| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
Add readline non-default option.
Notes:
svn path=/head/; revision=364798
|
|
|
|
| |
Notes:
svn path=/head/; revision=339911
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Adjust the newly created krb5-maint with a new portname and conflicts.
Krb5-maint is a maintenance release for those who wish to use the previous
release of krb5. krb5-maint remains at 1.11.3.
Adjust CONFLICTS in security/heimdal and security/srp to account for the
newly repocopied krb5-maint.
Adjust security/Makefile to include krb5-maint.
Notes:
svn path=/head/; revision=336247
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This is a bugfix release.
* Fix a UDP ping-pong vulnerability in the kpasswd (password changing)
service. [CVE-2002-2443]
* Improve interoperability with some Windows native PKINIT clients.
Security: CVE-2002-2443
Notes:
svn path=/head/; revision=319823
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Major changes in 1.11.2 (2013-04-12)
====================================
This is a bugfix release.
* Incremental propagation could erroneously act as if a slave's
database were current after the slave received a full dump that
failed to load.
* gss_import_sec_context incorrectly set internal state that
identifies whether an imported context is from an interposer
mechanism or from the underlying mechanism.
Feature safe: yes
Notes:
svn path=/head/; revision=315921
|
|
|
|
|
|
|
| |
Security: Fix a null pointer dereference in the KDC PKINIT code [CVE-2013-1415].
Notes:
svn path=/head/; revision=312788
|
|
|
|
| |
Notes:
svn path=/head/; revision=310802
|
|
|
|
|
|
|
| |
Feature safe: yes
Notes:
svn path=/head/; revision=306935
|
|
|
|
|
|
|
|
|
|
|
|
| |
handling.
PR: 163272
Submitted by: zi
Security: 6c7d9a35-2608-11e1-89b4-001ec9578670
Feature safe: yes
Notes:
svn path=/head/; revision=287342
|
|
|
|
|
|
|
| |
Feature safe: yes
Notes:
svn path=/head/; revision=285932
|
|
|
|
|
|
|
|
| |
PR: 158520
Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
Notes:
svn path=/head/; revision=276703
|
|
|
|
|
|
|
|
|
|
| |
[CVE-2011-0285]
Security: MITKRB5-SA-2011-004, CVE-2011-0285
Feature safe: yes
Notes:
svn path=/head/; revision=272694
|
|
|
|
|
|
|
|
|
|
|
| |
PKINIT enabled.
Obtained from: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-003.txt
Security: MITKRB5-SA-2011-003, CVE-2011-0284
Feature safe: yes
Notes:
svn path=/head/; revision=271620
|
|
|
|
|
|
|
|
|
|
| |
denial of service (MITKRB5-SA-2011-002).
Security: MITKRB5-SA-2011-001 (CVE-2010-4022),
MITKRB5-SA-2011-002 (CVE-2011-0281)
Notes:
svn path=/head/; revision=268904
|
|
|
|
| |
Notes:
svn path=/head/; revision=266754
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
CVE-2010-4021, and CVE-2010-1322.
PR: 152755
Submitted by: wollman
Security: CVE-2010-1324, CVE-2010-1323, CVE-2010-4020, CVE-2010-4021,
and CVE-2010-1322.
Feature safe: Yes
Notes:
svn path=/head/; revision=265546
|
|
|
|
|
|
|
|
| |
PR: 149299
Submitted by: gwollman
Notes:
svn path=/head/; revision=258835
|
|
|
|
|
|
|
|
|
| |
PR: 146939
Submitted by: wollman
Security: MIT krb5 Security Advisory 2010-005
Notes:
svn path=/head/; revision=255031
|
|
|
|
|
|
|
| |
the MIT KRB5 applications (now in a separate tarball and port).
Notes:
svn path=/head/; revision=253264
|
|
|
|
| |
Notes:
svn path=/head/; revision=253260
|
|
|
|
|
|
|
|
|
|
|
|
| |
Security: US-CERT Technical Cyber Security Alert TA08-079B --
MIT Kerberos Updates for Multiple Vulnerabilities
US-CERT Vulnerability Note VU#895609,
US-CERT Vulnerability Note VU#374121
MIT krb5 Security Advisory 2008-001
MIT krb5 Security Advisory 2008-002
Notes:
svn path=/head/; revision=209396
|
|
|
|
|
|
|
|
|
|
| |
Security: fix CVE-2007-3999, CVE-2007-4743 svc_auth_gss.c buffer overflow
fix CVE-2007-4000 modify_policy vulnerability
Also: add PKINIT support
Notes:
svn path=/head/; revision=201793
|
|
|
|
|
|
|
|
| |
overflow, uninitialized pointer
Security: MIT krb5 Security Advisory 2007-006
Notes:
svn path=/head/; revision=199350
|
|
|
|
| |
Notes:
svn path=/head/; revision=195424
|
|
|
|
|
|
|
|
|
|
|
| |
MITKRB5-SA-2007-004: kadmind affected by multiple RPC library vulnerabilities
MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow
Security: US CERT Technical Cyber Security Alert TA07-177A --
MIT Kerberos Vulnerabilities
Notes:
svn path=/head/; revision=194320
|
|
|
|
| |
Notes:
svn path=/head/; revision=190763
|
|
|
|
|
|
|
|
| |
Security: MITKRB5-SA-2006-002, MITKRB5-SA-2006-003, and
US-CERT Technical Cyber Security Alert TA07-009B
Notes:
svn path=/head/; revision=181950
|
|
|
|
|
|
|
| |
Submitted by: Paul Vixie <paul@vix.com>
Notes:
svn path=/head/; revision=173170
|
|
|
|
| |
Notes:
svn path=/head/; revision=167821
|
|
|
|
|
|
|
| |
Approved by: krion@
Notes:
svn path=/head/; revision=154303
|
|
|
|
| |
Notes:
svn path=/head/; revision=148694
|
|
|
|
| |
Notes:
svn path=/head/; revision=144205
|
|
|
|
|
|
|
| |
Package list fixup when KRB5_KRB4_COMPAT is not specified.
Notes:
svn path=/head/; revision=133976
|
|
|
|
| |
Notes:
svn path=/head/; revision=133191
|
|
|
|
| |
Notes:
svn path=/head/; revision=124652
|
|
|
|
|
|
|
| |
Remove code to alternatively fetch from that site.
Notes:
svn path=/head/; revision=124647
|
|
|
|
| |
Notes:
svn path=/head/; revision=119872
|
|
|
|
| |
Notes:
svn path=/head/; revision=111315
|
|
|
|
| |
Notes:
svn path=/head/; revision=106365
|
|
|
|
|
|
|
|
|
|
| |
1.3.2 yet, when USE_KRB5_TARBALL=CRYPTO-PUBLISH is specified, 1.3.1
will be installed.)
- Add SIZE to distinfo
Notes:
svn path=/head/; revision=102465
|
|
|
|
| |
Notes:
svn path=/head/; revision=86616
|
|
|
|
| |
Notes:
svn path=/head/; revision=86530
|
|
|
|
| |
Notes:
svn path=/head/; revision=80323
|
|
|
|
|
|
|
|
| |
Note: Since crypto-publish.org does not yet have krb5-1.2.7 up on their
website, fetch from their site has been temporarily disabled.
Notes:
svn path=/head/; revision=70211
|
|
|
|
|
|
|
|
|
|
| |
patch reimplements code to fetch MIT Kerberos from their site when
USA_RESIDENT=NO.
Approved by: kris
Notes:
svn path=/head/; revision=67138
|
|
|
|
|
|
|
|
| |
Note: Since crypto-publish.org does not yet have krb5-1.2.6 up on their
website, fetch from their site has been temporarily disabled.
Notes:
svn path=/head/; revision=66260
|
|
|
|
|
|
|
|
|
|
| |
up on their website again, reimplementation of the Makefile patch that
fetched the the tarball from their site for users outside of the US
(originally in Makefile rev 1.29). USA_RESIDENT=YES still supports
manual fetching from web.mit.edu.
Notes:
svn path=/head/; revision=58479
|
|
|
|
| |
Notes:
svn path=/head/; revision=58462
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
that contains the distribution itself, in a tar.gz file, and a signature
certificate, contained in a detached .tar.gz.asc file. Prior to this
patch, users installing MIT KRB5 had to extract the tarball into
/usr/ports/distfiles, then proceed with the installation. This caused
confusion among those installing the port. This patch addresses the
problem by extracting the .tar.gz file from the tarball, then unpacking
the .tar.gz file before continuing with the build.
Notes:
svn path=/head/; revision=56313
|
|
|
|
| |
Notes:
svn path=/head/; revision=55369
|