aboutsummaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* Document zoo -- stack based buffer overflow.remko2006-04-061-0/+30
* - Update to 2.4.0garga2006-04-064-26/+14
* Document mediawiki -- cross site scripting vulnerability.remko2006-04-061-0/+30
* Update to DAT 4733jeh2006-04-062-4/+4
* dia -- XFig Import Plugin Buffer Overflowmnag2006-04-061-0/+34
* openvpn -- LD_PRELOAD code execution on client through malicious or compromis...mnag2006-04-051-0/+35
* - Update to 2.0.6garga2006-04-059-216/+12
* - Update to 0.7.2garga2006-04-052-4/+4
* samba -- Exposure of machine account credentials in winbind log filesmnag2006-04-051-0/+44
* Upgrade pubcookie from 3.3.0-beta2 to 3.3.0a fixing serious XSSbrooks2006-04-051-0/+93
* Drop maintainer-shipehaupt2006-04-041-1/+1
* Update to 1.3.9ehaupt2006-04-042-4/+4
* Update to 2.2.6.novel2006-04-042-5/+4
* Update to DAT 4732jeh2006-04-042-4/+4
* - Upgrade to 1.4.3.kuriyama2006-04-038-48/+30
* Update to 1.07erwin2006-04-032-4/+4
* BROKEN: Does not compilekris2006-04-031-0/+2
* - Update to 1.2.3pav2006-04-022-5/+6
* Fill in the version numbers for the vidsedwin2006-04-011-2/+2
* The Project Cyrus web site is migrated to a new server.ume2006-04-014-4/+4
* Update to DAT 4731jeh2006-04-012-4/+4
* Sorry for deletion of PORTEOCH.shige2006-04-011-0/+1
* Reset green@ as maintainer at his request.linimon2006-03-312-2/+2
* change master siteijliao2006-03-312-3/+2
* upgrade to 2.2ijliao2006-03-316-21/+68
* Update to KDE 3.5.2lofi2006-03-318-138/+10
* Update to 1.60.shige2006-03-313-9/+8
* Update to DAT 4730jeh2006-03-312-4/+4
* For horde -- remote code execution vulnerability in the help viewersimon2006-03-301-4/+8
* Reset maintainer; nectar is away from FreeBSD work right now.linimon2006-03-301-1/+1
* freeradius -- EAP-MSCHAPv2 Authentication Bypassmnag2006-03-301-0/+32
* Update to DAT 4729jeh2006-03-302-4/+4
* When building calife-devel on 4.X-stable, @comment-out the PAM configthomas2006-03-292-2/+5
* Add an entry about Horde's remote code execution vulnerability in thethierry2006-03-291-0/+31
* UPEK TouchChip TFM/ESS Fingerprint BSP is a (binary only) BioAPI BSP whichsem2006-03-296-0/+393
* Teach the mod_install utility to not remove the shared object whensem2006-03-292-2/+13
* - Install libcrmf (needed for firefox 2.0)ahze2006-03-282-1/+4
* Update to 0.3.1ehaupt2006-03-282-4/+4
* - Chase libpreludedb versiongarga2006-03-281-2/+2
* - Update to 0.9.7garga2006-03-283-10/+10
* Make the port depend on the newly created security/p5-GSSAPI. Bumptobez2006-03-281-1/+3
* Add security/p5-GSSAPI 0.20, a Perl extension providing access to thetobez2006-03-285-0/+50
* - Make rc.d script more like what the Porters Handbook suggests.simon2006-03-282-4/+5
* Upgrade to 0.4.5.1.thierry2006-03-282-8/+7
* linux-realplayer -- buffer overrunmnag2006-03-281-0/+69
* Update to DAT 4727jeh2006-03-282-4/+4
* Update to 2.10. Require perl from ports.tobez2006-03-273-9/+26
* - Update email address in headerpav2006-03-262-2/+3
* Anti-bruteforce PAM module for authentification services. It can be used tosem2006-03-265-0/+45
* - Install an isakmpd rc.d startup script based on the ike startup scriptsimon2006-03-262-2/+24
* - Fix rc.d startup scriptgarga2006-03-252-1/+2
* - Fix rc.d startup scriptgarga2006-03-252-1/+2
* s/8 spaces/tab/ in the sendmail entry.remko2006-03-251-1/+1
* Record that our sendmail port was also vulnerable.remko2006-03-251-0/+5
* Update to DAT 4726jeh2006-03-252-4/+4
* Update the 'Evolution - remote format string vulnerabilities' entry.remko2006-03-241-1/+2
* Document the latest three FreeBSD Security Advisories:remko2006-03-241-0/+127
* Reset jedgar as maintainer; has not responded to email about status.linimon2006-03-241-1/+1
* Reset maintainer at his request; nectar is away from FreeBSD work right now.linimon2006-03-242-2/+2
* - Correct use of autotoolsmnag2006-03-241-1/+1
* Update to DAT 4725jeh2006-03-242-4/+4
* Fix byteorder determination, which led to the digest being computedtobez2006-03-242-0/+23
* - Update to 0.9.7.1garga2006-03-232-4/+4
* Update to 1.15skv2006-03-232-5/+5
* - Mark it BROKEN on ${OSVERSION} >= 700000ehaupt2006-03-233-7/+23
* Update to DAT 4724jeh2006-03-232-4/+4
* Add a missing @dirrm.des2006-03-222-0/+2
* - Use ECHO_MSG instead ECHOgarga2006-03-221-1/+1
* - Use ECHO_MSG instead ECHOgarga2006-03-221-1/+1
* Update to DAT 4723jeh2006-03-222-4/+4
* xorg-server -- privilege escalationlesi2006-03-221-0/+30
* - Update to 2.4.4 [1]garga2006-03-222-9/+8
* Update to 0.14.tobez2006-03-212-4/+11
* * security/libprelude: [1]garga2006-03-2113-43/+92
* - Update to 2.2.0ehaupt2006-03-216-23/+91
* - Update to 3.18.1tdb2006-03-212-4/+4
* Fix build on 4.xgarga2006-03-211-3/+2
* Update to DAT 4722jeh2006-03-212-4/+4
* Password Gorilla is cross-platform Password Manager.pav2006-03-216-0/+81
* Upgrade to 1.10.vanilla2006-03-212-10/+4
* Update to 0.16.des2006-03-213-7/+7
* - heimdal -- Multiple vulnerabilitiesmnag2006-03-201-0/+44
* - Update to 0.6.6mnag2006-03-203-33/+36
* Document ftp/curl's TFTP packet buffer overflow vulnerabilityvd2006-03-201-0/+35
* Add silktools.jylefort2006-03-206-0/+112
* - Update to 1.2pav2006-03-203-13/+7
* Fix SSL support.ehaupt2006-03-201-2/+11
* - Update to 20060319tdb2006-03-202-5/+5
* Update to 0.2.12krion2006-03-193-8/+12
* Reset maintainer at his request due to current lack of FreeBSD time.linimon2006-03-191-1/+1
* - Update to 1.5pav2006-03-195-6/+57
* - Update to 2.1.2mnag2006-03-192-5/+10
* Update to 4.2.0arved2006-03-192-4/+4
* Libtom* is back online at libtomcrypt.com. Point the ports back atcperciva2006-03-182-5/+3
* Add drupal <= 4.6.5 vulns.brooks2006-03-181-0/+52
* Update to DAT 4721jeh2006-03-182-4/+4
* Mark asvd2006-03-184-2/+13
* Fix build on amd64arved2006-03-181-4/+49
* Upgrade to nessus version 2.2.7vd2006-03-189-28/+42
* Add matrixssl, a small GPL'd SSL implementation.arved2006-03-179-0/+146
* - Add port security/pecl-gnupgmnag2006-03-174-0/+60
* Update to DAT 4720jeh2006-03-172-4/+4
* - Depend on texinfo from ports only when it is really needed [1]novel2006-03-161-3/+6
* - Add missed runtime dependency on recodepav2006-03-161-1/+2
* - Update to 0.1.0.17pav2006-03-162-6/+6
* - No longer on CPANpav2006-03-161-4/+2
* Add an entry for Horde < 3.1 (SA19246).thierry2006-03-161-0/+38
* Remove hpn-ssh; the functionality is now an option when building thelinimon2006-03-161-1/+0
* Update to DAT 4719jeh2006-03-162-4/+4
* Drop maintainership.novel2006-03-161-1/+1
* Update to DAT 4718jeh2006-03-162-4/+4
* - Add patch resolving an infinite loop in the scan enginesem2006-03-152-0/+46
* Update to 1.6.0ehaupt2006-03-153-22/+4
* - Update to 1.5.4ehaupt2006-03-152-7/+8
* Update to 0.7.1garga2006-03-154-68/+120
* Document linux-flashplugin -- arbitrary code execution vulnerability.simon2006-03-151-0/+39
* Remove the hpn-ssh port. The functionality is now an option whenbrooks2006-03-1519-925/+0
* Update to 0.4.9.marcus2006-03-154-10/+10
* Fix typos of entries in .texi.nork2006-03-132-1/+14
* Document nfs -- remote denial of service (FreeBSD: SA-06:10)remko2006-03-131-0/+51
* Add OpenSSH Remote Denial of Service (FreeBSD SA-06:09.openssh) to theremko2006-03-131-0/+71
* Correct the gpg entry wrt. style.remko2006-03-111-34/+34
* Update to 1.4.2.2.kuriyama2006-03-105-14/+48
* Document multimedia/mplayer's heap overflow in the ASF demuxervd2006-03-091-0/+35
* Now fetchable againkris2006-03-081-2/+0
* Bump PORTREVISION on glib12/gtk12 consumer ports to ease the upgrade path.ade2006-03-0716-10/+16
* Add the ssh2-nox11 slave port to the list of ports affected bymarius2006-03-061-0/+2
* Add a patch which fixes a format string vulnerability in the SFTP server.marius2006-03-052-1/+22
* Document a SSH.COM SFTP server format string vulnerability affectingmarius2006-03-051-0/+33
* Document GNU tar invalid headers buffer overflow.naddy2006-03-041-0/+27
* - Update to 0.9.3 (unbreaks fething)sergei2006-03-022-9/+9
* - Update to 0.9.5.1 (unbreaks fething)sergei2006-03-022-9/+10
* - Replace deprecated USE_AUTOTOOLS=libtool:15:inc construct (somehow missedsergei2006-03-022-4/+4
* Fix FreeBSD 4 jail buildvd2006-03-013-3/+3
* Remove the pinentry entry. It was gentoo specific and I overlookedremko2006-02-281-33/+0
* Document Bugzilla [2.*, 2.20.1) vulnerabilities.skv2006-02-271-0/+25
* Fix build after Mono 1.1.13.2 namespace moveagetmclaugh2006-02-272-1/+14
* - Unbrokenmnag2006-02-261-4/+1
* BROKEN: Incomplete pkg-plistkris2006-02-261-0/+2
* Document squirrelmail (< 1.4.6) vulnerabilities:delphij2006-02-251-0/+25
* Conversion to a single libtool environment.ade2006-02-23120-135/+319
* Update 0.10 --> 0.11cy2006-02-237-56/+39
* - Update to 1.2.8ehaupt2006-02-233-10/+8
* - Update to 0.3.2mnag2006-02-223-20/+17
* Use bsd.drupal.mk to reduce duplicate code in drupal modules.brooks2006-02-222-130/+10
* - Fix order in rc.d script. Because of pidfile are empty, reload [2] and rest...mnag2006-02-222-14/+18
* Fix a problem with the CLOBBER option. The meaning of this option iscy2006-02-221-1/+51
* Update to DAT 4702jeh2006-02-222-4/+4
* - ": ...." section in rc.d script misorderedclsung2006-02-212-7/+7
* Reset maintainer at his request.linimon2006-02-211-1/+1
* Dist file re-rolled. No changes to files according to diff(1). Updatingseanc2006-02-211-3/+3
* - files/clamsmtpd.sh.in cause start-up errorclsung2006-02-212-6/+7
* - Fix run-time linking problems of the Prelude ports by installing libtoolsergei2006-02-212-3/+16
* - Fix run-time linking problems of the Prelude ports by installing libtoolsergei2006-02-212-2/+5
* - Fix run-time linking problems of the dependent ports by installing libtoolsergei2006-02-212-3/+20
* - Fix run-time linking problems of the dependent ports by installing libtoolsergei2006-02-213-9/+79
* - Transfer maintainership to submitter [1]garga2006-02-211-1/+1
* Update search.cpan.org WWW: entries to have a trailing slash.fenner2006-02-2146-46/+46
* Remove the FreeBSD KEYWORD from all rc.d scripts where it appears.dougb2006-02-2133-36/+32
* Remove the latest squid entry, it already existed.remko2006-02-211-28/+0
* Point MASTER_SITES and PATCH_SITES at the FreeBSD FTP mirrors and markcperciva2006-02-211-4/+4
* Update to DAT 4701jeh2006-02-212-4/+4
* Document gedit -- format string vulnerability.remko2006-02-211-0/+28
* Add koffice to the RTF import issue.remko2006-02-201-1/+7
* Documenet WebCalendar -- unauthorized access vulnerability.remko2006-02-201-0/+27
* Reset bouncing maintainer address.linimon2006-02-201-1/+1
* Document abiword -- stack based buffer overflow vulnerabilities.remko2006-02-201-0/+30
* - Rename CONF_FILES to LOCAL_CONF_FILES.flz2006-02-202-5/+5
* - Only depends of openssh-portable if not exists on systemmnag2006-02-202-15/+17
* Document pinentry -- local privilege escalation.remko2006-02-201-1/+34
* Document squid -- dns lookup spoofing.remko2006-02-201-0/+28
* - Fix dependency because update security/rubygem-net-sshmnag2006-02-201-1/+1
* - Update to 1.0.8mnag2006-02-202-5/+5
* Mark math/libtommath, math/tomsfastmath, and security/libtomcrypt ascperciva2006-02-201-0/+2
* Update to 1.5.7anray2006-02-202-4/+4
* - Switch to a rc.d startup script.marius2006-02-208-93/+114
* Prune expired certificates (including one that will expire in 4 days duringvs2006-02-192-702/+1
* - Use OPTIONSehaupt2006-02-193-41/+103
* Remove deprecated USE_REINPLACEehaupt2006-02-197-9/+0
* Chase gtk-sharp20 updatetmclaugh2006-02-191-0/+1
* - Update to 2.0mnag2006-02-192-8/+6
* - Update pkg-descrehaupt2006-02-193-21/+13
* Document postgresql81-server -- SET ROLE privilege escalation.simon2006-02-181-0/+30
* Fix build of "slave port" (security/nmapfe) on 4.x by using GCC 3.2+ehaupt2006-02-181-0/+1
* - update from v2.15 to v2.17aaron2006-02-182-4/+4
* - Update to 0.1.1.13mnag2006-02-1811-180/+163
* - Update to 0.4.8ehaupt2006-02-184-16/+18
* Update 0.6.4 --> 0.6.9cy2006-02-182-4/+4
* - Update to 1.1.1garga2006-02-183-6/+6
* Document gnupg -- false positive signature verification.simon2006-02-171-0/+39
* - bump PORTREVISION for plist change.clsung2006-02-174-18/+44
* Update to DAT 4699jeh2006-02-172-4/+4
* Upgrade to 1.2.4 and fix a security issue.thierry2006-02-172-7/+4
* Add missing patch files.cy2006-02-166-0/+169
* Ugrade 2.3.1-2 --> 2.4.0.1cy2006-02-1614-976/+42
* Document rssh -- privilege escalation vulnerability.remko2006-02-161-0/+33
* Document tor -- malicious tor server can locate a hidden service.remko2006-02-161-0/+29
* Document sudo -- arbitrary command execution.remko2006-02-161-0/+36
* Document libtomcrypt -- weak signature scheme with ECC keys.remko2006-02-161-0/+25
* Document mantis -- "view_filters_page.php" cross site scripting vulnerability.remko2006-02-161-0/+33
* Document phpbb -- multiple vulnerabilities.remko2006-02-161-0/+43
* Document postgresql -- character conversion and tsearch2 vulnerabilities.remko2006-02-161-0/+46
* Document heartbeat -- insecure temporary file creation vulnerability.remko2006-02-161-0/+28
* Update to DAT 4697jeh2006-02-162-4/+4
* - Transfer maintainership of the Prelude ports to the submitter,sergei2006-02-154-4/+4
* Document kpdf -- heap based buffer overflowremko2006-02-151-0/+29
* Document perl, webmin, usermin -- perl format string integer wrap vulnerabilityremko2006-02-151-0/+46
* Document phpicalendar -- cross site scripting vulnerability andremko2006-02-151-0/+54
* Upgrade to 1.4.2.1.kuriyama2006-02-154-16/+14
* Update to 1.10.lawrance2006-02-152-4/+4
* Update to 0.4.7.marcus2006-02-156-8/+14
* Update to DAT 4696jeh2006-02-152-4/+4
* - Update to 0.9.3sergei2006-02-143-13/+14
* - Update to 0.9.2sergei2006-02-143-19/+19
* - Update to 0.9.4 (unbreaks fetching)sergei2006-02-144-21/+23
* - Update to 0.9.5sergei2006-02-143-12/+11
* Document FreeBSD -- Infinite loop in SACK handling (FreeBSD SA 06.08)remko2006-02-141-0/+36
* Document pf -- IP fragment handling panic, FreeBSD SA 06.07remko2006-02-141-0/+41
* Document FreeBSD -- Local kernel memory disclosureremko2006-02-141-0/+38
* Document IEEE 802.11 -- buffer overflow (FreeBSD SA 06.05).remko2006-02-141-0/+35
* Add FreeBSD SA 06.04.ipfw to the vuln.xml list.remko2006-02-141-0/+36
* Update to DAT 4695jeh2006-02-142-4/+4
* - Make an option for kinkd support. This should work on 4-STABLEsumikawa2006-02-134-18/+71
* Update to 0.34.lawrance2006-02-132-9/+8
* No need to conditionalise USE_GETOPT_LONG.lawrance2006-02-133-12/+3
* Update to 0.4.7.lawrance2006-02-122-5/+4
* Forget to add HPN patches.mnag2006-02-122-2/+8
* - Update to 4.3p2mnag2006-02-122-10/+4
* Reset maintainership to ports@ after ~4 months without any response to anynetchild2006-02-124-4/+4
* make it possible to change the program which is used for authpipeoliver2006-02-111-0/+10
* Update to 4.01krion2006-02-112-4/+4
* Update to DAT 4694jeh2006-02-112-4/+4
* Update to DAT 4693jeh2006-02-112-4/+4
* Update to 1.7ehaupt2006-02-112-5/+5
* Update to 1.3.4 - a security release which fixes bugs innovel2006-02-112-4/+4
* Update to 1.2.10 - a security release which fixes bugs innovel2006-02-112-4/+4
* Update to 0.2.18 - a security release which fixes bugs in the DER decoder.novel2006-02-112-4/+4
* Update to DAT 4692jeh2006-02-092-4/+4
* Mark ivtools 1.2.3 as fixed for jpeg vulnerabilities. Note that thissimon2006-02-081-10/+25
* Document kpopup -- local root exploit and local denial of service.simon2006-02-081-0/+41
* - Update to 4.3p1mnag2006-02-088-88/+194
* - Reorganize Makefile in preparation to update to 4.3p1mnag2006-02-082-74/+75
* Case MASTER_SITES redirect as reported by the Distfiles survey.simon2006-02-071-1/+1
* Update to DAT 4690jeh2006-02-072-4/+4
* - Update to 1.09garga2006-02-072-6/+11
* The Authen::Libwrap module allows you to access the hosts_ctl()garga2006-02-066-0/+75
* - Update to 0.6.5barner2006-02-063-16/+4
* - Update to 0.4.6barner2006-02-062-5/+4
* - Update to 0.04erwin2006-02-052-11/+9
* Update to 2.01erwin2006-02-045-22/+11