aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - StageBryan Drewery2014-04-101-10/+13
| | | | | | | | - Remove bsd.port.pre.mk - Add LICENSE Notes: svn path=/head/; revision=350757
* - Document recent vulnerability in net/openafs (CVE-2014-0159)Ryan Steinmetz2014-04-091-0/+30
| | | | Notes: svn path=/head/; revision=350714
* Mark as broken unstaged perl portsBaptiste Daroussin2014-04-095-0/+5
| | | | | | | With hat: portmgr Notes: svn path=/head/; revision=350675
* Mark as broken non staged ports using the ruby frameworkBaptiste Daroussin2014-04-091-1/+1
| | | | | | | With hat: portmgr Notes: svn path=/head/; revision=350669
* - Fix build segfault under 10Ryan Steinmetz2014-04-091-2/+1
| | | | | | | | | | | - Bump PORTREVISION PR: ports/188297 Submitted by: cy@ Approved by: portmgr (bdrewery) Notes: svn path=/head/; revision=350662
* - Update to 5.01Ryan Steinmetz2014-04-092-3/+3
| | | | Notes: svn path=/head/; revision=350657
* Document new vulnerabilities in www/chromium < 34.0.1847.116Rene Ladan2014-04-081-0/+70
| | | | | | | | Obtained from: http://googlechromereleases.blogspot.nl/ MFH: 2014Q2 Notes: svn path=/head/; revision=350644
* Fix old sshguard bug; does not detect ssh invalid users loginsChris Rees2014-04-084-40/+30
| | | | | | | | | | | | PR: ports/174571 Submitted by: Francois Charlier <fcharlier@ploup.net> Reset maintainer after 16 month timeout While here, stage, remove some insanity and fixup rc script Notes: svn path=/head/; revision=350643
* Add mingw32-openssl.Akinori MUSHA2014-04-081-0/+4
| | | | Notes: svn path=/head/; revision=350612
* Fix heimdal.Akinori MUSHA2014-04-086-1201/+1237
| | | | | | | | | | | | | - Resolve conflict with security/openssl regarding manual pages. - Add a couple of patches from the upstream. - Remove NO_STAGE and delete obsolete MLINKS while at it. PR: 177397 Submitted by: Shane Ambler <FreeBSD@ShaneWare.Biz> Approved by: (MAINTAINER timeout) Notes: svn path=/head/; revision=350606
* Add more information for OpenSSL bugBryan Drewery2014-04-081-0/+9
| | | | Notes: svn path=/head/; revision=350560
* - Sort referencesBryan Drewery2014-04-081-2/+3
| | | | | | | - Add link to heartbleed.com that has a lot of useful information Notes: svn path=/head/; revision=350559
* - Document Openssl vulnerabilitiesBryan Drewery2014-04-071-0/+36
| | | | | | | | | | Security: CVE-2014-0160 Security: CVE-2014-0076 Security: https://www.openssl.org/news/secadv_20140407.txt MFH: 2014Q2 Notes: svn path=/head/; revision=350550
* - Update to 1.0.1gBryan Drewery2014-04-072-12/+12
| | | | | | | | | | | | | | | | Changes: - Fix for CVE-2014-0160 - Add TLS padding extension workaround for broken servers. - Fix for CVE-2014-0076 Security: CVE-2014-0160 Security: CVE-2014-0076 Security: https://www.openssl.org/news/secadv_20140407.txt With hat: portmgr MFH: 2014Q2 Notes: svn path=/head/; revision=350548
* Support stageBaptiste Daroussin2014-04-072-12/+9
| | | | Notes: svn path=/head/; revision=350509
* Support stageBaptiste Daroussin2014-04-072-12/+8
| | | | | | | | USES=libtool strip binaries Notes: svn path=/head/; revision=350508
* Support stageBaptiste Daroussin2014-04-072-20/+15
| | | | Notes: svn path=/head/; revision=350507
* Support stageBaptiste Daroussin2014-04-072-21/+15
| | | | Notes: svn path=/head/; revision=350506
* Distfile rerolled with a license file and some examplesAntoine Brodin2014-04-062-3/+8
| | | | Notes: svn path=/head/; revision=350421
* Horde package update:Martin Matuska2014-04-054-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | | Horde_ActiveSync 2.13.3 -> 2.13.4 Horde_Alarm 2.1.0 -> 2.2.0 Horde_Argv 2.0.7 -> 2.0.8 Horde_Auth 2.1.2 -> 2.1.3 Horde_Cache 2.4.1 -> 2.4.2 Horde_Cli 2.0.4 -> 2.0.5 Horde_Crypt 2.4.1 -> 2.4.2 Horde_Date 2.0.8 -> 2.0.9 Horde_Db 2.1.0 -> 2.1.1 Horde_Form 2.0.7 -> 2.0.8 Horde_HashTable 1.1.1 -> 1.1.2 Horde_History 2.2.1 -> 2.3.0 Horde_Http 2.0.5 -> 2.1.0 Horde_Image 2.0.5 -> 2.0.6 Horde_Imap_Client 2.19.1 -> 2.19.2 Horde_ListHeaders 1.1.0 -> 1.1.1 Horde_Mail 2.1.5 -> 2.1.6 Horde_Smtp 1.4.0 -> 1.4.1 Horde_TimeZone 1.0.5 -> 1.0.6 Notes: svn path=/head/; revision=350264
* - add stage supportOlli Hauer2014-04-057-114/+75
| | | | | | | | | | | | | | - use PYDISTUTILS_AUTOPLIST - rename patch files to reflect `make makepatch' naming - fix possible DOS reported on: http://seclists.org/oss-sec/2013/q4/535 PR: ports/185141 Submitted by: ohauer Approved by: maintainer timeout Notes: svn path=/head/; revision=350260
* Move message to pkg-messageBryan Drewery2014-04-053-2/+13
| | | | Notes: svn path=/head/; revision=350193
* Add missed warning from r350191Bryan Drewery2014-04-052-0/+2
| | | | Notes: svn path=/head/; revision=350192
* - Update to 0.2.18 [1]Bryan Drewery2014-04-052-45/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Remove need for npm at install time [2] - No longer bundle deps [2] - Add big warning on how little this project should be trusted 4 versions since previous 0.2.0 had security fixes, some of which were regresions from the chain. Non-security-marked fixes not listed here, see changelog [1]. 0.2.4 (2014-03-29) SECURITY NOTICE This release was flawed since it did not pull it dependencies with it. 0.2.7 (2014-03-29) SECURITY BUGFIX The previous releases, v0.2.5 and v0.2.6, had broken verification for website proofs. Fixed with an upgrade to proofs v0.0.15 0.2.13 (2014-04-01) SECURITY BUGFIX Don't show the GPG script used to generated keys when specifying -d, since it contains the users's password 0.2.14 (2014-04-02) SECURITY BUGFIX Sanity-check the server's proof text, in case it's cheating. Check to make sure that the only plausible proof is the one that we made, and that others aren't coming along for the ride. This check comes via keybase-proofs @v0.0.20. Changelog [1]: https://github.com/keybase/node-client/compare/v0.2.0...v0.2.18#diff-2 Submitted by: thierry [2] Notes: svn path=/head/; revision=350191
* - Update to signing-party 1.1.6Johan van Selst2014-04-043-13/+6
| | | | | | | - Disable pgpring due to too many porting issues Notes: svn path=/head/; revision=350159
* Fix build on versions of FreeBSD that don't have gcc as the defaultSteven Kreuzer2014-04-042-0/+12
| | | | | | | compiler, remove the flag schedule-insns2 passed to cc Notes: svn path=/head/; revision=350132
* Support stageBaptiste Daroussin2014-04-041-21/+12
| | | | | | | Simplify a bit Notes: svn path=/head/; revision=350122
* Fix SoftHSM's umask handling (upstream patch)Mathieu Arnold2014-04-042-0/+120
| | | | | | | | | Approved by: maintainer Obtained from: https://github.com/opendnssec/SoftHSMv1/pull/11 Sponsored by: Absolight Notes: svn path=/head/; revision=350089
* Support stagingEmanuel Haupt2014-04-041-6/+5
| | | | Notes: svn path=/head/; revision=350073
* - Support stagingEmanuel Haupt2014-04-044-19/+16
| | | | | | | | | - Define DOCS option - New LIB_DEPENDS definition - Modernize Notes: svn path=/head/; revision=350071
* - Fix shebangPhilippe Audeoud2014-04-041-15/+8
| | | | | | | | | | | | | - Convert to new options helper - Add BUILD_DEPENDS - Remove regression-test: (in perl5.mk already) - Simplify Makefile - Bump PORTREVISION for package change Submitted by: sunpoet@ Notes: svn path=/head/; revision=350066
* Remove expired ports:Rene Ladan2014-04-0319-334/+0
| | | | | | | | | | | | | | | | | | | 2014-04-03 www/aolserver: abandonware, messing up on clusters 2014-04-03 www/openacs-dotlrn: Depends on expiring www/aolserver 2014-04-03 www/openacs: Depends on expiring www/aolserver 2014-04-03 security/aolserver-nsmcrypt: abandonware, messing up on clusters 2014-04-03 www/aolserver-xotcl: abandonware, messing up on clusters 2014-04-03 graphics/aolserver-nsgd: abandonware, messing up on clusters 2014-04-03 security/aolserver-nsencrypt: abandonware, messing up on clusters 2014-04-03 security/aolserver-nsmhash: abandonware, messing up on clusters 2014-04-03 archivers/aolserver-nszlib: abandonware, messing up on clusters 2014-04-03 security/aolserver-nsopenssl: abandonware, messing up on clusters 2014-04-03 databases/aolserver-nspostgres: abandonware, messing up on clusters 2014-04-03 databases/aolserver-nsmysql: abandonware, messing up on clusters 2014-04-03 security/aolserver-nssha1: abandonware, messing up on clusters Notes: svn path=/head/; revision=350055
* New OTRS vulnerabilityCarlo Strub2014-04-031-0/+29
| | | | | | | Security: CVE-2014-2554 Notes: svn path=/head/; revision=350005
* Add CVE-2014-2525 which affects libyaml.Akinori MUSHA2014-04-031-0/+39
| | | | Notes: svn path=/head/; revision=349992
* KDE/FreeBSD team presents KDE SC 4.12.4 and KDE Workspace 4.11.8!Max Brazhnikov2014-04-034-8/+6
| | | | | | | | | | | | | | | | | | | | | | | KDE ports: - Convert to USES=tar:xz devel/p5-perlqt, multimedia/kdemultimedia4-ffmpegthumbs: - Convert LIB_DEPENDS to new style devel/p5-perlqt, devel/p5-perlkde: - Don't remove directories installed by perl port net/kdnssd: - moved to net/zeroconf-ioslave (renamed upstream) x11/kdelibs4: - Clean up non-standard shared mime files and directories after deinstall The area51 repository features commits by Alonso Schaich <alonsoschaich@fastmail.fm> and makc. Notes: svn path=/head/; revision=349983
* - Update to 1.975Philippe Audeoud2014-04-032-3/+3
| | | | | | | Sponsored by: Orange Business Services Notes: svn path=/head/; revision=349980
* Switch to USES=tar for my portsGanael LAPLANCHE2014-04-031-1/+1
| | | | Notes: svn path=/head/; revision=349973
* - Hide libdane support behind option LIBDANEBryan Drewery2014-04-022-9/+12
| | | | | | | | | | | | - Disable by default as it ends up pulling in openssl via unbound, which is odd for gnutls3 to do. PR: ports/188184 Submitted by: Lawrence "The Dreamer" Chen <beastie@tardisi.com> (based on) Discussed with: wg Notes: svn path=/head/; revision=349899
* Remove expired ports:Rene Ladan2014-04-016-815/+0
| | | | | | | | | | | | | | | | 2014-02-27 devel/hyena: Broken for more than 6 month 2014-04-01 print/pdfmod: Depends on expired devel/hyena, unstaged, uses old standards 2014-04-01 security/gnutls-devel: Stale, broken and vulnerable 2014-04-01 sysutils/epylog: distfiles no longer fetchable 2014-04-01 japanese/Wnn6: Unmaintained, interactive and restricted 2014-04-01 japanese/srd-fpw: Unmaintained, interactive and restricted 2014-04-01 japanese/mypaedia-fpw: Unmaintained, interactive and restricted 2014-04-01 news/dnews: Unmaintained, interactive and restricted 2014-04-01 devel/adasdl: Ancient, does not build on amd64; use devel/sdl_gnat instead 2014-04-01 lang/gnat: The Ada framework is based on lang/gcc-aux, use it instead Notes: svn path=/head/; revision=349892
* Bring back from the dead; take ownershipMark Felder2014-04-018-0/+185
| | | | | | | Distfile is hosted in my public_distfiles Notes: svn path=/head/; revision=349891
* Finish stage supportAntoine Brodin2014-04-012-5/+3
| | | | | | | | Reported by: poudriere With hat: portmgr Notes: svn path=/head/; revision=349875
* - USES=libtool tar:bzip2.Tijl Coosemans2014-04-014-45/+37
| | | | | | | | | | | | | - Enable asm on FreeBSD/i386 >= 10.0. - Enable asm on FreeBSD/amd64. [1] - Use MAKE_CMD instead of MAKE to run regression tests. PR: ports/187441 Submitted by: Stoyan Dimov <pr.freebsd.org@registrations.systeem.com> [1] Approved by: maintainer timeout (2 weeks) Notes: svn path=/head/; revision=349852
* Fix all mod_php entries.Alex Dupre2014-04-011-9/+12
| | | | | | | Please don't use the range <range><ge>0</ge></range>. Notes: svn path=/head/; revision=349827
* Update to 2.1.0.2Antoine Brodin2014-03-312-3/+3
| | | | Notes: svn path=/head/; revision=349784
* - add missing LIB_DEPENDS for forbidden option GMPDirk Meyer2014-03-301-0/+2
| | | | Notes: svn path=/head/; revision=349669
* Update to 0.2.7Carlo Strub2014-03-303-4/+25
| | | | Notes: svn path=/head/; revision=349641
* Update to version 1.777Pawel Pekala2014-03-292-3/+3
| | | | | | | | PR: ports/188021 Submitted by: maintainer Notes: svn path=/head/; revision=349565
* Add an entry for CVE-2014-2386Lars Engels2014-03-291-0/+26
| | | | Notes: svn path=/head/; revision=349498
* - Update to 0.14Sunpoet Po-Chuan Hsieh2014-03-292-3/+3
| | | | | | | Changes: http://search.cpan.org/dist/IO-Async-SSL/Changes Notes: svn path=/head/; revision=349494
* Add an entry for CVE-2014-2270, and correct the indentationBrendan Fabeny2014-03-291-3/+31
| | | | | | | in the entry for CVE-2014-1943 Notes: svn path=/head/; revision=349486
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-27 22:25:28 +0000