aboutsummaryrefslogtreecommitdiff
path: root/security/krb5
Commit message (Collapse)AuthorAgeFilesLines
* Add an empty directory created by the port to pkg-plistAntoine Brodin2013-06-212-0/+4
| | | | | | | Approved by: portmgr (miwi) Notes: svn path=/head/; revision=321478
* Update krb5 1.11.2 --> 1.11.3.Cy Schubert2013-06-042-3/+3
| | | | | | | | | | | | | | This is a bugfix release. * Fix a UDP ping-pong vulnerability in the kpasswd (password changing) service. [CVE-2002-2443] * Improve interoperability with some Windows native PKINIT clients. Security: CVE-2002-2443 Notes: svn path=/head/; revision=319823
* - Convert USE_GETTEXT to USES (part 3)Alex Kozlov2013-04-241-1/+1
| | | | | | | Approved by: portmgr (bapt) Notes: svn path=/head/; revision=316464
* Update 1.11.1 --> 1.11.2Cy Schubert2013-04-173-28/+4
| | | | | | | | | | | | | | | | | | | | Major changes in 1.11.2 (2013-04-12) ==================================== This is a bugfix release. * Incremental propagation could erroneously act as if a slave's database were current after the slave received a full dump that failed to load. * gss_import_sec_context incorrectly set internal state that identifies whether an imported context is from an interposer mechanism or from the underlying mechanism. Feature safe: yes Notes: svn path=/head/; revision=315921
* - Remove A/An in COMMENTCarlo Strub2013-03-291-1/+1
| | | | | | | - Trim Header where applicable Notes: svn path=/head/; revision=315566
* Reset ulog if database load failed.Cy Schubert2013-03-052-0/+24
| | | | | | | | | Avoids a slave reporting it is current when a full resync fails. Obtained from: https://github.com/rbasch/krb5/commit/2ef5ae0607d1c317a936e439b4be7a6f5184dc Notes: svn path=/head/; revision=313458
* Update 1.11 --> 1.11.1.Cy Schubert2013-02-222-3/+3
| | | | | | | Security: Fix a null pointer dereference in the KDC PKINIT code [CVE-2013-1415]. Notes: svn path=/head/; revision=312788
* Fix verto.h missing build error on some systems.Cy Schubert2013-01-241-23/+22
| | | | | | | | | | | | The following contributed by mandree@: - Header standardization. - Make use of OptionsNG. - Make portlint happy. Notes: svn path=/head/; revision=310931
* Update 1.10.3 --> 1.11Cy Schubert2013-01-227-108/+44
| | | | Notes: svn path=/head/; revision=310802
* Fix plist.Cy Schubert2012-11-042-0/+3
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=306950
* Update krb5 1.9.2 --> 1.10.3Cy Schubert2012-11-035-207/+24
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=306935
* Fix build of security/krb5 with clang.Cy Schubert2012-07-091-0/+1
| | | | | | | | PR: 169740 Submitted by: Niclas Zeising <zeising@daemonic.se> Notes: svn path=/head/; revision=300689
* - update png to 1.5.10Dirk Meyer2012-06-011-1/+1
| | | | Notes: svn path=/head/; revision=297915
* - pointyhat kludge - tetex drags in port-OpenSSL on 7.X, but only as a buildPav Lucistnik2012-04-061-2/+16
| | | | | | | | | | | | | dependency. Yet this triggers autodetection code in bsd.openssl.mk and OpenSSL dependency is registered with the resulting package, creating a discord between INDEX and actual package. Work around by explicitly recording the dependency in a way that INDEX build will see. OK'ed by: cy (maintainer) Feature safe: yes Notes: svn path=/head/; revision=294275
* PORTREVISION bump.Cy Schubert2011-12-141-0/+1
| | | | | | | | PR: 163272 Feature safe: yes Notes: svn path=/head/; revision=287344
* Apply patch for MITKRB5-SA-2011-007, KDC null pointer dereference in TGSCy Schubert2011-12-142-2/+5
| | | | | | | | | | | | handling. PR: 163272 Submitted by: zi Security: 6c7d9a35-2608-11e1-89b4-001ec9578670 Feature safe: yes Notes: svn path=/head/; revision=287342
* Update 1.9.1 --> 1.9.2. This is a bugfix release.Cy Schubert2011-11-164-27/+4
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=285932
* Apply patch from MIT KRB5 GIT tree commit: 043533c2f13d2bc69316.Cy Schubert2011-09-062-0/+22
| | | | | | | | | | | | | | libgssrpc was ignorant of the remote address of the kadmin socket, even when it's IPv4. This made old-style GSSAPI authentication fail because it uses the wrong channel bindings. Fix this problem by making clnttcp_create() get the remote address from the socket using getpeername() if the caller doesn't provide it and it's an IPv4 address. PR: 160500 Submitted by: Ben Kaduk <kaduk@mit.edu> Notes: svn path=/head/; revision=281304
* Update 1.9 --> 1.9.1.Cy Schubert2011-06-302-19/+9
| | | | | | | | PR: 158520 Submitted by: Ryan Steinmetz <rpsfa@rit.edu> Notes: svn path=/head/; revision=276703
* Apply patch for MITKRB5-SA-2011-004, kadmind invalid pointer free()Cy Schubert2011-04-142-2/+4
| | | | | | | | | | [CVE-2011-0285] Security: MITKRB5-SA-2011-004, CVE-2011-0285 Feature safe: yes Notes: svn path=/head/; revision=272694
* Bump PORTREVISION.Cy Schubert2011-04-081-1/+1
| | | | Notes: svn path=/head/; revision=272413
* Adjust krb5-config when $KRB5_HOME is specified. This will allow applicationsCy Schubert2011-04-081-4/+6
| | | | | | | linking aganst the MIT krb5 libraries to link using the correct ones. Notes: svn path=/head/; revision=272412
* Apply patch for MITKRB5-SA-2011-003, KDC vulnerable to double-free whenCy Schubert2011-03-252-2/+5
| | | | | | | | | | | PKINIT enabled. Obtained from: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-003.txt Security: MITKRB5-SA-2011-003, CVE-2011-0284 Feature safe: yes Notes: svn path=/head/; revision=271620
* Apply fixes for kpropd denial of service (MITKRB5-SA-2011-001) and KDCCy Schubert2011-02-112-5/+6
| | | | | | | | | | denial of service (MITKRB5-SA-2011-002). Security: MITKRB5-SA-2011-001 (CVE-2010-4022), MITKRB5-SA-2011-002 (CVE-2011-0281) Notes: svn path=/head/; revision=268904
* Remove the OpenSSL port requirement. The base OpenSSL will work too.Cy Schubert2011-01-181-1/+1
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=267948
* Update from 1.8.3_2 to 1.9.Cy Schubert2010-12-233-9/+10
| | | | Notes: svn path=/head/; revision=266754
* Sync to new bsd.autotools.mkAde Lovett2010-12-041-1/+1
| | | | Notes: svn path=/head/; revision=265663
* Fix security vulnerabilities CVE-2010-1324, CVE-2010-1323, CVE-2010-4020,Cy Schubert2010-12-022-2/+7
| | | | | | | | | | | | | CVE-2010-4021, and CVE-2010-1322. PR: 152755 Submitted by: wollman Security: CVE-2010-1324, CVE-2010-1323, CVE-2010-4020, CVE-2010-4021, and CVE-2010-1322. Feature safe: Yes Notes: svn path=/head/; revision=265546
* Enable ksu DEBUG (-D) flag.Cy Schubert2010-11-042-1/+2
| | | | Notes: svn path=/head/; revision=264006
* Update to 1.8.3.Cy Schubert2010-08-052-10/+4
| | | | | | | | PR: 149299 Submitted by: gwollman Notes: svn path=/head/; revision=258835
* Apply patch for MIT KRB5 security vulnerability MITKRB5-SA-2010-005.Cy Schubert2010-05-252-1/+6
| | | | | | | | | PR: 146939 Submitted by: wollman Security: MIT krb5 Security Advisory 2010-005 Notes: svn path=/head/; revision=255031
* - No longer broken on -current b/c of utmpx changesPhilip M. Gollucci2010-05-241-4/+0
| | | | | | | | | PR: ports/146384 Submitted by: pgollucci@ (myself), others Approved by: maintainer timeout (cy@, 16 days) Notes: svn path=/head/; revision=254925
* Welcome the new krb5-1.8.1. Significant changes include the removal ofCy Schubert2010-04-2616-574/+193
| | | | | | | the MIT KRB5 applications (now in a separate tarball and port). Notes: svn path=/head/; revision=253264
* MFkrb5-17.Cy Schubert2010-04-2612-220/+89
| | | | Notes: svn path=/head/; revision=253260
* - Mark BROKEN: does not compilePav Lucistnik2010-04-141-0/+2
| | | | | | | Reported by: pointyhat Notes: svn path=/head/; revision=252689
* - update to 1.4.1Dirk Meyer2010-03-281-1/+1
| | | | | | | | Reviewed by: exp8 run on pointyhat Supported by: miwi Notes: svn path=/head/; revision=251605
* - Mark BROKEN: fails to build with new utmpxMartin Wilke2010-03-171-0/+4
| | | | | | | Reported by: pointyhat Notes: svn path=/head/; revision=251158
* - update to jpeg-8Dirk Meyer2010-02-051-1/+1
| | | | Notes: svn path=/head/; revision=249285
* Remove commented out option from a bygone era.Cy Schubert2009-10-131-1/+0
| | | | Notes: svn path=/head/; revision=242787
* Remove redundant length check.Cy Schubert2009-08-282-12/+1
| | | | Notes: svn path=/head/; revision=240469
* -Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.Jeremy Messenger2009-08-022-10/+7
| | | | | | | | | | | | | | | | | | | | | -Update libtool and libltdl to 2.2.6a. -Remove devel/libtool15 and devel/libltdl15. -Fix ports build with libtool22/libltdl22. -Bump ports that depend on libltdl22 due to shared library version change. -Explain what to do update in the UPDATING. It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop and applications in the runtime. With help: marcus and kwm Pointyhat-exp: a few times by pav Tested by: pgollucci, "Romain Tartière" <romain@blogreen.org>, and a few MarcusCom CVS users. Also, I might have missed a few. Repocopy by: marcus Approved by: portmgr Notes: svn path=/head/; revision=238781
* - bump all port that indirectly depends on libjpeg and have not yet been ↵Dirk Meyer2009-07-311-1/+1
| | | | | | | | | bumped or updated Requested by: edwin Notes: svn path=/head/; revision=238701
* Convert missing WANT_KRB5_DOC pieces.Cy Schubert2008-05-231-5/+5
| | | | | | | Add HTML documentation OPTION knob. Notes: svn path=/head/; revision=213562
* Implement OPTIONS menu.Cy Schubert2008-05-142-17/+70
| | | | | | | | | | | | | | | | Implement options that will allow the user to: - rename ftp and ftpd to kftp and kftpd - rename telnet and telnetd to ktelnet and ktelnetd - rename rlogin to krlogin - rename rsh to krsh - rename rcp to krcp This avoids shadowing by or being shadowed by, depending on one's PATH, system utilities of the same name. Notes: svn path=/head/; revision=213070
* Fixes for multiple vulnerabilities.Cy Schubert2008-03-194-1/+82
| | | | | | | | | | | | Security: US-CERT Technical Cyber Security Alert TA08-079B -- MIT Kerberos Updates for Multiple Vulnerabilities US-CERT Vulnerability Note VU#895609, US-CERT Vulnerability Note VU#374121 MIT krb5 Security Advisory 2008-001 MIT krb5 Security Advisory 2008-002 Notes: svn path=/head/; revision=209396
* Fix pkinit install brokenness under 5.5 and 6.2.Cy Schubert2008-01-061-5/+2
| | | | | | | Approved by: portmgr (linimon) Notes: svn path=/head/; revision=205104
* Mark as broken: fails to install.Mark Linimon2007-11-241-0/+2
| | | | | | | Approved by: portmgr (self) Notes: svn path=/head/; revision=202822
* Fix build for OpenSSL 0.9.8.Cy Schubert2007-10-292-7/+5
| | | | | | | | PR: 117552 Submitted by: Hirohisa Yamaguchi <umq@umo.co.jp> Notes: svn path=/head/; revision=202374
* Fix build under 7.0-PRERELEASE.Cy Schubert2007-10-293-1/+19
| | | | Notes: svn path=/head/; revision=202364
* Fix erroneous patch.Cy Schubert2007-10-252-4/+7
| | | | | | | | PR: 117469 Submitted by: Karen Andrews <dearmiss@optusnet.com.au> Notes: svn path=/head/; revision=202026
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-06 03:01:00 +0000