aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Set NO_ARCH for remaining rubygem-* ports with no arch dependent filesPhilip M. Gollucci2015-07-0217-0/+33
| | | | | | | | | | Obtained from: DEVELOPER_MODE With Hat: ruby@ Sponsored by: RideCharge Inc / Curb Notes: svn path=/head/; revision=391169
* - Update to 0.20Sunpoet Po-Chuan Hsieh2015-07-022-5/+4
| | | | | | | Changes: http://search.cpan.org/dist/Unix-Passwd-File/Changes Notes: svn path=/head/; revision=391155
* - Upgrade to 2.1.6 (minor bugfixes).Jun Kuriyama2015-07-022-5/+5
| | | | | | | Announce: https://lists.gnupg.org/pipermail/gnupg-announce/2015q3/000370.html Notes: svn path=/head/; revision=391147
* security/sslsplit: update to 0.4.11Steve Wills2015-07-013-34/+3
| | | | Notes: svn path=/head/; revision=391070
* Record libxml2 vulnabilityKoop Mast2015-07-011-0/+30
| | | | | | | Security: CVE-2015-1819 Notes: svn path=/head/; revision=391063
* Correct version range for netpbm CVE-2015-3885Mark Felder2015-07-011-3/+2
| | | | Notes: svn path=/head/; revision=391057
* Upgrade to 0.024.Vanilla I. Shu2015-07-012-4/+3
| | | | | | | Differential Revision: Notes: svn path=/head/; revision=391026
* Document games/wesnoth authentication information disclosure vulnerability.Xin LI2015-07-011-0/+40
| | | | | | | | PR: 201105 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=391017
* - Document CVE-2015-3258 (cups-filters buffer overflow vulnerability)Dmitry Marakasov2015-06-301-0/+38
| | | | | | | | | PR: 201134 Submitted by: cyberbotx@cyberbotx.com Differential Revision: Notes: svn path=/head/; revision=391016
* Document ntp remote control message DoS vulnerability.Xin LI2015-06-301-0/+40
| | | | Notes: svn path=/head/; revision=391006
* security/rubygem-gssapi: update to 1.2.0Michael Moll2015-06-303-5/+8
| | | | | | | | Approved by: swills (mentor), Joe Benden (maintainer, timeout) Differential Revision: https://reviews.freebsd.org/D2916 Notes: svn path=/head/; revision=391000
* - Update to 0.8.1Dmitry Marakasov2015-06-302-10/+10
| | | | | | | | | PR: 201179 Submitted by: tkato432@yahoo.com Differential Revision: Notes: svn path=/head/; revision=390994
* remove BROKEN. Port now builds with django16Dan Langille2015-06-301-2/+0
| | | | | | | Approved by: wg (mentor) Notes: svn path=/head/; revision=390981
* Remove expired ports:Rene Ladan2015-06-304-33/+0
| | | | | | | | | | 2015-06-30 devel/rubygem-mash: Deprecated by upstream. Use devel/rubygem-hashie instead 2015-06-30 net/rubygem-bunny060: Use net/rubygem-bunny instead 2015-06-30 security/rubygem-hmac: Duplicate of security/rubygem-ruby-hmac 2015-06-30 www/ruby-amazon: Rendered obsolete by upstream since Amazon shut down access to AWS API v3 (2008-03-31). Use www/ruby-aws instead Notes: svn path=/head/; revision=390973
* security/py-crits must use django v1.6 and will not work with v1.8Dan Langille2015-06-301-2/+3
| | | | | | | | | | | | | | | | Two dependencies bring in www/py-django so I have created two new slave ports which use www/py-django16 * devel/py-django-tastypie-mongoengine allowed you to select django 1.6 or 1.8 in the options It now uses only 1.8 * add slave port devel/py-django16-tastypie-mongoengine which uses django 1.6 * www/py-django-tastypie now sets RUN_DEPENDS only if not already set * add slave www/py-django16-tastypie which uses django 1.6 Approved by: mat (mentor) Differential Revision: https://reviews.freebsd.org/D2913 Notes: svn path=/head/; revision=390966
* Update to 3.4.0.Wesley Shields2015-06-302-3/+3
| | | | Notes: svn path=/head/; revision=390960
* Update to 3.4.0.Wesley Shields2015-06-294-18/+5
| | | | Notes: svn path=/head/; revision=390935
* After r390893, chmod u+w/u-w for stripping perl XS modules is unnecessary,Adam Weinberger2015-06-293-6/+0
| | | | | | | | | and in fact now leads to incorrect permissions. Remove all instances of it from perl@ ports. Notes: svn path=/head/; revision=390918
* security/vault: add missing line to rc scriptSteve Wills2015-06-292-0/+3
| | | | Notes: svn path=/head/; revision=390897
* - Add NO_ARCHSunpoet Po-Chuan Hsieh2015-06-281-0/+1
| | | | Notes: svn path=/head/; revision=390856
* - Update to 1.70Sunpoet Po-Chuan Hsieh2015-06-282-3/+3
| | | | | | | Changes: http://search.cpan.org/dist/Net-SSLeay/Changes Notes: svn path=/head/; revision=390770
* - Mark ONLY_FOR_ARCHS: uses x86 assemblyDmitry Marakasov2015-06-261-6/+5
| | | | | | | - Optionize EXAMPLES Notes: svn path=/head/; revision=390669
* - Make xsel run dependency optional - it makes clipboard pastingPawel Pekala2015-06-261-2/+11
| | | | | | | | | | | | | not working under some conditions [1] - Make xdotool also optional - Add NO_ARCH PR: 200931 [1] Submitted by: Sascha Holzleiter <sascha@root-login.org> [1] Approved by: maintainer [1] Notes: svn path=/head/; revision=390665
* Document qemu pcnet guest to host escape vulnerability - CVE-2015-3209Juergen Lock2015-06-261-0/+36
| | | | | | | | | PR: 201064 Submitted by: koobs Security: https://vuxml.FreeBSD.org/freebsd/acd5d037-1c33-11e5-be9c-6805ca1d3bb1.html Notes: svn path=/head/; revision=390663
* security/clambc is not jobs safe.John Marino2015-06-261-0/+2
| | | | | | | | | | | | This has failed on me at least twice recently. Here's the last fail: Assembler messages: Fatal error: llvm[3]: Compiling Mangler.cpp for Release build can't create /wrkdirs/security/clambc/work/clamav-bytecode-compiler- clambc-0.98.5rc1/obj/lib/Target/ClamBC/Release/version.o: No such file or directory Notes: svn path=/head/; revision=390661
* security/vault: create portSteve Wills2015-06-266-0/+227
| | | | | | | | | | | | Vault is a tool for securely accessing secrets. A secret is anything that you want to tightly control access to, such as API keys, passwords, certificates, and more. Vault provides a unified interface to any secret, while providing tight access control and recording a detailed audit log. WWW: https://vaultproject.io/ Notes: svn path=/head/; revision=390652
* Document CVE-2014-3120, CVE-2014-6439, CVE-2015-1427, CVE-2015-3337,Xin LI2015-06-261-0/+210
| | | | | | | | | | and CVE-2015-4165 (various Elasticsearch vulnerabilities). PR: ports/201008 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=390615
* - Mark BROKEN on 9.x:Dmitry Marakasov2015-06-251-0/+2
| | | | | | | | | | | | | | | /usr/bin/make all-recursive Making all in po Error expanding embedded variable. *** [all-recursive] Error code 1 - Fix plist for disabled NLS case Approved by: portmgr blanket Submitted by: pkg-fallout Notes: svn path=/head/; revision=390606
* security/afl: Update to 1.83bXin LI2015-06-252-4/+4
| | | | | | | | | | | While at it, reset maintainer to ports@ as the port now contains LICENSE goo whose meaning remains a mystery. PR: 201107 Submitted by: Fabian Keil <fk fabiankeil de> (maintainer) Notes: svn path=/head/; revision=390593
* - Mark BROKEN on 9.x:Dmitry Marakasov2015-06-251-0/+2
| | | | | | | | | | | config.h:249: error: expected identifier or '(' before '/' token config.h:249: error: stray '#' in program Approved by: portmgr blanket Submitted by: pkg-fallout Notes: svn path=/head/; revision=390570
* - Mark BROKEN on 9.x:Dmitry Marakasov2015-06-251-0/+2
| | | | | | | | | | aead.cc:84:32: error: 'EVP_aes_128_ctr' was not declared in this scope Approved by: portmgr blanket Submitted by: pkg-fallout Notes: svn path=/head/; revision=390569
* security/py-libnacl: Update to 1.4.3Kubilay Kocak2015-06-253-4/+17
| | | | | | | | | | | | | | | | | | - Update to 1.4.3 - Patch setup.py so test command is supported - Add regression-test target Changes: https://libnacl.readthedocs.org/en/latest/topics/releases/1.4.3.html Based on: PR: 200830 Submitted by: Christer Edwards <christer dot edwards gmail com> Notes: svn path=/head/; revision=390533
* Split CVE-2015-4152 to its own entry as the affected port is logstash only.Xin LI2015-06-241-11/+75
| | | | | | | | | | While there also document CVE-2014-4326 (already fixed) for logstash. PR: ports/201001 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=390519
* Add entry for logstash-forwarder/logstash.Xin LI2015-06-241-0/+53
| | | | | | | | PR: ports/201065 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=390516
* Support changed ETCDIR in pkg-plistBryan Drewery2015-06-242-7/+5
| | | | Notes: svn path=/head/; revision=390514
* Aggressively mark more consumers of bundled dcraw as vulnerableJan Beich2015-06-241-2/+47
| | | | | | | | ljpeg_start() originates from dcraw, no need to list every package with copy of it at the expense of readability. Notes: svn path=/head/; revision=390513
* Allow user overriding ETCDIRBryan Drewery2015-06-241-1/+2
| | | | Notes: svn path=/head/; revision=390512
* Update to 20150624 snapshotBryan Drewery2015-06-242-3/+3
| | | | Notes: svn path=/head/; revision=390509
* - Update to 1.4.11Sunpoet Po-Chuan Hsieh2015-06-242-5/+10
| | | | | | | | | - Add NO_ARCH Changes: https://github.com/google/oauth2client/blob/master/CHANGELOG.md Notes: svn path=/head/; revision=390503
* - Update to 1.80bDmitry Marakasov2015-06-243-522/+16
| | | | | | | | | | - While here, add LICENSE PR: 201091 Submitted by: fk@fabiankeil.de (maintainer) Notes: svn path=/head/; revision=390496
* Convert all p5-Test-use-ok dependencies to p5-Test-Simple, but only onAdam Weinberger2015-06-241-3/+8
| | | | | | | | | perl < 5.22. For www/p5-Catalyst-Controller-BindLex, change it from a BUILD/RUN depend to TEST, as it is only used for the test target, and bump PORTREVISION on that port. Notes: svn path=/head/; revision=390494
* Document linux-*-flashplugin11 CVE.Johannes Jost Meixner2015-06-241-0/+41
| | | | | | | | | | | Reported by: kwm Reviewed by: kwm Security: d02f6b01-1a3f-11e5-8bd6-c485083ca99c Security: CVE-2015-3113 Sponsored by: Perceivon Hosting Inc. Notes: svn path=/head/; revision=390473
* - Add LICENSESunpoet Po-Chuan Hsieh2015-06-231-0/+2
| | | | | | | Approved by: portmgr (blanket) Notes: svn path=/head/; revision=390450
* Remove expired portRuslan Makhmatkhanov2015-06-234-26/+0
| | | | | | | | | | Functionality of py-backports.ssl_match_hostname is available in Python standard library as ssl.match_hostname() since Python 2.7.9 [1]. [1] https://docs.python.org/2.7/library/ssl.html#ssl.match_hostname Notes: svn path=/head/; revision=390442
* - Add NO_ARCHSunpoet Po-Chuan Hsieh2015-06-231-0/+1
| | | | Notes: svn path=/head/; revision=390391
* - Update to 1.2.1Sunpoet Po-Chuan Hsieh2015-06-232-3/+4
| | | | | | | | | - Add NO_ARCH Changes: https://github.com/toyokazu/omniauth-shibboleth/commits/master Notes: svn path=/head/; revision=390385
* Fix entry date.Xin LI2015-06-231-1/+1
| | | | Notes: svn path=/head/; revision=390348
* Document rubygem-bson DoS and possible injection vulnerability.Xin LI2015-06-231-0/+30
| | | | | | | | PR: 201061 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=390347
* Document 3 vulnerabilities with PHP that affected 4 extensions.Xin LI2015-06-221-0/+60
| | | | | | | | PR: 200926 Submitted by: Jason Unovitch Notes: svn path=/head/; revision=390344
* Reflect version range change after r390340. While I'm there, also fixXin LI2015-06-221-2/+5
| | | | | | | | | | | the CVE-2015-4556 entry because it's not yet fixed in the ports tree and add a reference to the PR while there. PR: 200980 Submitted by: Vitaly Magerya (with changes suggested by Jason Unovitch) Notes: svn path=/head/; revision=390341
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-27 02:41:24 +0000