aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Upgrade to upstream bugfix release 0.64.Matthias Andree2015-03-054-20/+23
| | | | | | | | | | | | This fixes a security bug, various other bugs, and supports SSH connection sharing between multiple instances of PuTTY and its tools. MFH: 2015Q1 Security: 92fc2e2b-c383-11e4-8ef7-080027ef73ec Security: CVE-2015-2157 Notes: svn path=/head/; revision=380554
* Document recently fixed PuTTY < 0.64 vuln. CVE-2015-2157.Matthias Andree2015-03-051-0/+38
| | | | Notes: svn path=/head/; revision=380553
* dvertise CPE data for Kerberos.Cy Schubert2015-03-051-1/+5
| | | | | | | PR: 197465 Notes: svn path=/head/; revision=380546
* Advertise CPE data for Kerberos.Cy Schubert2015-03-052-2/+10
| | | | | | | PR: 197465, 197466, 197467 Notes: svn path=/head/; revision=380545
* - Update to 1.7.1Sunpoet Po-Chuan Hsieh2015-03-052-3/+3
| | | | | | | Changes: https://github.com/capistrano/sshkit/blob/master/CHANGELOG.md Notes: svn path=/head/; revision=380529
* security/pam_ocra: update 1.1 -> 1.2Bartek Rutkowski2015-03-052-4/+4
| | | | | | | | | | - Include upstream accepted Clang 3.6.0 fixes by Dimitry Andric <dim@FreeBSD.org> PR: 198113 Submitted by: Stefan Grundmann <sg2342@googlemail.com> Notes: svn path=/head/; revision=380487
* Document new vulnerabilities in www/chromium < 41.0.2272.76Rene Ladan2015-03-041-0/+95
| | | | | | | | Submitted by: Carlos Jacobo Puga Medina Obtained from: http://googlechromereleases.blogspot.nl/ Notes: svn path=/head/; revision=380453
* Add entry for CVE-2015-0295 in qt4-gui and qt5-gui.Raphael Kubo da Costa2015-03-041-0/+33
| | | | Notes: svn path=/head/; revision=380451
* security/bro: add ELASTICSEARCH optionBartek Rutkowski2015-03-041-2/+11
| | | | | | | | PR: 198018 Submitted by: Craig Leres <leres@ee.lbl.gov> Notes: svn path=/head/; revision=380437
* - Remove an orphaned directory [1].Hiroki Sato2015-03-042-4/+45
| | | | | | | | | - Fix USE_LDCONFIG [2]. Spotted by: sunpoet [1] and bdrewery [2] Notes: svn path=/head/; revision=380434
* - Update to 2.1.4Vsevolod Stakhov2015-03-044-14/+15
| | | | | | | | PR: 198269 Submitted by: Bernard Spil <spil.oss at gmail.com> Notes: svn path=/head/; revision=380424
* - Drop @dirrm* from plistDmitry Marakasov2015-03-041-4/+0
| | | | | | | Approved by: portmgr blanket Notes: svn path=/head/; revision=380417
* Fix bug on __FreeBSD_version >= 1100042 where once vpnc set up a tunnel andEmanuel Haupt2015-03-032-5/+23
| | | | | | | | | | | went into the main loop, no esp could be sent. PR: 197835 (based on) Submitted by: markiyan.kushnir@gmail.com Fix confirmed: xmj Notes: svn path=/head/; revision=380395
* - Update to 1.7.0Sunpoet Po-Chuan Hsieh2015-03-032-3/+3
| | | | | | | Changes: https://github.com/capistrano/sshkit/blob/master/CHANGELOG.md Notes: svn path=/head/; revision=380362
* In the embedded copy of libtomcrypt, change the ROLc/RORc inlineDimitry Andric2015-03-031-0/+107
| | | | | | | | | | | | functions to macros, so the constraints requirements are satisfied at compile time. It is almost exactly the same as the patch for libtomcrypt itself, in PR 198017. Approved by: maintainer (vanilla) PR: 198190 Notes: svn path=/head/; revision=380341
* Remove Author from pkg-descr and white space fixesBaptiste Daroussin2015-03-0218-45/+28
| | | | Notes: svn path=/head/; revision=380310
* Remove Author from pkg-descr and white space fixesBaptiste Daroussin2015-03-0216-29/+12
| | | | Notes: svn path=/head/; revision=380309
* - Connect security/rubygem-scryptSunpoet Po-Chuan Hsieh2015-03-021-0/+1
| | | | Notes: svn path=/head/; revision=380272
* - Update to 3.1.10Sunpoet Po-Chuan Hsieh2015-03-022-3/+5
| | | | | | | | | - Add LICENSE Changes: https://github.com/codahale/bcrypt-ruby/blob/master/CHANGELOG Notes: svn path=/head/; revision=380271
* - Add rubygem-scrypt 2.0.0Sunpoet Po-Chuan Hsieh2015-03-023-0/+29
| | | | | | | | | | | | The scrypt key derivation function is designed to be far more secure against hardware brute-force attacks than alternative functions such as PBKDF2 or bcrypt. WWW: https://github.com/pbhogan/scrypt RG: https://rubygems.org/gems/scrypt Notes: svn path=/head/; revision=380268
* - Add LICENSESunpoet Po-Chuan Hsieh2015-03-021-0/+2
| | | | Notes: svn path=/head/; revision=380266
* - Update to 1.9.14Ryan Steinmetz2015-03-026-41/+11
| | | | | | | | PR: 198115 Submitted by: rsimmons0@gmail.com Notes: svn path=/head/; revision=380252
* security/p5-openxpki: Upgrade version 0.25.0.1 => 0.26.1.1John Marino2015-03-013-18/+32
| | | | | | | | PR: 197470 Submitted by: maintainer (Sergei Vyshenski) Notes: svn path=/head/; revision=380233
* security/p5-openxpki-i18n: Upgrade version 0.25.0.1 => 0.26.1.1John Marino2015-03-012-8/+6
| | | | | | | | PR: 197471 Submitted by: maintainer (Sergei Vyshenski) Notes: svn path=/head/; revision=380232
* security/libgpg-error: Revert use of tradcpp (F11 regression)John Marino2015-03-011-3/+0
| | | | | | | | | | | | | With the previous change, libgpg-error does not pass configure target on FreeBSD 11 due tradcpp failing "sanity checks". This is a regression since this port builds fine on FreeBSD 10. However, 2037 ports get skipped (this port is *way* too important) as a result, so revert the gcc-5 fix until a solution can be found. PR: 197562 Notes: svn path=/head/; revision=380217
* security/libgpg-error: Switch cpp to support gcc-5John Marino2015-03-011-0/+3
| | | | | | | | | | | | | This port relies on CPP behavior that changes on GCC 5. To ensure libgpg-error keeps building on the newest GCC, add a build dependency on tradcpp and use it instead. PR: 197562 Submitted by: marino Approved by: maintainer (novel) Notes: svn path=/head/; revision=380211
* - Add LICENSEDmitry Marakasov2015-03-011-1/+6
| | | | | | | | | - Fix shebangs MFH: 2015Q1 Notes: svn path=/head/; revision=380198
* - Cleanup RUN_DEPENDSSunpoet Po-Chuan Hsieh2015-03-012-6/+6
| | | | | | | | | - Fix version requirement of BUILD_DEPENDS - Sort PLIST - Bump PORTREVISION for dependency change Notes: svn path=/head/; revision=380193
* - Update to 2.07Sunpoet Po-Chuan Hsieh2015-03-013-8/+7
| | | | | | | | | - Sort PLIST Changes: http://search.cpan.org/dist/Filter-Crypto/Changes Notes: svn path=/head/; revision=380188
* Deprecate ports that do not work with Ruby 2.xAntoine Brodin2015-03-011-0/+2
| | | | Notes: svn path=/head/; revision=380180
* Add entry for security issue in jenkinsSteve Wills2015-03-011-0/+73
| | | | | | | Reviewed by: zi Notes: svn path=/head/; revision=380172
* security/libgcrypt: 1.6.2 -> 1.6.3Kurt Jaeger2015-02-283-6/+5
| | | | | | | | | | | Changes: http://lists.gnupg.org/pipermail/gnupg-announce/2015q1/000364.html PR: 198109 Submitted by: Carlos Jacobo Puga Medina <cpm@fbsd.es> (maintainer) Notes: svn path=/head/; revision=380161
* - Upgrade to 1.4.19 (with SCA fix).Jun Kuriyama2015-02-285-28/+28
| | | | Notes: svn path=/head/; revision=380145
* - Add NO_ARCHDmitry Marakasov2015-02-272-5/+2
| | | | | | | | - Fix whitespace - Drop @dirrm* from plist Notes: svn path=/head/; revision=380079
* - Drop @dirrm* from plistDmitry Marakasov2015-02-271-1/+0
| | | | | | | Approved by: portmgr blanket Notes: svn path=/head/; revision=380075
* Fix typo: s/MSFA/MFSA/. The source to follow later.Jan Beich2015-02-271-17/+17
| | | | | | | https://bugzilla.mozilla.org/show_bug.cgi?id=1137604 Notes: svn path=/head/; revision=380068
* Document mozilla vulnerabilitiesJan Beich2015-02-271-0/+117
| | | | Notes: svn path=/head/; revision=380065
* Document vulnerablities in php for CVE-2015-0235 and CVE-2015-0273.Brad Davis2015-02-261-0/+39
| | | | | | | Approved by: zi (mentor) Notes: svn path=/head/; revision=380052
* - Add p5-Authen-SCRAM 0.005Sunpoet Po-Chuan Hsieh2015-02-265-0/+44
| | | | | | | | | | The modules in this distribution implement the Salted Challenge Response Authentication Mechanism (SCRAM) from RFC 5802. WWW: http://search.cpan.org/dist/Authen-SCRAM/ Notes: svn path=/head/; revision=380031
* - Add p5-PBKDF2-Tiny 0.005Sunpoet Po-Chuan Hsieh2015-02-265-0/+28
| | | | | | | | | | PBKDF2::Tiny provides an RFC 2898 compliant PBKDF2 implementation using HMAC-SHA1 or HMAC-SHA2 in under 100 lines of code. WWW: http://search.cpan.org/dist/PBKDF2-Tiny/ Notes: svn path=/head/; revision=380030
* - Add p5-Authen-SASL-SASLprep 1.01Sunpoet Po-Chuan Hsieh2015-02-265-0/+33
| | | | | | | | | | | Authen::SASL::SASLprep implements the SASLprep specification, which describes how to prepare Unicode strings representing user names and passwords for comparison. SASLprep is a profile of the stringprep algorithm. WWW: http://search.cpan.org/dist/Authen-SASL-SASLprep/ Notes: svn path=/head/; revision=380029
* Remove TEST dependency on p5-Test-Simple when the version in core isAdam Weinberger2015-02-261-1/+0
| | | | | | | | | sufficient. Thanks to az for showing me the light here. Notes: svn path=/head/; revision=380025
* - Update to 0.9.7Jason E. Hale2015-02-262-3/+3
| | | | Notes: svn path=/head/; revision=379983
* - Update to 1.5.3Jason E. Hale2015-02-263-11/+6
| | | | Notes: svn path=/head/; revision=379982
* - Update to 2.2.0Jason E. Hale2015-02-263-4/+4
| | | | Notes: svn path=/head/; revision=379981
* Update 1.11.5 --> 1.11.6Cy Schubert2015-02-264-87/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a bugfix release. The krb5-1.11 release series has reached the end of its maintenance period, and krb5-1.11.6 is the last planned release in the krb5-1.11 series. For new deployments, installers should prefer the krb5-1.13 release series or later. This commit deprecates this port. * Work around a gcc optimizer bug that could cause DB2 KDC database operations to spin in an infinite loop * Fix a backward compatibility problem with the LDAP KDB schema that could prevent krb5-1.11 and later from decoding entries created by krb5-1.6. * Handle certain invalid RFC 1964 GSS tokens correctly to avoid invalid memory reference vulnerabilities. [CVE-2014-4341 CVE-2014-4342] * Fix memory management vulnerabilities in GSSAPI SPNEGO. [CVE-2014-4343 CVE-2014-4344] * Fix buffer overflow vulnerability in LDAP KDB back end. [CVE-2014-4345] * Fix multiple vulnerabilities in the LDAP KDC back end. [CVE-2014-5354 CVE-2014-5353] * Fix multiple kadmind vulnerabilities, some of which are based in the gssrpc library. [CVE-2014-5352 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423] Security: dbf9e66c-bd50-11e4-a7ba-206a8a720317 CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344 CVE-2014-4345, CVE-2014-5354, CVE-2014-5353, CVE-2014-5352 CVE-2014-9421, CVE-2014-9422, CVE-2014-9423 Notes: svn path=/head/; revision=379969
* Document bugs fixed in krb5 1.11.6.Cy Schubert2015-02-261-0/+35
| | | | | | | | | | | | | | | | | | | | | | | | | | * Handle certain invalid RFC 1964 GSS tokens correctly to avoid invalid memory reference vulnerabilities. [CVE-2014-4341 CVE-2014-4342] * Fix memory management vulnerabilities in GSSAPI SPNEGO. [CVE-2014-4343 CVE-2014-4344] * Fix buffer overflow vulnerability in LDAP KDB back end. [CVE-2014-4345] * Fix multiple vulnerabilities in the LDAP KDC back end. [CVE-2014-5354 CVE-2014-5353] * Fix multiple kadmind vulnerabilities, some of which are based in the gssrpc library. [CVE-2014-5352 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423] Security: CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-4344 CVE-2014-4345, CVE-2014-5354, CVE-2014-5353, CVE-2014-5352 CVE-2014-9421, CVE-2014-9422, CVE-2014-9423 Notes: svn path=/head/; revision=379968
* Test::Exception is a TEST depends, not BUILD/RUN.Adam Weinberger2015-02-251-2/+2
| | | | Notes: svn path=/head/; revision=379948
* Pod::Coverage and Test::Pod::Coverage are TEST depends, not BUILD/RUN.Adam Weinberger2015-02-251-4/+3
| | | | Notes: svn path=/head/; revision=379946
* Those ports do not build with php 5.6Antoine Brodin2015-02-251-1/+1
| | | | Notes: svn path=/head/; revision=379897
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-27 20:11:21 +0000