aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - Reset MAINTAINER on ports with addresses that have unrecoverable bounces.Ryan Steinmetz2012-12-061-1/+1
| | | | | | | | Reported by: portscout Feature safe: yes Notes: svn path=/head/; revision=308390
* Add missing patch.Kevin Lo2012-12-061-0/+14
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308359
* - Fix recent vulnerability entry for www/tomcat[67]Ryan Steinmetz2012-12-051-1/+1
| | | | | | | | Reported by: Victor Balada Diaz <victor@bsdes.net> Feature safe: yes Notes: svn path=/head/; revision=308355
* - Update mirror site for HPN patchBryan Drewery2012-12-051-1/+1
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308352
* - Document recent vulnerabilities in www/tomcat6 and www/tomcat7Ryan Steinmetz2012-12-051-0/+43
| | | | | | | | Requested by: Victor Balada Diaz <victor@bsdes.net> Feature safe: yes Notes: svn path=/head/; revision=308343
* - update to 1.10, trim historical headerJason Helfman2012-12-053-24/+21
| | | | | | | | | | | | - adopt optionsNG and general cleanup PR: 174137 (based on) Submitted by: maintainer, dev2@heesakkers.info Approved by: maintainer Feature safe: yes Notes: svn path=/head/; revision=308341
* Update to 0.13.0 release.Alex Dupre2012-12-055-36/+78
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308321
* Update to the latest patch level from ISC:Erwin Lansing2012-12-051-0/+42
| | | | | | | | | | | | | | | | BIND 9 nameservers using the DNS64 IPv6 transition mechanism are vulnerable to a software defect that allows a crafted query to crash the server with a REQUIRE assertion failure. Remote exploitation of this defect can be achieved without extensive effort, resulting in a denial-of-service (DoS) vector against affected servers. Security: 2892a8e2-3d68-11e2-8e01-0800273fe665 CVE-2012-5688 Feature safe: yes Notes: svn path=/head/; revision=308317
* - Update to 2.33Sunpoet Po-Chuan Hsieh2012-12-052-8/+4
| | | | | | | | | | - Cleanup Makefile header Changes: http://search.cpan.org/dist/App-Genpass/Changes Feature safe: yes Notes: svn path=/head/; revision=308291
* - Reset MAINTAINER due to unrecoverable bounceRyan Steinmetz2012-12-041-1/+1
| | | | | | | | Reported by: portscout Feature safe: yes Notes: svn path=/head/; revision=308272
* - Update to 2.9.4Ryan Steinmetz2012-12-043-5/+8
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308246
* - Update to 1.80Philippe Audeoud2012-12-042-3/+3
| | | | | | | | | - Changelog: http://cpansearch.perl.org/src/SULLR/IO-Socket-SSL-1.80/Changes Feature safe: yes Notes: svn path=/head/; revision=308225
* - update to 1.3.4Ruslan Makhmatkhanov2012-12-042-10/+6
| | | | | | | | | | | | | while here: - trim Makefile header - remove indefinite article from COMMENT PR: 174095 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Feature safe: yes Notes: svn path=/head/; revision=308209
* Add URL for recent bogofilter heap vuln', CVE-2012-5468, aka. vuln vid=Matthias Andree2012-12-031-0/+1
| | | | | | | | | f524d8e0-3d83-11e2-807a-080027ef73ec Feature safe: yes Notes: svn path=/head/; revision=308178
* - revert PORTDOCS change from r308105 - it made this port not DOCS-safeRuslan Makhmatkhanov2012-12-032-8/+1
| | | | | | | | Reported by: sunpoet Feature safe: yes Notes: svn path=/head/; revision=308173
* Update bogofilter to new upstream release 1.2.3.Matthias Andree2012-12-031-0/+25
| | | | | | | | | | | | Security update to fix a heap corruption bug with invalid base64 input, reported and fixed by Julius Plenz, FU Berlin, Germany. Feature safe: yes Security: CVE-2012-5468 Security: f524d8e0-3d83-11e2-807a-080027ef73ec Notes: svn path=/head/; revision=308171
* - set explicit value for StartupNotify in DESKTOP_ENTRIESRuslan Makhmatkhanov2012-12-031-1/+1
| | | | | | | | Suggested by: danfe Feature safe: yes Notes: svn path=/head/; revision=308124
* Update to 2.1.Kevin Lo2012-12-033-9/+43
| | | | | | | | | | Feature safe: yes PR: ports/174016 Submitted by: Paul Schmehl <pauls at utdallas dot edu> Notes: svn path=/head/; revision=308122
* - Update to 1.4.3Sofian Brabez2012-12-022-4/+3
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308114
* - pass maintainership to submitterRuslan Makhmatkhanov2012-12-024-16/+26
| | | | | | | | | | | | | | | | | - add license (GPLv2) - add desktop icon and make .desktop file - update WWW while here: - trim Makefile header - remove Author filed from pkg-descr PR: 173978 Submitted by: nemysis <nemysis@gmx.ch> Feature safe: yes Notes: svn path=/head/; revision=308106
* - update to 1.11Ruslan Makhmatkhanov2012-12-026-48/+90
| | | | | | | | | | | - add new port options PR: 174024 Submitted by: Paul Schmehl <pauls@utdallas.edu> (maintainer) Feature safe: yes Notes: svn path=/head/; revision=308105
* - fix wording of "RUN_DEPENDS"Ruslan Makhmatkhanov2012-12-023-4/+4
| | | | | | | | | | | | - use INSTALL_DATA to not set execution bit for plugins - remove trailing whitespace in pkg-descr, while here PR: 174047 Submitted by: antoine (maintainer) Feature safe: yes Notes: svn path=/head/; revision=308102
* - correct displaying of pkg-messageRuslan Makhmatkhanov2012-12-023-10/+8
| | | | | | | | | | | | | | | | | | while here: - use one space in Created by: - some whitespace aligning - correct python versions in USE_PYTHON - use PYDISTUTILS_PKGVERSION to set correct package version instead of crafting full PYDISTUTILS_EGGINFO - remove trailin whitespace in pkg-descr and unneded newlines in pkg-message PR: 174044 Submitted by: Sayetsky Anton <vsjcfm@gmail.com> Approved by: Christoph Theis <theis@gmx.at> (maintainer) Feature safe: yes Notes: svn path=/head/; revision=308095
* - Update to version 6.01Armin Pirkovitsch2012-12-013-156/+138
| | | | | | | | | | | | | | - Add MASTER_SITES - Add LICENSE PR: ports/170169 Submitted by: KATO Tsuguru <tkato432 _at_ yahoo.com> Chris Petrik <c.petrik.sosa _at_ gmail.com> (maintainer) Approved by: beat (mentor) Feature safe: yes Notes: svn path=/head/; revision=308051
* - Update to version 3.3Armin Pirkovitsch2012-11-304-52/+97
| | | | | | | | | | | | | | - Update MASTER_SITES - Add LICENSE - Convert to optionsng PR: ports/170168 Submitted by: KATO Tsuguru <tkato432 _at_ yahoo.com> Approved by: beat (mentor) Feature safe: yes Notes: svn path=/head/; revision=308035
* Fix compilation with clang on headBaptiste Daroussin2012-11-301-13/+2
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=308003
* Document vulnerabilities in www/chromium < 23.0.1271.95Rene Ladan2012-11-301-0/+30
| | | | | | | | Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates Feature safe: yes Notes: svn path=/head/; revision=308000
* The Volatility Framework is a completely open collection of tools, implementedSofian Brabez2012-11-295-0/+695
| | | | | | | | | | | | | | in Python under the GNU General Public License, for the extraction of digital artifacts from volatile memory (RAM) samples. WWW: http://code.google.com/p/volatility PR: ports/172910 Submitted by: antoine@FreeBSD.org Feature safe: yes Notes: svn path=/head/; revision=307979
* www/yahoo-uiOlli Hauer2012-11-291-2/+2
| | | | | | | | | | | | | | - fix CVE-2012-5881 security/vuxml - adjust version (we have only 2.8.2 in the tree) Feature safe: yes Approved by: glarkin (maintainer) explicit Notes: svn path=/head/; revision=307978
* Supplemental plugins for Harlan Carvey's RegRipper.Pawel Pekala2012-11-295-0/+276
| | | | | | | | | | | WWW: http://code.google.com/p/regripperplugins/ PR: ports/172900 Submitted by: antoine@FreeBSD.org Feature safe: yes Notes: svn path=/head/; revision=307975
* RegRipper is an open source tool, written in Perl, for extracting/parsingPawel Pekala2012-11-294-0/+41
| | | | | | | | | | | | | | information (keys, values, data) from the Registry and presenting it for analysis. WWW: http://code.google.com/p/regripper/ PR: ports/172899 Submitted by: antoine@FreeBSD.org Feature safe: yes Notes: svn path=/head/; revision=307974
* - Update to 0.46Frederic Culot2012-11-292-10/+5
| | | | | | | | Changes: http://search.cpan.org/dist/GnuPG-Interface/ChangeLog Feature safe: yes Notes: svn path=/head/; revision=307971
* Fix date in yahoo-ui entry.Wesley Shields2012-11-281-1/+2
| | | | | | | | Noticed by: dvl@ Feature safe: yes Notes: svn path=/head/; revision=307907
* 2012-11-28 editors/glimmer: Depends on the expired gtkglarea through py-gtkBaptiste Daroussin2012-11-2818-680/+0
| | | | | | | | | | | | | 2012-11-26 palm/txt2pdbdoc: No more public distfiles 2012-11-26 sysutils/xloadface: No more public distfiles 2012-11-26 shells/gscommander: Abandonware 2012-11-26 security/saferpay: No more public distfiles 2012-11-26 x11-wm/qvwm: No more public distfiles Feature safe: yes Notes: svn path=/head/; revision=307888
* Update to 2.0.3.Raphael Kubo da Costa2012-11-2720-555/+68
| | | | | | | | | | | | | | This new version includes a migration from Perl to C and support for ipfw and pf. While here, trim the Makefile headers. PR: ports/171951 Submitted by: Sean Greven <sean.greven@gmail.com> (maintainer) Feature safe: yes Notes: svn path=/head/; revision=307863
* - document www/yahoo-ui security issue and mark port forbidden [1]Olli Hauer2012-11-271-1/+38
| | | | | | | | | | | | | | | | | pet portlint (maintainer is already notified) - adjust CVE entries for bugzilla (CVE-2012-5475 was rejected) [2] Feature safe: yes Security: CVE-2012-5881 [1][2] CVE-2012-5882 [1][2] CVE-2012-5883 [2] Approved by: glarkin (implicit) [1] Notes: svn path=/head/; revision=307861
* Describe new vulnerabilities in www/chromium < 23.0.1271.91Rene Ladan2012-11-271-0/+42
| | | | | | | | Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates Feature safe: yes Notes: svn path=/head/; revision=307828
* - Update to 0.6.0TAKATSU Tomonari2012-11-263-10/+5
| | | | | | | | | | - Convert to new Makefile header - Trim WWW: line in pkg-descr Feature safe: yes Notes: svn path=/head/; revision=307808
* - Update to 1.2.3Jase Thew2012-11-265-33/+38
| | | | | | | | | | | - Assume maintainership Changes: https://raw.github.com/polarssl/polarssl/fb1ba781b398d39f4444515381babcc9e5a8dcd2/ChangeLog Feature safe: yes Notes: svn path=/head/; revision=307794
* Update to 5.74.Anton Berezin2012-11-262-3/+3
| | | | | | | | | Changes: http://cpansearch.perl.org/src/MSHELOR/Digest-SHA-5.74/Changes Feature safe: yes Notes: svn path=/head/; revision=307781
* Update to 1.5.3 release.Alex Dupre2012-11-262-10/+5
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=307771
* - Update backports patch to 20121114Florian Smeets2012-11-251-7/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Bump PORTREVISION Changes: - CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function Secuity 3761df02-0f9c-11e0-becc-0022156e8794 fixed by check in fopen functions for strlen(filename) != filename_len - CVE-2012-4388 The sapi_header_op function in main/SAPI.c does not properly determine a pointer during checks for %0D sequences (aka carriage return characters), which allows remote attackers to bypass an HTTP response-splitting protection mechanism via a crafted URL, this vulnerability exists because of an incorrect fix for CVE-2011-1398. - Timezone database updated to version 2012.9 (2012i) PR: ports/173685 Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com> Approved by: maintainer Feature safe: yes Notes: svn path=/head/; revision=307747
* Add entries for the following advisories:Wesley Shields2012-11-251-0/+91
| | | | | | | | | | | FreeBSD-SA-12:08.linux FreeBSD-SA-12:07.hostapd FreeBSD-SA-12:06.bind Feature safe: yes Notes: svn path=/head/; revision=307733
* - Update to 0.8.7.1Steve Wills2012-11-244-16/+37
| | | | | | | | | | | | | | | | - Fix installation so it doesn't overwrite your config files every time you upgrade the port - Fix some space/tab issues to make portlint happy - Use dirrmtry in a few places because some people have their own custom filters, actions, etc. PR: ports/171708 Submitted by: Mark Felder <feld@feld.me> Approved by: Christoph Theis <theis@gmx.at> (maintainer) Feature safe: yes Notes: svn path=/head/; revision=307702
* - Remove hardcoded dependency on security/gpg. Instead, add OPTIONS to allowJase Thew2012-11-231-2/+18
| | | | | | | | | | | | choice of GnuPG version. PR: ports/172323 Approved by: jadawin (perl@) Feature safe: yes Notes: svn path=/head/; revision=307682
* - opera -- execution of arbitrary codeDirk Meyer2012-11-221-0/+34
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=307666
* update to 0.2.4.6-alphaBrendan Fabeny2012-11-222-8/+11
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=307645
* Update to 3.0.8, unbreak with utmpx.David Thiel2012-11-213-4/+19
| | | | | | | Feature safe: Yes Notes: svn path=/head/; revision=307624
* Document new vulnerability in www/lighttpd 1.4.31Martin Matuska2012-11-211-0/+32
| | | | | | | Feature safe: yes Notes: svn path=/head/; revision=307616
* - Update firefox and thunderbird to 17.0Florian Smeets2012-11-201-0/+119
| | | | | | | | | | | | | | | | | | - Update seamonkey to 2.14 - Update ESR ports and libxul to 10.0.11 - support more h264 codecs when using GSTREAMER with YouTube - Unbreak firefox-esr, thunderbird-esr and libxul on head >= 1000024 [1] - Buildsystem is not python 3 aware, use python up to 2.7 [2] PR: ports/173679 [1] Submitted by: swills [1], demon [2] In collaboration with: Jan Beich <jbeich@tormail.org> Security: d23119df-335d-11e2-b64c-c8600054b392 Approved by: portmgr (beat) Feature safe: yes Notes: svn path=/head/; revision=307606
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-28 19:11:31 +0000