aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Update to latest release of sudomharo2004-11-182-4/+4
|
* Add security/hpn-ssh, a high performance SSH based on OpenSSH, after abrooks2004-11-184-35/+31
| | | | | | | | | repo-copy from security/openssh-portable. HPN-SSH is a set of patches to improve the perfomance of bulk transfers such as scp over long-fat pipes. Repocopy by: marcus
* Update to DAT 4407jeh2004-11-182-3/+3
|
* Document the buffer overrun vulnerability in samba3josef2004-11-181-0/+27
| | | | CAN-2004-882
* Correct range for xpdf vulnerability, as cups-base got a fixingjosef2004-11-181-1/+1
| | | | update.
* Update to sudo-1.6.3p8, which *really* includes the CDPATH fix, androam2004-11-173-15/+5
| | | | | | | another one that does not directly affect FreeBSD (our _PATH_VARTMP was fine before, too). Approved by: mharo (maintainer)
* - Use "tail -F" rather than "tail -f".kuriyama2004-11-174-0/+61
| | | | | | | - Add rc.subr script to allow invoking multiple instance of swatch daemon at startup time. Approved by: maintainer
* The last commit to japanese/samba also fixed the security issuejosef2004-11-171-1/+4
| | | | | | in samba (CAN-2004-0815) As discussed with: NAKAJI Hiroyuki <nakaji@jp.freebsd.org> (maintainer)
* Add CVE name to twiki entry.simon2004-11-171-0/+1
| | | | Noticed by: josef
* Add teTeX-base to affected packages in xpdf's vuxml entry.josef2004-11-171-0/+4
|
* strip out CDPATHmharo2004-11-162-1/+11
| | | | Submitted by: Peter Pentchev <roam@ringlet.net>
* Document arbitrary shell command execution in twiki.simon2004-11-151-0/+33
|
* fix CAN-2004-0884.ume2004-11-152-1/+20
| | | | Obtained from: security/cyrus-sasl2
* Update to 20041114:vs2004-11-152-3/+3
| | | | | | | | - W32/Mydoom.AI@mm - W32/Mydoom.AJ@mm PR: ports/73937 Submitted by: maintainer
* Document a format string vulnerability in proxytunnel.simon2004-11-151-0/+36
|
* - Update maintainer's email addresspav2004-11-1511-20/+20
| | | | | PR: ports/73939 Submitted by: Yonatan <onatan@gmail.com> (maintainer)
* Correct URL to ddos_scan homepage.simon2004-11-151-1/+1
| | | | Noticed by: Peter E. Antonov <apeter.subscribe@mail.ru>
* - Update to 0.99sem2004-11-142-3/+3
|
* Update to version 0.0.19krion2004-11-143-5/+3
| | | | | PR: ports/73908 Submitted by: Ports Fury
* Fix link issue under FreeBSD-4.X due to unsupported functions.cy2004-11-146-33/+69
|
* Update termlog from 2.0 to 2.2csjp2004-11-142-3/+3
| | | | | | | | | | This version introduces the following: -Bug fixes around locking -Enhanced jail support -Ability to create log files with SF_APPEND flag -cryptographic hashing algorithm was changed from md5 to sha1 Approved by: seanc@
* Fix entry date for the ruby entry from the last commit.simon2004-11-131-1/+1
|
* - Document at DoS in the Ruby CGI module.simon2004-11-131-0/+60
| | | | - Document a privilege escalation in sudo.
* Chase the Gaim 1.0.3 update.marcus2004-11-132-2/+2
|
* Update to 1.6.8p2mharo2004-11-132-4/+4
| | | | | o Bash exported functions and the CDPATH variable are now stripped from the environment passed to the program to be executed.
* Mention newly available pinentry-gtk2 in pkg-message.lofi2004-11-131-0/+1
|
* Add CVE name for gnats issue.nectar2004-11-121-1/+2
|
* Remove conditional runtime dependency on the gtar port, it's availablelofi2004-11-122-4/+0
| | | | in the base system.
* Note (likely) remotely exploitable vulnerability in samba 3.nectar2004-11-121-0/+33
| | | | Submitted by: Shane Kinney <mod6@freebsdhackers.net>
* Document vulnerability in GNATS.josef2004-11-121-0/+24
|
* Document a XSS in squirrelmail.simon2004-11-121-0/+32
|
* Fix entry date.josef2004-11-121-1/+1
|
* Document BNC vulnerability.josef2004-11-121-0/+25
|
* Update to 1.0.3krion2004-11-122-4/+3
|
* - Reset bouncing maintainer's address:pav2004-11-121-1/+1
| | | | <Yonatan@Xpert.com>: unknown user: "yonatan"
* Add spike-proxy, a professional-grade tool for looking for application-levelpav2004-11-126-0/+3346
| | | | | | | | | | vulnerabilities in web applications. SPIKE Proxy covers the basics, such as SQL Injection and cross-site-scripting, but it's completely open Python infrastructure allows advanced users to customize it for web applications that other tools fall apart on. PR: ports/69943 Submitted by: Yonatan <Yonatan@Xpert.com>
* Update to 0.2.0krion2004-11-125-11/+59
|
* Note old hafiye bug.nectar2004-11-121-0/+36
| | | | Submitted by: Shane Kinney <mod6@freebsdhackers.net>
* Bump PORTREVISION to reflect security update.nectar2004-11-121-0/+1
| | | | Forgotten by: sem
* Fix a format string vulnerability in ez-ipupdate.naddy2004-11-111-0/+27
| | | | | Approved by: se@ Obtained from: Ulf Harnhammar <Ulf.Harnhammar.9485@student.uu.se>
* Document a buffer overflow in ImageMagick's EXIF parser.simon2004-11-111-0/+26
|
* Correct recent Apache 2 entry to not match Apache 1.X.simon2004-11-111-1/+2
| | | | Noticed by: Dan Langille <dan@langille.org>
* Change the libident dependency from BUILD_DEPENDS to LIB_DEPENDS.knu2004-11-111-1/+2
| | | | | | | | | The security/libident port now also installs a shared library and the ruby-tcpwrap module is linked with it instead of a static library, so ruby-tcpwrap requires libident runtime. PR: ports/73556 Submitted by: rushani
* Document vulnerability in Apache 2 (CAN-2004-0942).josef2004-11-111-0/+26
|
* Update the libxml vulnerability to indicate the fixed version.marcus2004-11-111-1/+2
|
* Update to DAT 4406jeh2004-11-112-3/+3
|
* Bump 29 ports that use GCONF_SCHEMAS. Somehow, the diff of GNOME 2.8.x hasmezz2004-11-102-2/+2
| | | | | | | lost the small part. The small part was GCONF_SCHEMAS in bsd.gnome.mk that is taking care of gconf key and schemas files for pkg-plist. Pav has committed by re-add GCONF_SCHEMAS back in bsd.gnome.mk this afternoon. Therefore, must bump PORTREVISION to correct our pkg-plist database installed.
* Add pear-File_Passwd, class to manipulate and authenticate against standard ↵pav2004-11-104-0/+38
| | | | | | | | | | Unix, SMB server, AuthUser (.htpasswd), AuthDigest (.htdigest), CVS pserver and custom formatted password files. PR: ports/73716 Submitted by: Antonio Carlos Venancio Junior <antonio@php.net>
* Document a format string vulnerability in socat.simon2004-11-101-0/+33
|
* - Update to 2.0.2pav2004-11-102-3/+3
| | | | | PR: ports/73699 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Document remote buffers overflow in libxml and libxml2.simon2004-11-101-0/+32
|
* - Add a hint on complete removal when deinstallingsem2004-11-102-0/+39
| | | | | PR: ports/73729 Submitted by: maintainer
* - Add a hint on complete removal when deinstallingsem2004-11-102-0/+39
| | | | | PR: ports/73726 Submitted by: maintainer
* The bugs discovered by Chris Evans have been fixednectar2004-11-101-2/+2
| | | | | | in linux-gdk-pixbuf. Reported by: thierry
* Add security/sks - SKS OpenPGP Key Server:sergei2004-11-108-0/+134
| | | | | | | | | | | | | | | | | SKS is a new OpenPGP keyserver whose goal is to provide easy to deploy, decentralized, and highly reliable synchronization. That means that a key submitted to one SKS server will quickly be distributed to all key servers; and even wildly out-of-date servers, or servers that experience spotty connectivity, can fully synchronize with rest of the system. Refer to the online wiki for pointers on downloading a full copy of the public PGP databse (about 4Gb) and on customising the local configuration http://documentation.penguin.de/cgi-bin/twiki/view/SKSKeyserver/WebHome WWW: http://www.nongnu.org/sks/ PR: ports/72842 Submitted by: Johan van Selst <johans@stack.nl>
* Massive ports move to better categories.skv2004-11-093-7/+3
|
* Update to DAT 4405jeh2004-11-092-3/+3
|
* warn to create sasldb2 by yourself in BATCH mode.ume2004-11-091-0/+4
| | | | Suggested by: matusita
* Remove the md5crk port. The cracking effort was ended after atrevor2004-11-094-45/+0
| | | | | | method for generating messages with colliding MD5 digests was published ("Collisions for Hash Functions MD5, MD5, HAVAL-128 and RIPEMD" by Xiaoyun Wang, Dengguo Feng, Xuejia Lai and Hongbo Yu).
* - Update to 2.2.0sem2004-11-0811-18/+820
| | | | | PR: ports/73268 Submitted by: maintainer
* Fix pkgnames for mod_include vulnerability.josef2004-11-081-6/+6
| | | | Thanks to Dan Langille for helping me to track these down.
* Update to KDE 3.3.1lofi2004-11-084-6/+24
|
* Document a virus detection evasion in p5-Archive-Zip.simon2004-11-081-0/+27
|
* Add gnomekeyringmanager.marcus2004-11-081-0/+1
|
* Bump PORTREVISIONS for all ports that depend on atk or pango to ease in themarcus2004-11-0811-7/+11
| | | | big upgrade.
* Add some files missed in the previous GNOME 2.8 update.marcus2004-11-0812-0/+184
|
* Presenting GNOME 2.8 for FreeBSD (2.8.1 to be exact).marcus2004-11-0810-14/+96
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This release notes detailing all of the new goodies in GNOME 2.8 can be found at http://www.gnome.org/start/2.8/notes/, and the list of what was fixed in GNOME 2.8.1 can be found at http://lists.gnome.org/archives/gnome-announce-list/2004-October/msg00056.html. This release, as well as all of our others, would not have been possible without the great efforts of our FreeBSD GNOME Team. The list of current members can be found at http://www.freebsd.org/gnome/contact.html (including our newest member, Michael Johnson <ahze@FreeBSD.org>). Special thanks also goes out to all of the loyal FreeBSD GNOME users that put up with crashes and hangs to test and debug GNOME on FreeBSD. We would especially like to thank those users that provided patches for GNOME 2.7 and 2.8: Franz Klammer <klammer@webonaut.com> Piotr Smyrak <piotr.smyrak@heron.pl> Radek Kozlowski <radek@raadradd.com> Khairil Yusof <kaeru@pd.jaring.my> Yasuda Keisuke <kysd@po.harenet.ne.jp> Tom McLaughlin <tmclaugh@sdf.lonestar.org> Vladimir Grebenschikov <vova@fbsd.ru> GNOME 2.8 also features a new, FreeBSD-specific splashscreen that was designed by jimmac for GNOME 2.8, then daemonized by Franz Klammer <klammer@webonaut.com> and Radek Kozlowski <radek@raadradd.com>. As with GNOME 2.6, you cannot just "portupgrade" to GNOME 2.8. There is a script provided at http://www.marcuscom.com/downloads/gnome_upgrade28.sh that will aid in the upgrade process. Full documentation on the GNOME 2.8 upgrade is coming following this commit. From all of us at FreeBSD GNOME, ENJOY!
* - Update to 20041106pav2004-11-062-3/+3
| | | | | PR: ports/73610 Submitted by: Tim Bishop <tim@bishnet.net> (maintainer)
* - Fix plistpav2004-11-062-1/+2
| | | | | PR: ports/73558 Submitted by: Rob Evers <rob@debank.tv> (maintainer)
* Document mod_include vulnerability in apache and related ports.josef2004-11-061-0/+54
|
* - Upgrade to 2.2.0sem2004-11-0614-21/+2082
|
* - drop objects for win and vmsdinoex2004-11-061-0/+14
|
* - cleanup fipsdinoex2004-11-063-6/+17
| | | | | | | | | - remove harmfull -Wl,-Bsymbolic strcmp did not work correctly, and the initialisation of internal hashs was defunct. Therefor serveral applications failed to find some of the ciphers. e.G. openvpn, jabberd
* Update to 1.1kevlo2004-11-062-3/+3
| | | | | PR: ports/72899 Submitted by: Linh Pham <question+freebsdpr@closedsrc.org>
* Document an insecure temporary file creation in postgresql-contrib.simon2004-11-061-0/+31
|
* Bump modified date in the entry for the last commit.simon2004-11-061-0/+1
|
* Update latest mpg123 entry to note that the port is fixed in the mostsimon2004-11-061-1/+1
| | | | recent port version.
* - Update to 2.2.0pav2004-11-064-21/+8
| | | | | PR: ports/73441 Submitted by: Blaz Zupan <blaz@si.FreeBSD.org> (maintainer)
* There was a gd 1.X port with portepoch 2 for a while, so let the gdsimon2004-11-051-0/+1
| | | | entry also match that.
* Document an integer overflow in the GD Graphics Library.simon2004-11-051-0/+33
|
* Add p5-POE-Component-SSLify 0.03, integrate SSL into POE.skv2004-11-055-0/+43
|
* Add p5-Filter-Crypto 1.00,skv2004-11-055-0/+75
| | | | | create runnable Perl files encrypted with OpenSSL libcrypto.
* - Update to 20041101pav2004-11-0511-161/+181
| | | | | | | - Configuration file was renamed to clamd.conf! PR: ports/73491 Submitted by: Rob Evers <rob@debank.tv> (maintainer)
* Add pinentry-gtk2, a GTK+ 2.0 version of the GnuPG password dialoglofi2004-11-052-0/+21
| | | | | PR: ports/73199 Submitted by: Jean-Yves Lefort <jylefort@brutele.be>
* Fix some brainos.lofi2004-11-051-6/+7
|
* Add hooks for new -gtk2 slaveport.lofi2004-11-053-4/+42
|
* - Update to 2.0.1pav2004-11-042-3/+3
| | | | | PR: ports/73501 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Correct entry date for the putty entry.simon2004-11-041-1/+1
| | | | OK'ed by: josef
* Document vulnerability in puttyjosef2004-11-041-0/+28
| | | | Reviewed by: simon
* - add patch files and unbreak this portleeym2004-11-044-8/+25
| | | | - utilize PORTDOCS and USE_MYSQL
* Add an entry for a wzdftpd remote DoS.simon2004-11-041-0/+22
|
* Updates to the bogofilter entry:simon2004-11-041-1/+4
| | | | | | | - Improve information about which versions are vulnerable. [1] - Add a few more references. Submitted by: Matthias Andree <matthias.andree@gmx.de> [1]
* Update to DAT 4404jeh2004-11-042-3/+3
|
* - Update to 4.0.5pav2004-11-032-3/+3
| | | | | PR: ports/73426 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* - Update to 2.0.0pav2004-11-034-32/+23
| | | | | PR: ports/73393 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Update linux-openmotif to 2.2.4 to fix the security.mezz2004-11-021-1/+4
| | | | http://vuxml.freebsd.org/ef253f8b-0727-11d9-b45d-000c41e2cdad.html
* A long-overdue dequoting of COMMENT. D'oh, I thought I'd done this,roam2004-11-023-3/+3
| | | | | | like, MONTHS ago! Submitted by: Brian Poole <raj@cerias.purdue.edu>
* - update to 1.1clsung2004-11-012-3/+3
| | | | | | | | | | - From ChangeLog - Added CLIENT and SERVER variables to VirusAction script environment. - Even better logging for network errors. - Print out clamsmtp version in debug logs - Allow configuration of server keep alives (NOOPs). Default to none Approved by: co-mentor (vanilla)
* Update to 1.7.6.marcus2004-10-313-18/+17
|
* Add a sudo dependency and dependency on libutil.cy2004-10-303-0/+9
|
* Correct some tty handling problems.cy2004-10-306-18/+375
|
* Update to DAT 4403jeh2004-10-302-3/+3
|
* Update to DAT 4402jeh2004-10-292-3/+3
|
* Repair handling of ptys.cy2004-10-296-0/+129
|
* Introduce sudosh (sudo shell) into the Ports Tree.cy2004-10-2913-0/+100
|
* - Security Update to 0.56dinoex2004-10-282-3/+3
|
* Document rssh format string vulnerability.josef2004-10-281-0/+26
| | | | Approved by: nectar
* - Update to 0.23pav2004-10-283-10/+10
| | | | | PR: ports/73187 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org> (maintainer)
* Update to DAT 4401jeh2004-10-282-3/+3
|
* Remove a DAT file that didn't completely download because it is not usefuljeh2004-10-281-11/+11
| | | | and make refetching easier
* Fix build on 4-stablevanilla2004-10-2718-3/+165
| | | | | PR: ports/72808 Submitted by: maintainer
* Fix build on 4-stable.vanilla2004-10-276-3/+42
| | | | | PR: ports/72807 Submitted by: maintainer
* Create a VuXML entry for Horde XSS help window vulnerability to replacenectar2004-10-272-1/+28
| | | | the portaudit-db entry.
* - update to 1.0clsung2004-10-272-4/+4
| | | | | | PR: ports/73181 Submitted by: Marcus Grando <marcus AT corp dot grupos dot com dot br> Approved by: co-mentor (vanilla)
* - Bugfix update to 0.9.7edinoex2004-10-276-59/+49
| | | | - md5 verfied with website
* Add an entry for a vulnerability fixed in horde-2.2.7.thierry2004-10-271-0/+1
|
* Chase libraries for new devel/libidn version.krion2004-10-262-2/+4
|
* Document a denial-of-service issue in bogofilter.nectar2004-10-261-0/+33
| | | | | This entry is slightly modified from one that was Submitted by: Matthias Andree <matthias.andree@gmx.de>
* Fix integer overflow vulnerabilities.nork2004-10-261-1/+4
| | | | | | Patch made by: Chris Evans, Dirk Muller, Sebastian Krahmer, Derek Noonburg and Marcus Meissner Submitted by: nectar
* Document xpdf 2 and xpdf 3 vulnerabilities.nectar2004-10-261-0/+38
|
* Document several security issues in gaim, fixed in various versions fromnectar2004-10-261-5/+222
| | | | | | 0.82 through 1.0.2. While I'm here, notice that there have been ru-, ko-, and ja- flavors of gaim, as well as a fairly short-lived range of version numbers based on dates (snapshots).
* Note that the Red Hat based linux_base ports containnectar2004-10-261-1/+2
| | | | | | vulnerable libXpm.so files. Noticed by: maho
* Braino: install the file with correct name.des2004-10-251-1/+4
|
* Clean up time for email addresses MIA!edwin2004-10-251-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If you know new email addresses for the people involved, please send-pr it! <mcsi@agava.com>: host relay.agava.net.ru[195.161.118.3] said: 550 <mcsi@agava.com>: User unknown in local recipient table (in reply to RCPT TO command) <woju@bbsmail.ntu.edu.tw> (expanded from <woju@bbsmail>): Host or domain name not found. Name service error for name=bbsmail.ntu.edu.tw type=A: Host not found <esoha@attbi.com>: host gateway.attbi.com[204.127.198.6] said: 551 not our customer (in reply to RCPT TO command) <crow@nektor.hu>: host mail.kapu.hu[195.70.32.236] said: 550 unknown user (in reply to RCPT TO command) <cyrilm@tower.pp.ru>: host mail.tower.pp.ru[213.85.109.133] said: 550 unknown user (in reply to RCPT TO command) <ports@henrik-motakef.de>: Host or domain name not found. Name service error for name=henrik-motakef.de type=A: Host not found <jj@nttmcl.com>: host mx1.nttmcl.com[216.69.64.132] said: 550 5.2.1 <jj@nttmcl.com>... Mailbox disabled for this recipient (in reply to RCPT TO command) <koji@jet.es>: host mx.wanadoo.es[62.81.235.75] said: 550 Relay not permitted / No such user (in reply to RCPT TO command) <proot@iaces.com>: host horton.iaces.com[204.147.87.98] said: 550 5.1.1 <proot@iaces.com>... User unknown (in reply to RCPT TO command) <roland.jesse@gmx.net>: host mx0.gmx.net[213.165.64.100] said: 550 5.1.1 {mx034} <roland.jesse@gmx.net>... User is unknown (in reply to RCPT TO command) <vess@slavof.net>: host mail.slavof.net[213.130.68.146] said: 550 5.7.1 Access denied (in reply to MAIL FROM command) <tuxsuximus@hotmail.com>: host mx3.hotmail.com[65.54.253.99] said: 550 Requested action not taken: mailbox unavailable (in reply to RCPT TO command) <zenin@archive.rhps.org>: host mail.rhps.org[66.250.128.137] said: 550 5.7.1 <zenin@archive.rhps.org>... Relaying denied (in reply to RCPT TO command)
* Add Auth_HTTP 2.0 from PEAR.des2004-10-254-0/+32
|
* Update to 2.1.20.ume2004-10-256-98/+91
| | | | | | | | * Fixes to cram plugin to avoid attempting to canonify uninitialized data. * NTLM portability fixes. * Avoid potential attack using SASL_PATH when sasl is used in a setuid environment. * A trivial number of small bugfixes.
* Document SSL_Cypherbypass vulnerability in mod_ssljosef2004-10-251-0/+71
| | | | and buffer overflow vulnerability in gaim.
* Add entries for vulnerabilites in imported xpdf code in kdegraphicslofi2004-10-241-0/+2
| | | | and koffice.
* fix unprev. IPv6 for FreeBSD 4oliver2004-10-242-3/+216
| | | | | | Bump PORTREVISION Noted By: Dariusz Kulinski <d.kulinski@gmail.com>
* - fix building problem and unbreak this portleeym2004-10-244-23/+27
| | | | | | | - remove redundant declaration in makefile.conf and use MAKE_ENV directly - utilize DATADIR in pkg-plist Noticed by: kris
* - Document more buffer overflows in mpg123.simon2004-10-241-0/+37
| | | | | | - Fix package name in two older mpg123 entries. Approved by: nectar
* I suck. (Correct a typo that would have been readily detected ifnectar2004-10-221-1/+1
| | | | I would have run `make validate' before committing.)
* Add CVE name for cabextract issue.nectar2004-10-221-0/+2
|
* Fix a copy/paste typo in last commit.simon2004-10-221-1/+1
|
* Document DoS in Apache 2 SSL handling.simon2004-10-221-0/+37
| | | | Approved by: nectar
* Mark deprecated due to no maintainer and unpatched denial-of-servicenectar2004-10-221-0/+3
| | | | | vulnerability: http://vuxml.freebsd.org/b7cb488c-8349-11d8-a41f-0020ed76ef5a.html
* Note that xpm has been fixed.nectar2004-10-221-2/+8
| | | | Also, it appears that Motif itself is affected, so add related packages.
* - bump PORTREVISION after update dependency.leeym2004-10-211-0/+1
| | | | | PR: 72961 Submitted by: Matt <matt@xtaz.net>
* add procmail into dependency list.leeym2004-10-211-1/+2
| | | | | Noticed by: kris Submitted by: Matt <matt@xtaz.net>
* - Fix OPTIONS handlingpav2004-10-211-2/+2
|
* Update entry regarding INN 2.4.x buffer overflow:nectar2004-10-211-2/+3
| | | | | | | | | - The email archive referenced is no longer available. Use marc.theaimsgroup.com archive instead. - Note that only 2.4.x versions are affected (earlier ones are not). Reported by: leeym
* Document remote command execution vulnerability in phpMyAdmin.simon2004-10-211-0/+32
| | | | Approved by: nectar
* - don't delete the virus database on deinstalldinoex2004-10-211-2/+2
| | | | | (sync with clamav-devel) Approved by: Rob Evers
* Update 1.3.4 --> 1.3.5cy2004-10-2120-196/+16
|
* Document insecure directory handling in cabextract.simon2004-10-211-0/+24
| | | | Approved by: nectar
* - Update to 1.1 (final). For changes since 1.1-beta see the ChangeLogmarius2004-10-219-119/+159
| | | | | | | | | | | | | | | | | | | | | | | in the DOCSDIR. - Rename the start script from antivir-milter.sh to avmilter.sh to be consistent with naming of the rest of the installed AntiVir Milter files and directories. - Now that AntiVir Milter supports using a different location from /etc for the ignore, scan and warn config files no longer install them in the EXAMPLESDIR but in PREFIX/etc/avmilter (i.e. install as sample files, copy over when not already existent, etc.). - Change the location of the AntiVir Milter config file (avmilter.conf) but not that of the scan engine (antivir.conf; shared between different AntiVir products) from PREFIX/etc to PREFIX/etc/avmilter in order to have all AntiVir Milter config files in one place but don't directly populate PREFIX/etc with them. If you had previously changed PREFIX/etc/avmilter.conf you have to bring over your changes to PREFIX/etc/avmilter/avmilter.conf but note that some variables have been renamed. If you used ignore, scan and/or warn files in /etc you can now move them to PREFIX/etc/avmilter. Approved by: netchild
* Chase the Gaim 1.0.2 upgrade.marcus2004-10-212-2/+2
|
* Update to DAT 4400jeh2004-10-212-3/+3
|
* Base if the last update was successful on the dontents of file_id.diz,jeh2004-10-211-2/+2
| | | | | | | since that is in the .tar and will only update after a successful download and extract Submitted By: Steven Guerin
* Fix code so it is favored by both GCCs (2.x and 3.x), and unbreak the build.danfe2004-10-2012-4/+454
| | | | | Approved by: fjoe (mentor, implicit) maintainer timeout
* - Update to 0.0.14pav2004-10-202-3/+3
| | | | | PR: ports/72823 Submitted by: Ports Fury
* - Update to 0.0.18pav2004-10-203-8/+23
| | | | | PR: ports/72824 Submitted by: Ports Fury
* - Update to 20041019sergei2004-10-202-3/+3
| | | | | | | | | W32/Netsky.AH@mm W32/Korgo.AB W32/Mydoom.AF PR: ports/72890 Submitted by: Tim Bishop (maintainer)
* Set correct entry date for the a2ps issue.simon2004-10-201-1/+1
| | | | | Noticed by: nectar Pointy hat to: simon
* Document insecure command line argument handling in a2ps.simon2004-10-201-0/+41
| | | | Approved by: nectar
* Document a vulnerability in ifmail. (There does not existnectar2004-10-201-0/+25
| | | | | | | an appropriate public reference yet--- this entry should be updated when the port is updated.) Reported by: Niels Heinen <niels.heinen@ubizen.com>
* - update to version 3.75eik2004-10-205-22/+7
| | | | + updated OS fingerprint database
* Document a vulnerability in imwheel.nectar2004-10-191-0/+35
|
* Add CVE names for FreeRADIUS vulnerabilities.nectar2004-10-191-1/+6
|
* Updated to 0.7askv2004-10-194-7/+7
|
* Document NTLM authentication vulnerability in squidjosef2004-10-191-0/+26
| | | | Approved by: nectar
* Document a SQL command injection in Cacti.simon2004-10-191-0/+26
| | | | | | | The status of the PHP configuration option magic_quotes_gpc was confirmed by: ale Approved by: nectar
* - update to 0.80 releaseeik2004-10-182-3/+3
| | | | | PR: 72810 Submitted by: Rob Evers <rob@dokus.debank.tv> (maintainer)
* Document a format string vulnerability in the apache13 mod_ssl proxysimon2004-10-181-0/+46
| | | | | | support. Approved by: nectar
* - Change a few uses of <url> into <mlist>.simon2004-10-171-3/+3
| | | | | | | | OK'ed by: nectar Additional comment to the Tor entry from v. 1.302, it was: Submitted by: rik <freebsd-security@rikrose.net> (original version)
* - Quick update to 0.0.8.1, bugfix release, because 0.0.8 was removedpav2004-10-174-6/+6
| | | | | | from distsite Reported by: Dead Microprocessor <dead.microprocessor@gmail.com>
* - Update to 1.8.12 and unbreak on 5.xpav2004-10-162-8/+4
| | | | | PR: ports/72750 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)
* Add clamassassinleeym2004-10-164-0/+46
| | | | | | | | | | | Clamassassin is a simple virus filter wrapper for ClamAV for use in procmail filters and similiar applications. Clamassassin's interface is similiar to that of spamassassin, making it easy to implement for those familiar with that tool. Clamassassin is designed with an emphasis on security, robustness and simplicity. PR: 72698 Submitted by: Matt <matt@xtaz.net>
* - Document remote DoS and loss of anonymity in Tor.simon2004-10-161-1/+35
| | | | | | - Update a Samba entry with new information about vulnerable versions. Approved by: nectar
* [1]:oliver2004-10-167-234/+154
| | | | | | | | | | | | | | | | | | - Remove USE_GMAKE (builds okay here with BSD make) - Clean up portions of main Makefile (don't need post/pre) - Add %%PREFIX%% man page patches - Add patch for ipv6_missing.h; removes EAI_MEMORY re-definition warnings, and is more FreeBSD-focused - Support 'oidentd_conf' rc.subr variable for those who want to be able to specify a configuration file. Also update the 'required_files' code to work with this too... [2]: - make it work with FreeBSD-5 in combination with option --reply PR: ports/71378 [1] Submitted By: Jeremy Chadwick <freebsd@jdc.parodius.com> [1] Noted By: Markus Hästbacka <midian@ihme.org> [2]
* Update to 2.4.2.1krion2004-10-162-3/+3
| | | | | PR: ports/72740 Submitted by: maintainer
* Kill off automake18, switching to automake19. Requiem Mors Pacem.ade2004-10-161-1/+2
|
* - Don't clobber portsentry.ignore on upgradepav2004-10-162-2/+4
| | | | | PR: ports/72689 Requested by: Alex de Kruijff <freebsd@akruijff.dds.nl>
* - pwauth must have a SUID bitclement2004-10-151-0/+1
|
* - Reduce dependency with perl-5.8.kuriyama2004-10-151-6/+11
| | | | - Remove bogus space.
* -Update to 2.1.3.mezz2004-10-1512-12/+565
| | | | | | | -Fix handling of default configuration files (nessusd.conf and nessusd.rules) PR: ports/71899 Submitted by: Udo Schweigert <udo.schweigert@siemens.com> (maintainer)
* Update to 0.3.4.marcus2004-10-152-3/+3
| | | | | PR: 72679 Submitted by: maintainer
* lesstif has been upgraded to a version that is not affected by thenectar2004-10-151-1/+1
| | | | libXpm vulnerability.
* Recommit my changes from 1.298 which was accidently removed in 1.299.simon2004-10-151-2/+3
| | | | Pointy hat to: josef (who also noticed the problem)
* Document two seperate security vulnerabilities injosef2004-10-151-3/+52
| | | | | | icecast1 and icecast2. Approved by: nectar
* Change the Xerces-C++ entry to match the xerces-c2 port.simon2004-10-151-2/+3
| | | | Noticed by: nectar
* Update to DAT 4399jeh2004-10-152-3/+3
|
* - bump PORTREVISIONclsung2004-10-142-1/+2
| | | | | | | | - -d option only works as a daemon now. - remove it from startup script and wait for future release. - Noticed by <richard AT boysoncom dot com> Approved by: co-mentor (vanilla)
* - update to 0.80rc4eik2004-10-1411-147/+121
| | | | | | | | | | | + JPEG comment exploit (MS04-028) detection *** IMPORTANT *** The configruration file for the clamd daemon has changed from /usr/local/etc/clamav.conf to /usr/local/etc/clamd.conf. PR: 72203 Approved by: Rob Evers <revers@infraqon.nl> (maintainer)
* Add security/pwauth 2.2.8,clement2004-10-147-0/+105
| | | | A Unix Web Authenticator.
* Upgrade to 2.1.2.vanilla2004-10-143-15/+6
| | | | | PR: ports/71907 Submitted by: maintainer
* Upgrade to 2.0.2vanilla2004-10-149-801/+144
| | | | | PR: ports/71263 Submitted by: maintainer
* Upgrade to 2.0.2.vanilla2004-10-149-381/+351
| | | | | PR: ports/71262 Submitted by: maintainer
* - drop maintainershipdinoex2004-10-143-3/+3
|
* - add a line why this port existdinoex2004-10-142-1/+3
| | | | - drop maintainership
* - update to 0.9.6clsung2004-10-145-26/+24
| | | | | | | - use configure file since 0.8 - lots of options move from rc_sub to conf file Approved by: co-mentor (vanilla)
* Document vulnerability in freeradius.josef2004-10-141-0/+26
| | | | Approved by: nectar
* - Document DoS in Xerces-C++.simon2004-10-141-1/+31
| | | | | | - Fix typo in a mozilla entry. Approved by: nectar
* It turns out that lesstif has libXpm sneakily embedded. There are atnectar2004-10-141-1/+5
| | | | | | | least three files with this comment at the top: * This file contains most of the source files of Xpm, concatenated and with * the public names changed (to have an _LtXpm prefix).
* Document XSS in wordpress.simon2004-10-141-0/+24
| | | | Approved by: nectar
* Document integer overflows in libtiff.nectar2004-10-141-0/+25
|
* - Document a CUPS local information disclosure.simon2004-10-141-0/+32
| | | | | | - Note the impact of the sharutils buffer overflows. Approved by: nectar
* Document a vulnerability in Zinf (freeamp).josef2004-10-141-0/+27
| | | | Approved by: nectar
* Update to DAT 4398jeh2004-10-142-3/+3
|
* - Update to 20041012pav2004-10-142-3/+3
| | | | | PR: ports/72562 Submitted by: Tim Bishop <tim@bishnet.net> (maintainer)
* - Update to 4.4.7pav2004-10-142-3/+3
| | | | | PR: ports/72561 Submitted by: Tim Bishop <tim@bishnet.net> (maintainer)
* Document libtiff RLE decoder issues.nectar2004-10-141-0/+26
|
* Update to 1.33krion2004-10-132-3/+3
| | | | | PR: ports/72597 Submitted by: maintainer
* - update to version 3.71-PRE1eik2004-10-132-8/+15
|
* Update to version 1.5markus2004-10-132-5/+5
| | | | | PR: ports/72452 Submitted by: Frank J. Laszlo <laszlof@vonostingroup.com> (maintainer)
* The sharutils buffer overflows has been fixed in sharutils 4.2.1_2.simon2004-10-131-1/+1
|
* - Update to 1.0.21sergei2004-10-132-9/+17
| | | | | | - Make security/libtasn1 and security/opencdk into optional dependencies, enabled by knobs: WITH_LIBTASN1 and WITH_OPENCDK, respectively. Default to using their included versions
* Use libtool 15arved2004-10-131-1/+1
|
* Adjust patch.lofi2004-10-131-3/+3
|
* Update: security/samhain 1.8.10b -> 1.8.11edwin2004-10-132-8/+8
| | | | | | | | | | | | | | | | | | | | | | | Updating the Samhain integrity checking system from 1.8.10b to 1.8.11. Code changes include: o for files in the IgnoreAll policy, there are no warnings (anymore) about 'no such user/group' and/or non-printable filenames o there is a new option HardlinkOffset=... to specify an offset from the canonical hardlink count for a directory o ... and a new option AddOKChars=... to modify the set of characters in a filename for which a warning (about obscure/non-printable) filename is issued. Port changes: Turn off kernel integrity checking by default - building this into packages wouldn't work anyhow, since it would only work with an identical kernel as on the build cluster. PR: ports/71169 Submitted by: David Thiel <lx@redundancy.redundancy.org>
* - add USE_GCC=2.95 and unbreak this portleeym2004-10-131-4/+4
| | | | | | | | - remove redundant statement PR: 72127 Submitted by: leeym Approved by: maintainer timeout
* Document a vulnerability in sharutils.simon2004-10-131-0/+31
| | | | Approved by: nectar
* Document 2 DoS attacks possible againstjosef2004-10-131-0/+27
| | | | | | | | | older versions of mail-notifier. Based on the security advisories mentioned in the reference links. Approved by: nectar
* - Update to 1.1.3leeym2004-10-134-15/+11
| | | | | | | | | - Add USE_GETOPT_LONG - Replace pkg-plist with PLIST_FILES and PORTDOCS PR: 71742 Submitted by: leeym Approved by: maintainer timeout
* ale@ reports that the only ports affected are php[45], php[45]-cgi,nectar2004-10-121-124/+2
| | | | and mod_php[45].
* Note squid SNMP DoS. Based on an entry that wasnectar2004-10-121-0/+32
| | | | Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>
* add WITH_AUTHDAEMON option to allow use of courier authdaemond.ume2004-10-121-0/+4
| | | | | PR: ports/72093 Submitted by: Marcin Gryszkalis
* Update to version 0.3.6krion2004-10-124-22/+5
| | | | | PR: ports/72328 Submitted by: Ports Fury
* Update to 4397jeh2004-10-122-3/+3
|
* Update to 1.4mat2004-10-122-3/+12
| | | | Add docs
* Update to 1.1.8.linimon2004-10-122-3/+3
| | | | | | | | | Note to maintainer: your mailer is apparently changing tabs to spaces. For short patches like this, it's possible to work around it; for longer patches, it won't work at all. PR: ports/71680 Submitted by: bugghy <bugghy at rootshell dot be> ( maintainer)
* - Upgrade to 2.2.0 [1]sergei2004-10-124-44/+45
| | | | | | | | | - Prevent local.rules from being clobbered [2] - Revive OPTIONS - the time has come... ;) PR: ports/70332 [1], ports/70814 [2] Submitted by: Linh Pham <question+freebsdpr@closedsrc.org> [1], Jez Hancock <jez.hancock@munk.nu> [2]
* - Explicitly specify prefix for iconv and gettext librariessergei2004-10-122-3/+11
| | | | | | | | | | to link properly in case PREFIX != LOCALBASE - Add optional missing files (*.mo) - Add USE_ICONV - Bump PORTREVISION PR: ports/72274 (partly) Submitted by: leeym
* Update to 1.1.7.linimon2004-10-122-3/+3
| | | | | PR: ports/71353 Submitted by: Dan Pelleg <daniel+hunch dot pelleg dot org> (maintainer)
* Add an entry for a XSS vulnerability fixed in IMP-3.2.6.thierry2004-10-121-0/+1
|
* - new option WITH_OPENSSH_CHROOTdinoex2004-10-124-48/+124
| | | | Submitted by: KANAI Makoto
* - cleanup patchesdinoex2004-10-1210-42/+42
| | | | (only context changed)
* - add patch to support AES-192-CBC and AES-256-CBCdinoex2004-10-121-0/+210
| | | | | | | | | to the crypto engine (assuming your card supports them). This make the Hifn cards much more useful as AES-256 is the default encryption for many client applications. Submitted by: Spike Ilacqua Obtained from: OpenBSD
* [MAINTAINER UPDATE] security/freebsd-updateedwin2004-10-122-0/+12
| | | | | | | | | | | | | | If `freebsd-update cron` fails due to a lack of internet connection, two emails will be sent -- one with the error message from fetch(1), and the other from freebsd-update reporting that patches could not be downloaded. This patch corrects this mis-behaviour and causes a single email to be sent in such an event; this will be included in a future version of the distfile. PR: ports/72310 Submitted by: Colin Percival <cperciva@daemonology.net>
* The documented xv vulnerabilities were fixed by dinoex@nectar2004-10-121-1/+2
| | | | Approved by: portmgr
* Note that the image decoding vulnerabilities in gdk-pixbuf have beennectar2004-10-121-2/+5
| | | | | | | fixed. Reported by: marcus Approved by: portmgr
* Document older cyrus-sasl bug affecting DIGEST-MD5.nectar2004-10-121-0/+23
| | | | | Submitted by: simon Approved by: portmgr
* Update the description of and list of packages affected by the PHP filenectar2004-10-121-14/+134
| | | | | | | upload processing bug. Submitted by: Jon Passki <cykyc@yahoo.com> Approved by: portmgr
* Update to 0.5.6lofi2004-10-122-3/+3
| | | | | PR: ports/72537 Submitted by: Jose M Rodriguez <josemi@freebsd.jazztel.es>
* Update to 1.9.11lofi2004-10-123-4/+4
| | | | | PR: ports/72535 Submitted by: Jose M Rodriguez <josemi@freebsd.jazztel.es>
* Update to 0.9.9lofi2004-10-122-3/+3
| | | | | PR: ports/72534 Submitted by: Jose M Rodriguez <josemi@freebsd.jazztel.es>
* Update to 0.6.7lofi2004-10-122-3/+3
| | | | | PR: ports/72533 Submitted by: Jose M Rodriguez <josemi@freebsd.jazztel.es>
* Update to 2.31.marcus2004-10-126-6/+18
| | | | | PR: 71985 Submitted by: maintainer
* - Update to 0.0.8pav2004-10-126-14/+16
| | | | | PR: ports/72086 Submitted by: rik <freebsd-security@rikrose.net> (maintainer)
* - Update to 2.0pav2004-10-124-5/+36
| | | | | | | - Add gmp dependency on FreeBSD 5.x PR: ports/72172 Submitted by: Marcus Grando <marcus@corp.grupos.com.br>
* - Update to 1.34pav2004-10-122-8/+6
| | | | | | | - Please portlint PR: ports/72036 Submitted by: Daan van de Linde <daan@xs4all.nl>
* - Update to 2.4.0pav2004-10-122-3/+3
| | | | | PR: ports/71896 Submitted by: Olivier Tharan <olive@oban.frmug.org> (maintainer)
* Fix build with bind9 in the base system.marcus2004-10-111-3/+8
| | | | | Reported by: pointyhat via kris Approved by: portmgr (implicit)
* Fix build on ia64krion2004-10-101-3/+8
| | | | | | PR: ports/71741 Submitted by: maintainer Approved by: portmgr (implicit)
* fix http://vuxml.freebsd.org/92268205-1947-11d9-bc4a-000c41e2cdad.htmlume2004-10-092-1/+17
| | | | | | Reported by: nectar Approved by: portmgr (krion) Obtained from: https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/lib/common.c#rev1.104
* Document unsafe use of environmental variable SASL_PATH in cyrus-sasl.nectar2004-10-091-0/+31
| | | | Approved by: portmgr
* Mark IGNORE because the package somehow includes a dangling symlink, i.e.kris2004-10-071-0/+2
| | | | | | it is incomplete. Approved by: portmgr (self)
* Fix the code so GCC 3.4.2 likes it better, and unbreak.danfe2004-10-062-7/+10
| | | | | Reported by: kris Approved by: portmgr (krion), fjoe (mentor, implicit)
* Add some more apache ports.trhodes2004-10-061-2/+14
| | | | | | Fix two errors found by nectar. Approved by: portmgr
* Add imp3 issue, add apache13-ssl issue, correct a tag.trhodes2004-10-061-2/+31
| | | | Approved by: portmgr
generated by cgit (git 2.34.1) at 2024-11-07 20:58:21 +0800