69:2: error: #error -- "Unsupported ARCHITECTURE"
|
| |
|
|
|
| |
PR: 252429
Submitted by: Denton Gentry
|
| |
|
|
|
|
|
| |
Changes: https://github.com/rust-lang/rust/releases/tag/1.49.0
Tested by: mikael, pkubaj
Differential Revision: https://reviews.freebsd.org/D27940
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
This is the metaport to install GVM applications and libraries.
WWW: https://www.openvas.org/
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
The Greenbone Security Assistant is the web interface developed for the
Greenbone Security Manager appliances.
It connects to the Greenbone Vulnerability Manager GVM to provide a
full-featured user interface for vulnerability management.
Greenbone Security Assistant consists of GSA - The webpage written in React
and GSAD - The HTTP server talking to the GVM daemon
WWW: https://github.com/greenbone/gsa
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The Greenbone Vulnerability Management Tools gvm-tools are a collection of
tools that help with remote controlling a Greenbone Security Manager (GSM)
appliance and its underlying Greenbone Vulnerability Manager (GVM). The tools
aid in accessing the communication protocols GMP (Greenbone Management
Protocol) and OSP (Open Scanner Protocol).
This module is comprised of interactive and non-interactive clients. The
programming language Python is supported directly for interactive scripting.
But it is also possible to issue remote GMP/OSP commands without programming
in Python.
WWW: https://github.com/greenbone/gvm-tools
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
This is an OSP server implementation to allow GVM to remotely control OpenVAS,
see https://github.com/greenbone/openvas.
Once running, you need to configure OpenVAS for the Greenbone Vulnerability
Manager, for example via the web interface Greenbone Security Assistant. Then
you can create scan tasks to use OpenVAS.
WWW: https://github.com/greenbone/ospd-openva
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The Greenbone Vulnerability Manager is the central management service between
security scanners and the user clients.
It manages the storage of any vulnerability management configurations and of
the scan results. Access to data, control commands and workflows is offered
via the XML-based Greenbone Management Protocol (GMP). Controlling scanners
like OpenVAS is done via the Open Scanner Protocol (OSP).
WWW: https://github.com/greenbone/gvmd
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
This is the Open Vulnerability Assessment Scanner (OpenVAS) of the Greenbone
Vulnerability Management (GVM) Solution.
It is used for the Greenbone Security Manager appliances and is a full-featured
scan engine that executes a continuously updated and extended feed of Network
Vulnerability Tests (NVTs).
WWW: https://github.com/greenbone/openvas
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
This is the libraries module for the Greenbone Vulnerability Management
Solution.
It is used for the Greenbone Security Manager appliances and provides various
functionalities to support the integrated service daemons.
WWW: https://github.com/greenbone/gvm-libs
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The Greenbone Vulnerability Management Python API library (python-gvm) is a
collection of APIs that help with remote controlling a Greenbone Security
Manager (GSM) appliance and its underlying Greenbone Vulnerability Manager
(GVM).
The library essentially abstracts accessing the communication protocols
Greenbone Management Protocol (GMP) and Open Scanner Protocol (OSP)
WWW: https://github.com/greenbone/python-gvm
|
| |
|
|
|
|
|
| |
Reviewed by: 0mp (mentor)
Approved by: 0mp (mentor)
Relnotes: https://github.com/kitabisa/ssb/releases/tag/v0.1.0
Differential Revision: https://reviews.freebsd.org/D27977
|
| |
|
|
|
|
|
|
|
|
|
|
| |
The devel/py-futures port was removed in r559976 as it was for
Python 2.7 only and no longer referenced in the default cases.
However it was still defined in Mk/Uses/python.mk in PY_FUTURES,
leaving a dangling reference.
Remove it from Mk/Uses/python.mk and from affected ports, as
it was already an empty definition for Python 3.6+
Bump minimal Python version of security/theonionbox to 3.6+
|
| |
|
|
|
|
|
|
| |
Changelog: https://botan.randombit.net/news.html#version-2-17-3-2020-12-21
PR: 252441
Submitted by: fluffy
Approved by: maintainer
|
| |
|
|
|
|
| |
Reviewed by: 0mp (mentor)
Approved by: 0mp (mentor)
Differential Revision: https://reviews.freebsd.org/D27966
|
| |
|
|
|
| |
AWS Crypto Abstraction Layer: Cross-Platform, C99 wrapper for
cryptography primitives.
|
| | |
|
| |
|
|
| |
Reported by: portscout
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Changes: https://github.com/ronf/asyncssh/blob/master/docs/changes.rst
|
| |
|
|
|
|
|
| |
Securerandom is an interface to secure random number generators which are
suitable for generating session keys in HTTP cookies, etc.
WWW: https://github.com/ruby/securerandom
|
| |
|
|
|
|
| |
Take over the Patch to enable LibreSSL build from PHP 7.4 to PHP 8.0
Reported by: Nicola Tiling <nti@w4w.net>
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
dynamic hostnames, graphviz, json output, yaml configuration, and more
to SSH.
WWW: https://manfred.life/assh
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
lang/julia: metaport, useless without any consumers
2020-12-31 lang/julia10: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/spidermonkey24: Uses Python 2.7 which is EOLed upstream
2020-12-31 mail/getmail: Uses deprecated version of python
2020-12-31 security/broccoli: Depends lang/python27 which is EOLed upstream
2020-12-31 security/orthrus: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 sysutils/ori: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 sysutils/osquery: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/cliqz: Uses deprecated version of python
2020-12-31 www/trac: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-accountmanager: Uses Python 2.7 which is EOLed upstream
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
PR: 252340
Submitted by: Neel Chauhan <neel@neelc.org> (maintainer)
Relnotes: https://github.com/XTLS/Xray-core/releases/tag/v1.2.0
|
| |
|
|
| |
Reported by: portscout
|
| |
|
|
|
|
|
|
| |
where appropriate.
While here, pet portlint (Makevar order; whitespace).
Approved by: portmgr (tier-2 blanket)
|
| |
|
|
|
| |
PR: 252076
Submitted by: Chris Hutchinson <portmaster@bsdforge.com>
|
| |
|
|
|
|
| |
PR: 249763
PR: 249764
Submitted by: swills
|
| |
|
|
|
| |
PR: 252310
Submitted by: maintainer
|
| |
|
|
|
|
|
| |
PR: 245930
Submitted by: daniel.engberg.lists@pyret.net
Approved by: sbz (maintainer)
Relnotes: https://github.com/pyca/pyopenssl/blob/master/CHANGELOG.rst
|
| |
|
|
| |
With hat: portmgr
|
| |
|
|
|
|
| |
It seems a lot of reverse dependencies were missed
With hat: portmgr
|
| |
|
|
|
| |
Changelog:
https://github.com/doorkeeper-gem/doorkeeper-openid_connect/blob/master/CHANGELOG.md
|
| | |
|
| |
|
|
|
| |
PR: 252291
Reported by: Sadie Powell <sadie@witchery.services>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The 1.15.0 release of gpgme-cpp adds a `Signature::operator<` which is missing
a const. In 6a6d2a27648, Signature got an operator< . This is used in
*security/libkleo*, for instance, to sort the signatures for display.
The build failure looks like this (trimmed for brevity, on 13-):
===
/usr/include/c++/v1/algorithm:715:71: error: invalid operands to binary
expression ('const GpgME::UserID::Signature' and 'const
GpgME::UserID::Signature')
bool operator()(const _T1& __x, const _T1& __y) const {return __x < __y;}
/wrkdirs/usr/ports/security/libkleo/work/libkleo-20.12.0/src/models/
useridlistmodel.cpp:203:14: note: in instantiation of function template
specialization 'std::__1::sort<GpgME::UserID::Signature>' requested here
std::sort(sigs.begin(), sigs.end());
===
PR: 252283
Submitted by: adridg
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Exceptions are:
- mail/mailman, our listservers still use it
- www/chromium, solely because of popular demand,
upstream is (slowly) working on porting it to Python 3
- ports that have actual patches for Python 3 against
them (Cinnamon and a few unrelated other ports)
- llvm70 and qt5-webengine because they seem to have a lot
of dependencies which need further analysis
- sysutils/uefi-edk2-bhyve because bhyve seems to use them
- python2 and python27 themselves
I'm sure there will be complaints, but the nice thing about
a version control system is that we can revert and adjust things.
2020-12-31 audio/ardour: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 audio/mixxx21: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 audio/xmms2: Uses Python 2.7 which is EOLed upstream
2020-12-31 chinese/sunpinyin: Uses Python 2.7 which is EOLed upstream
2020-12-31 databases/arangodb32: Uses Python 2.7 which is EOLed upstream
2020-12-31 databases/arangodb33: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/bzr: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/chromium-gn: Uses deprecated version of python, use devel/gn instead
2020-12-31 devel/electron4: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/electron5: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/electron6: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/electron7: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/gnatpython: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/godot2: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 devel/godot2-tools: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 devel/libhid: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/libosmocore: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/llvm60: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/mongo-cxx-driver: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-06-30 devel/p5-Log-Any-Adapter-Callback: Use devel/p5-Log-Any (Log::Any::Adapter::Capture) instead
2020-12-31 devel/py-backports.functools_lru_cache: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-backports.os: Python 2 is EOL upstream
2020-12-31 devel/py-backports.shutil_get_terminal_size: Python 2 is EOL upstream
2020-12-31 devel/py-backports_abc: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-cheetah: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-dis3: Python 2 only, backport of Python 3
2020-12-31 devel/py-enum34: Will be removed along with python27
2020-12-31 devel/py-functools32: Python 2 only, backport of Python 3
2020-12-31 devel/py-futures: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-more-itertools5: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-pathlib: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-selectors2: Python 2 is EOL upstream
2020-12-31 devel/py-should_dsl: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-singledispatch: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-subprocess32: Python 2 only, following EOL of lang/python27
2020-12-31 devel/py-total-ordering: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/py-typing: Python 2 only, backport of Python 3
2020-12-31 devel/py-weakrefmethod: Python 2 only, backport of Python 3
2020-12-31 devel/rbtools: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/subversion-lts: Uses Python 2.7 which is EOLed upstream
2020-12-31 devel/viewvc: Uses Python 2.7 which is EOLed upstream
2020-12-31 dns/py-dns: Uses Python 2.7 which is EOLed upstream
2020-12-31 editors/atom: Uses Python 2.7 which is EOLed upstream
2020-12-31 emulators/fceux: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 emulators/gem5: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 emulators/nonpareil: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/0ad: Uses deprecated version of python
2020-12-31 games/dangerdeep: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/freera: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/glob2: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/marsnomercy: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/netpanzer: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/pingus: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 games/renpy: Uses deprecated version of python
2020-12-31 graphics/goxel: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 graphics/py-pillow6: Uses Python 2.7 which is EOLed upstream
2020-12-31 graphics/sk1libs: Uses Python 2.7 which is EOLed upstream
2020-12-31 graphics/uniconvertor: Uses deprecated version of python
2020-12-31 lang/julia10: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/pypy: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/pypy3: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/spidermonkey185: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/spidermonkey24: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/spidermonkey52: Uses Python 2.7 which is EOLed upstream
2020-12-31 lang/spidermonkey60: Requires python2 to build
2020-12-31 lang/tolua++: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 mail/getmail: Uses deprecated version of python
2020-12-31 math/gringo: Uses Python 2.7 which is EOLed upstream
2020-12-31 multimedia/ffmpeg2theora: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 multimedia/mimms: Uses Python 2.7 which is EOLed upstream
2020-12-31 net/py-ipaddress: Uses Python 2.7 which is EOLed upstream
2020-12-31 net-p2p/linuxdcpp: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 security/broccoli: Depends lang/python27 which is EOLed upstream
2020-12-31 security/orthrus: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 security/py-backports.ssl_match_hostname: Uses Python 2.7 which is EOLed upstream
2020-12-31 security/sandsifter: Uses deprecated version of python, see https://github.com/rigred/sandsifter/issues/10
2020-12-31 sysutils/cinnamon-control-center: Uses Python 2.7 which is EOLed upstream
2020-12-31 sysutils/ori: Uses Python 2.7 version of scons, and Python 2.7 which is EOLed upstream
2020-12-31 sysutils/osquery: Uses Python 2.7 which is EOLed upstream
2020-12-31 sysutils/py-shutilwhich: Python 2 only, backport of Python 3
2020-12-31 sysutils/uefi-edk2-bhyve-csm: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/cliqz: Uses deprecated version of python
2020-12-31 www/iridium: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/moinmoin: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/node10: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/node12: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-OhlohWidgetsMacro: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-TracGoogleAnalytics: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-accountmanager: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-advancedticketworkflow: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-autocomplete: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-ccselector: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-customfieldadmin: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-datefield: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-defaultcc: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-devel: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-discussion: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-downloads: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-email2trac: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-email2trac-postfix: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-estimator: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-fivestarvote: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-fullblog: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-fullblognotification: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-graphviz: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-iniadmin: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-keywords: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-keywordsecretticket: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-ldap: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-ldapauthstore: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-math: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-mercurial: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-navadd: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-permredirect: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-privatetickets: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-pydotorgtheme: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-scrumburndown: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-spam-filter: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-subtickets: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-tags: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-themeengine: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-ticketimport: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-tickettemplate: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-timingandestimation: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-tocmacro: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-tweakui: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-vote: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-wikigoodies: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-wikinotification: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-wikitemplates: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-wikitopdf: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-wysiwyg: Uses Python 2.7 which is EOLed upstream
2020-12-31 www/trac-xmlrpc: Uses Python 2.7 which is EOLed upstream
|
| |
|
|
|
|
|
|
|
| |
Secure Shell Bruteforcer - A faster and simpler way to bruteforce SSH server.
WWW: https://github.com/kitabisa/ssb
PR: 252222
Submitted by: Neel Chauhan <neel@neelc.org>
|
| |
|
|
|
|
|
|
|
|
| |
Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support.
Fully compatible configuration.
WWW: https://github.com/XTLS/Xray-core
PR: 252226
Submitted by: Neel Chauhan <neel@neelc.org>
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
2020-12-31 ./net/php72-soap: Security Support ends on 30 Nov 2020
2020-12-31 ./net/php72-sockets: Security Support ends on 30 Nov 2020
2020-12-31 ./net/php72-xmlrpc: Security Support ends on 30 Nov 2020
2020-12-31 ./net/php72-ldap: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-xmlwriter: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-pspell: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-enchant: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-wddx: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-xsl: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-dom: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-ctype: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-xml: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-simplexml: Security Support ends on 30 Nov 2020
2020-12-31 ./textproc/php72-xmlreader: Security Support ends on 30 Nov 2020
2020-12-31 ./graphics/php72-gd: Security Support ends on 30 Nov 2020
2020-12-31 ./graphics/php72-exif: Security Support ends on 30 Nov 2020
2020-12-31 ./mail/php72-imap: Security Support ends on 30 Nov 2020
2020-12-31 ./www/php72-opcache: Security Support ends on 30 Nov 2020
2020-12-31 ./www/mod_php72: Security Support ends on 30 Nov 2020
2020-12-31 ./www/php72-session: Security Support ends on 30 Nov 2020
2020-12-31 ./www/php72-tidy: Security Support ends on 30 Nov 2020
2020-12-31 ./security/php72-filter: Security Support ends on 30 Nov 2020
2020-12-31 ./security/php72-sodium: Security Support ends on 30 Nov 2020
2020-12-31 ./security/php72-hash: Security Support ends on 30 Nov 2020
2020-12-31 ./security/php72-openssl: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-shmop: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-tokenizer: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-sysvshm: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-gettext: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-readline: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-pcntl: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-json: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-sysvmsg: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-sysvsem: Security Support ends on 30 Nov 2020
2020-12-31 ./devel/php72-intl: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_sqlite: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_mysql: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pgsql: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_pgsql: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-odbc: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_odbc: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-mysqli: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-interbase: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_firebird: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-dba: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-pdo_dblib: Security Support ends on 30 Nov 2020
2020-12-31 ./databases/php72-sqlite3: Security Support ends on 30 Nov 2020
2020-12-31 ./ftp/php72-curl: Security Support ends on 30 Nov 2020
2020-12-31 ./ftp/php72-ftp: Security Support ends on 30 Nov 2020
2020-12-31 ./misc/php72-calendar: Security Support ends on 30 Nov 2020
2020-12-31 ./math/php72-bcmath: Security Support ends on 30 Nov 2020
2020-12-31 ./math/php72-gmp: Security Support ends on 30 Nov 2020
2020-12-31 ./archivers/php72-zip: Security Support ends on 30 Nov 2020
2020-12-31 ./archivers/php72-phar: Security Support ends on 30 Nov 2020
2020-12-31 ./archivers/php72-zlib: Security Support ends on 30 Nov 2020
2020-12-31 ./archivers/php72-bz2: Security Support ends on 30 Nov 2020
2020-12-31 ./net-mgmt/php72-snmp: Security Support ends on 30 Nov 2020
./lang/php72-extensions
2020-12-31 ./lang/php72: Security Support ends on 30 Nov 2020
2020-12-31 ./converters/php72-mbstring: Security Support ends on 30 Nov 2020
2020-12-31 ./converters/php72-recode: Security Support ends on 30 Nov 2020
2020-12-31 ./converters/php72-iconv: Security Support ends on 30 Nov 2020
2020-12-31 ./sysutils/php72-posix: Security Support ends on 30 Nov 2020
2020-12-31 ./sysutils/php72-fileinfo: Security Support ends on 30 Nov 2020
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
* Since changes were made to Google's TTS API in November 2020 this port is no
longer useful [1].
[1] https://github.com/Boudewijn26/gTTS-token/blob/master/README.md
* The audio/py-gtts port has been adapted accordingly to the new API changes
and has been updated in r559351 .
|
| |
|
|
|
|
| |
PR: 252004
Submitted by: Markus Wipp <mw@wipp.bayern>
Approved by: lwhsu
|
| |
|
|
| |
Builds fine.
|
| | |
|
| |
|
|
|
|
|
|
| |
SIM_SIMULATOR and USIM_SIMULATOR options enable features that are used for
testing EAP-AKA and EAP-SIM authentication.
PR: 252276
Submitted by: Terry Burton <tez _ terryburton.co.uk>
|
| |
|
|
|
| |
According to https://reviews.llvm.org/D75758, some software may require
a pragma.
|
| |
|
|
| |
Submitted by: John W. O'Brien
|
| |
|
|
| |
Relnotes: https://github.com/sonertari/SSLproxy/blob/master/NEWS.md
|
| |
|
|
|
|
|
|
| |
Changelog: https://wiki.strongswan.org/versions/79
PR: 252202
Submitted by: Jose Luis Duran <jlduran@gmail.com>
Approved by: strongswan@nanoteq.com (maintainer)
|
| |
|
|
| |
Relnotes: https://metacpan.org/changes/distribution/PGP-Sign
|
| |
|
|
|
|
| |
PR: 252006
Submitted by: Markus Wipp <mw@wipp.bayern>
Approved by: mikael
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
2020-12-12 textproc/py-hypua2jamo: Uses deprecated version of python
2020-12-12 devel/py-delfick_error: Uses deprecated version of python
2020-12-12 devel/py-fusefs: Uses deprecated version of python
2020-08-15 devel/py-noseofyeti: Uses deprecated version of python
2020-12-29 databases/py-bsddb: Uses deprecated version of python
2020-12-29 www/py-webhelpers: Uses deprecated version of python
2020-12-29 security/py-pyptlib: Uses deprecated version of python
2020-12-29 japanese/py-zinnia: Uses deprecated version of python
2020-12-29 math/slepc: Broken, uses deprecated version of python
2020-12-29 www/py-pastescript: Uses deprecated version of python
2020-12-29 databases/ldb14: Uses deprecated version of python
2020-12-29 math/py-slepc4py: Depends on broken and expiring math/slepc
2020-12-29 multimedia/py-kaa-base: Uses deprecated version of python
2020-12-29 devel/py-ydbf: Uses deprecated version of python
2020-12-29 devel/py-SymbolType: Uses deprecated version of python
|
| |
|
|
| |
Reported by: pkg-fallout
|
| |
|
|
| |
With hat: portmgr
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes since v4.5.0:
wolfSSL Release 4.6.0 (December 22, 2020)
Release 4.6.0 of wolfSSL embedded TLS has bug fixes and new features including:
New Feature Additions
New Build Options
* wolfSSL now enables linux kernel module support. Big news for Linux kernel
module developers with crypto requirements! wolfCrypt and wolfSSL are now
loadable as modules in the Linux kernel, providing the entire libwolfssl
API natively to other kernel modules. For the first time on Linux, the
entire TLS protocol stack can be loaded as a module, allowing fully
kernel-resident TLS/DTLS endpoints with in-kernel handshaking.
(--enable-linuxkm, --enable-linuxkm-defaults, --with-linux-source)
(https://www.wolfssl.com/loading-wolfssl-into-the-linux-kernel/)
* Build tests and updated instructions for use with Apple’s A12Z chipset
(https://www.wolfssl.com/preliminary-cryptographic-benchmarks-on-new-apple-a12z-bionic-platform/)
* Expansion of wolfSSL SP math implementation and addition of
--enable-sp-math-all build option
* Apache httpd w/TLS 1.3 support added
* Sniffer support for TLS 1.3 and AES CCM
* Support small memory footprint build with only TLS 1.3 and PSK without
code for (EC)DHE and certificates
New Hardware Acceleration
* Added support for NXP DCP (i.MX RT1060/1062) crypto co-processor
* Add Silicon Labs hardware acceleration using SL SE Manager
New Algorithms
* RC2 ECB/CBC added for use with PKCS#12 bundles
* XChaCha and the XChaCha20-Poly1305 AEAD algorithm support added
Misc
* Added support for 802.11Q VLAN frames to sniffer
* Added OCSP function wolfSSL_get_ocsp_producedDate
* Added API to set CPU ID flags cpuid_select_flags, cpuid_set_flag,
cpuid_clear_flag
* New DTLS/TLS non-blocking Secure Renegotiation example added to server.c
and client.c
Fixes
Math Library
* Fix mp_to_unsigned_bin_len out of bounds read with buffers longer than
maximum MP
* Fix for fp_read_radix_16 out of bounds read
* Fix to add wrapper for new timing resistant wc_ecc_mulmod_ex2 function
version in HW ECC acceleration
* Handle an edge case with RSA-PSS encoding message to hash
Compatibility Layer Fixes
* Fix for setting serial number wolfSSL_X509_set_serialNumber
* Fix for setting ASN1 time not before / not after with WOLFSSL_X509
* Fix for order of components in issuer name when using X509_sign
* Fix for compatibility layer API DH_compute_key
* EVP fix incorrect block size for GCM and buffer up AAD for
encryption/decryption
* EVP fix for AES-XTS key length return value and fix for string compare
calls
* Fix for mutex freeing during RNG failure case with EVP_KEY creation
* Non blocking use with compatibility layer BIOs in TLS connections
Build Configuration
* Fix for custom build with WOLFSSL_USER_MALLOC defined
* ED448 compiler warning on Intel 32bit systems
* CURVE448_SMALL build fix for 32bit systems with Curve448
* Fix to build SP math with IAR
* CMake fix to only set ranlib arguments for Mac, and for stray typo of
, -> ;
* Build with --enable-wpas=small fix
* Fix for building fips ready using openssl extra
* Fixes for building with Microchip (min/max and undef SHA_BLOCK_SIZE)
* FIx for NO_FILESYSTEM build on Windows
* Fixed SHA256 support for IMX-RT1060
* Fix for ECC key gen with NO_TFM_64BIT
Sniffer
* Fixes for sniffer when using static ECC keys. Adds back TLS v1.2 static
ECC key fallback detection and fixes new ECC RNG requirement for timing
resistance
* Fix for sniffer with SNI enabled to properly handle WOLFSSL_SUCCESS error
code in ProcessClientHello
* Fix for sniffer using HAVE_MAX_FRAGMENT in "certificate" type message
* Fix build error with unused "ret" when building with WOLFSSL_SNIFFER_WATCH.
* Fix to not treat cert/key not found as error in myWatchCb and
WOLFSSL_SNIFFER_WATCH.
* Sniffer fixes for handling TCP out-of-range sequence number
* Fixes SSLv3 use of ECDH in sniffer
PKCS
* PKCS#11 fix to generate ECC key for decrypt/sign or derive
* Fix for resetting internal variables when parsing a malformed PKCS#7
bundle with PKCS7_VerifySignedData()
* Verify the extracted public key in wc_PKCS7_InitWithCert
* Fix for internal buffer size when using decompression with PKCS#7
Misc
* Pin the C# verify callback function to keep from garbage collection
* DH fixes for when public key is owned and free’d after a handshake
* Fix for TLS 1.3 early data packets
* Fix for STM32 issue with some Cube HAL versions and STM32 example timeout
* Fix mmCAU and LTC hardware mutex locking to prevent double lock
* Fix potential race condition with CRL monitor
* Fix for possible malformed encrypted key with 3DES causing negative length
* AES-CTR performance fixed with AES-NI
Improvements/Optimizations
SP and Math
* mp_radix_size adjustment for leading 0
* Resolve implicit cast warnings with SP build
* Change mp_sqr to return an error if the result won't fit into the fixed
length dp
* ARM64 assembly with clang improvements, clang doesn't always handle use of
x29 (FP or Frame Pointer) in inline assembly code correctly - reworked
sp_2048_sqr_8 to not use x29
* SP mod exp changed to support exponents of different lengths
* TFM div: fix initial value of size in q so clamping doesn't OOB read
* Numerous stack depth improvements with --enable-smallstack
* Improve cache resistance with Base64 operations
TLS 1.3
* TLS 1.3 wolfSSL_peek want read return addition
* TLS 1.3: Fix P-521 algorithm matching
PKCS
* Improvements and refactoring to PKCS#11 key look up
* PKCS #11 changes for signing and loading RSA public key from private
* check PKCS#7 SignedData private key is valid before using it
* check PKCS#7 VerifySignedData content length against total bundle size
to avoid large malloc
Compatibility Layer
* EVP add block size for more ciphers in wolfSSL_EVP_CIPHER_block_size()
* Return long names instead of short names in wolfSSL_OBJ_obj2txt()
* Add additional OpenSSL compatibility functions to update the version of
Apache httpd supported
* add "CCM8" variants to cipher_names "CCM-8" ciphers, for OpenSSL compat
Builds
* Cortex-M SP ASM support for IAR 6.70
* STM Cube pack support (IDE/STM32Cube)
* Build option --enable-aesgcm=4bit added for AES-GCM GMULT using 4 bit
table
* Xilinx IDE updates to allow XTIME override for Xilinx, spelling fixes in
Xilinx README.md, and add Xilinx SDK printf support
* Added ED448 to the "all" options and ED448 check key null argument sanity
check
* Added ARC4, 3DES, nullcipher, BLAKE2, BLAKE2s, XChaCha, MD2, and MD4 to
the “all” options
* Added an --enable-all-crypto option, to enable only the wolfCrypt features
of --enable-all, combinable with --enable-cryptonly
* Added the ability to selectively remove features from --enable-all and
--enable-all-crypto using specific --disable- options
* Use Intel intrinsics with Windows for RDSEED and RDRAND
(thanks to dr-m from MariaDB)
* Add option to build with WOLFSSL_NO_CLIENT_AUTH
* Updated build requirements for wolfSSH use to be less restrictive
* lighttpd support update for v1.4.56
* Added batch file to copy files to ESP-IDF folders and resolved warnings
when using v4.0 ESP-IDF
* Added --enable-stacksize=verbose, showing at a glance the stack high water
mark for each subtest in testwolfcrypt
ECC
* Performance increase for ECC verify only, using non constant time SP modinv
* During ECC verify add validation of r and s before any use
* Always use safe add and dbl with ECC
* Timing resistant scalar multiplication updated with use of Joye double-add
ladder
* Update mp_jacobi function to reduce stack and increase performance for
base ECC build
* Reduce heap memory use with wc_EccPrivateKeyDecode, Improvement to
ECC wc_ecc_sig_to_rs and wc_ecc_rs_raw_to_sig to reduce memory use (avoid the mp_int)
* Improve StoreECC_DSA_Sig bounds checking
OCSP
* OCSP improvement to handle extensions in singleResponse
* support for OCSP request/response for multiple certificates
* OCSP Must Staple option added to require OCSP stapling response
* Add support for id-pkix-ocsp-nocheck extension
Misc
* Additional code coverage added for ECC and RSA, PKCS#7, 3DES, EVP and
Blake2b operations
* DTLS MTU: check MTU on write
* Refactor hash sig selection and add the macros WOLFSSL_STRONGEST_HASH_SIG
(picks the strongest hash) and WOLFSSL_ECDSA_MATCH_HASH (will pick the
hash to match the ECC curve)
* Strict certificate version allowed from client, TLS 1.2 / 1.3 can not
accept client certificates lower than version 3
* wolfSSL_get_ciphers_compat(), skip the fake indicator ciphers like the
renegotiation indication and the quantum-safe hybrid
* When parsing session ticket, check TLS version to see whether they are
version compatible
* Additional sanity check for invalid ASN1 padding on integer type
* Adding in ChaCha20 streaming feature with Mac and Intel assembly build
* Sniffer build with --enable-oldtls option on
|
| |
|
|
|
| |
PR: 247197
Submitted by: spam123@bitbert.com
|
| |
|
|
|
|
|
|
|
|
|
|
| |
development for years, and the distfiles are no-longer available
except for a private copy in my account on freefall. Expiry date set
to 3 months from now.
Also, since it has bit-rotted so much that its cracklib integration
doesn't work correctly, delete the CRACKLIB option.
PR: 250868
Submitted by: Geoff Moraes
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
- Temporarily patch-update due to missing distfile
Changes: https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.60.1_release_notes
Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_60_1_RTM
ABI: https://abi-laboratory.pro/tracker/timeline/nss/
|
| | |
|
| |
|
|
|
|
| |
Add sample environment config file.
PR: 252129 # Used different approach.
|
| |
|
|
|
|
|
|
| |
- Add overrides for size of the key (-b bits), the certificate
duration (-d days), and the digest (-D digest).
- Fix a bug that ignored config file certificate duration and
always used 3650 days.
|
| | |
|
| | |
|
| |
|
|
|
| |
PR: 252127
Requested by: Dries Michiels <driesm.michiels@gmail.com>
|
| |
|
|
| |
Reported by: pkg-fallout
|
| |
|
|
| |
Reported by: pkg-fallout
|
| |
|
|
| |
- Bump PORTREVISION for package change
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Since r558913 Python 3.8 incorporates BPO-42604 [1] which changed the
shared libs naming scheme. This means "EXT_SUFFIX" is now derived from
SOABI and yields with Python 3.8 to ".cpython-38.so" instead of ".so".
The affected ports strip the libaries in the "post-install" target via
hardcoded path(s) and the build fails at the end because the new extension
is not expected at this place.
Remedy the issue by adding wildcards to these paths. This should also
prepare the ports for future Python releases, which will use the new shared
libs naming scheme.
[1] https://bugs.python.org/issue42604
PR: 252057
Reported by: John Kennedy
Reviewed by: fluffy, koobs
Approved by: koobs (python)
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Approved by: portmgr blanket
|
| | |
|
| |
|
|
|
| |
PR: 236250
Submitted by: rozhuk.im@gmail.com
|
| | |
|
| |
|
|
|
|
| |
Reviewed by: osa (mentor)
Approved by: osa (mentor)
Differential Revision: https://reviews.freebsd.org/D27706
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Note that this release removes bin/symcryptrun which had essentially no
expected current use-case.
* gpg: New AKL method "ntds".
* gpg: Fix --trusted-key with fingerprint arg.
* scd: Fix writing of ECC keys to an OpenPGP card. [#5163]
* scd: Make an USB error fix specific to SPR532 readers. [#5167]
* dirmngr: With new LDAP keyservers store the new attributes. Never
store the useless pgpSignerID. Fix a long standing bug storing
some keys on an ldap server.
* dirmngr: Support the new Active Direcory LDAP schema for
keyservers.
* dirmngr: Allow LDAP OpenPGP searches via fingerprint.
* dirmngr: Do not block other threads during keyserver LDAP calls.
* Support global configuration files. [#4788]
* Fix the iconv fallback handling to UTF-8. [#5038]
Release-info: https://dev.gnupg.org/T5153
|
| | |
|
| |
|
|
|
|
|
| |
Use PORTVERSION here to end up with 1.9.4p2, which is considered newer than
previous one (1.9.4_1)
Reported by: ohauer <ohauer@gmx.de>
|
