aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
...
* Document OpenVPN vulnerabilities.Matthias Andree2017-06-211-0/+50
| | | | | | | | | | | | Security: 9f65d382-56a4-11e7-83e3-080027ef73ec Security: CVE-2017-7508 Security: CVE-2017-7512 Security: CVE-2017-7520 Security: CVE-2017-7521 Security: CVE-2017-7522 Notes: svn path=/head/; revision=444042
* security/py-zxcvbn-python: update to 4.4.15Jan Beich2017-06-212-4/+4
| | | | | | | Changes: https://github.com/dwolfhub/zxcvbn-python/compare/v4.4.14...v4.4.15 Notes: svn path=/head/; revision=444028
* Update to 2.43bTobias Kortkamp2017-06-212-4/+4
| | | | | | | | | Changes: http://lcamtuf.coredump.cx/afl/ChangeLog.txt Approved by: mat (mentor) Differential Revision: https://reviews.freebsd.org/D11281 Notes: svn path=/head/; revision=444017
* security/vuxml: Fix entry uppercasingBernard Spil2017-06-211-1/+1
| | | | | | | - Introduced in 443943 Notes: svn path=/head/; revision=444016
* Switch to USES=localbase.Cy Schubert2017-06-213-9/+9
| | | | Notes: svn path=/head/; revision=444011
* Switch to USES localbase.Cy Schubert2017-06-211-3/+2
| | | | Notes: svn path=/head/; revision=444010
* security/vuxml: Document Apache httpd vulnerabilitiesBernard Spil2017-06-201-1/+57
| | | | Notes: svn path=/head/; revision=443943
* security/masscan: Update to 1.0.4Danilo G. Baio2017-06-193-7/+22
| | | | | | | | | | | | | | Include a patch for build it in 10.3, 11 and CURRENT Changes: https://github.com/robertdavidgraham/masscan/releases/tag/1.0.4 PR: 219886 Submitted by: taguchi.ch@gmail.com (maintainer) Approved by: garga (mentor) Differential Revision: https://reviews.freebsd.org/D11260 Notes: svn path=/head/; revision=443915
* security/p5-Crypt-OpenSSL-RSA: add functions to work with private keysKurt Jaeger2017-06-194-1/+198
| | | | | | | | | | | | | | | | - new_private_key(privkey_string) Create encrypted private RSA key from privkey_string - new_private_key(privkey_string, password) parse existed encrypted private RSA key from privkey_string - get_enc_private_key_string(password) - get_enc_private_key_string(password, cipher) Encrypt and return encrypted PEM PKCS coded RSA private key PR: 220136 Submitted by: Borodin Oleg <onborodin@gmail.com> Notes: svn path=/head/; revision=443905
* security/p5-Crypt-OpenSSL-CA: add functions to retrieve CRL-related infosKurt Jaeger2017-06-192-1/+321
| | | | | | | | PR: 220134 Submitted by: Borodin Oleg <onborodin@gmail.com> Notes: svn path=/head/; revision=443904
* The THREADS option is defined twice, remove one of them.Mathieu Arnold2017-06-191-1/+1
| | | | | | | | | | It makes poudriere think that options changed, and forces openssl to be rebuilt at every bulk run. Sponsored by: Absolight Notes: svn path=/head/; revision=443880
* qa: add check for NO_ARCHDavid Naylor2017-06-181-0/+1
| | | | | | | | | | | | | | | | | | | | | If NO_ARCH is set then check that no FreeBSD elf(5) files are in $STAGEDIR. If an elf(5) file is bundles as part of the package, but is not meant to be run directly (i.e. the elf(5) file is a payload, and not compiled) then those files can be added to NO_ARCH_IGNORE to avoid the check from failing, Changes to ports: - Ports that have NO_ARCH set, but actually compile files have had NO_ARCH removed. - Ports that have elf(5) payloads have had those files added to NO_ARCH_IGNORE. - R-cran ports that do not set USES=cran:compiles have NO_ARCH set, PR: 218976 Reviewed by: antoine, mat Approved by: portmgr Notes: svn path=/head/; revision=443845
* * Updated to 3.2.2Richard Gallamore2017-06-184-15/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | * Depends on libhtp 0.5.24 or greater * Listen on multiple PCAP interfaces via RC script * Dependencies added in the 3.2.1 update move to the PRELUDE option where they belong - Support additional runmodes for unix-socket - make install-full can have race conditions on OSX - af-packet: faulty VLAN handling in tpacket-v3 mode - bad checksum 0xffff - ippair: xbit unset memory leak - file store: file log / file store mismatch with multiple files - app-layer: fix memleak on bad traffic - http body handling: failed assertion - ippair: pair is direction sensitive - defrag – overlap issue in linux policy - unix socket: race condition on start up PR: 220026 Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) Reviewed by: matthew (mentor) Approved by: matthew (mentor) Differential Revision: https://reviews.freebsd.org/D11251 Notes: svn path=/head/; revision=443829
* Finish conversion to option helpers.Alexey Dokuchaev2017-06-181-12/+5
| | | | Notes: svn path=/head/; revision=443827
* Update to 10.3.3Sunpoet Po-Chuan Hsieh2017-06-182-4/+4
| | | | | | | | | Changes: https://github.com/jaraco/keyring/blob/master/CHANGES.rst PR: 220091 Submitted by: Douglas Thrift <douglas@douglasthrift.net> (maintainer) Notes: svn path=/head/; revision=443819
* Update KDE Frameworks to 5.35Tobias C. Berner2017-06-171-3/+3
| | | | | | | | | PR: 219950 Submitted by: Adriaan de Groot <groot@kde.org> Exp-Run by: antoine Notes: svn path=/head/; revision=443783
* - security/tor: Implemented setuid featureJochen Neumeister2017-06-172-0/+15
| | | | | | | | | | | | | | | *The user should add tor_setuid=YES to /etc/rc.conf to make tor do setuid in runtime after opening the externally provided files. PR: 218587 Submitted by: xmj Approved by: Yuri Victorovich <yuri at rawbw.com> (maintainer) Approved by: miwi (mentor) Differential Revision: https://reviews.freebsd.org/D11223 Notes: svn path=/head/; revision=443770
* Update to 1.3.0Sunpoet Po-Chuan Hsieh2017-06-172-4/+4
| | | | | | | Changes: https://github.com/mattbrictson/airbrussh/blob/master/CHANGELOG.md Notes: svn path=/head/; revision=443743
* security/keepass: Update to 2.36Ben Woods2017-06-176-42/+12
| | | | | | | | | | - Also add DEBUG option (off by default) Changes this release: http://keepass.info/news/n170609_2.36.html Notes: svn path=/head/; revision=443731
* Document new vulnerabilities in www/chromium < 59.0.3071.104Carlos J. Puga Medina2017-06-161-0/+38
| | | | | | | Obtained from: https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_15.html Notes: svn path=/head/; revision=443683
* Document cURL vulnerabilitySunpoet Po-Chuan Hsieh2017-06-151-0/+33
| | | | Notes: svn path=/head/; revision=443659
* Update to 2.0.4Sunpoet Po-Chuan Hsieh2017-06-152-4/+4
| | | | | | | Changes: https://github.com/ruby/openssl/blob/master/History.md Notes: svn path=/head/; revision=443653
* Fix the range of vulnerable versions for p5-RT-Authen-ExternalAuth --Matthew Seaman2017-06-151-1/+1
| | | | | | | | BestPractical have released a tarball of patches, but they've also pushed 0.27 up to CPAN and that has the fixes incorporated. Notes: svn path=/head/; revision=443639
* Document multiple vulnerabilities in www/rt42, www/rt44 and ↵Matthew Seaman2017-06-151-0/+99
| | | | | | | www/p5-RT-Authen-ExternalAuth Notes: svn path=/head/; revision=443637
* Document latest Flash Player vulnerabilities.Jung-uk Kim2017-06-151-0/+41
| | | | | | | https://helpx.adobe.com/security/products/flash-player/apsb17-17.html Notes: svn path=/head/; revision=443624
* Starting in 1.8.20, the sample sudoers file has been installed twice,Mathieu Arnold2017-06-152-3/+3
| | | | | | | | | | | | once as sudoers.sample and once as sudoers.dist. Remove one of them. PR: 219708 Submitted by: mat Approved by: maintainer timeout Sponsored by: Absolight Notes: svn path=/head/; revision=443616
* security/tor-devel: update 0.3.0.7 -> 0.3.1.3-alphaKurt Jaeger2017-06-142-6/+8
| | | | | | | | | | | | | | | | | - fixes two remote DoS vulnerabilities related to hidden services https://lists.torproject.org/pipermail/tor-talk/2017-June/043244.html - disabled the new compression options for now, since at least one of them has a bug, see here: https://trac.torproject.org/projects/tor/ticket/22550 PR: 219864 Submitted by: Yuri Victorovich <yuri@rawbw.com> (maintainer) MFH: 2017Q2 Relnotes: https://gitweb.torproject.org/tor.git/plain/ReleaseNotes?id=tor-0.3.1.3-alpha Security: CVE-2017-0375, CVE-2017-0376 Notes: svn path=/head/; revision=443598
* security/tor: update 0.3.0.7 -> 0.3.0.8Kurt Jaeger2017-06-142-4/+4
| | | | | | | | | | | PR: 219863 Submitted by: Yuri Victorovich <yuri@rawbw.com> (maintainer) MFH: 2017Q2 Relnotes: https://gitweb.torproject.org/tor.git/plain/ReleaseNotes?id=tor-0.3.0.8 Security: CVE-2017-0375, CVE-2017-0376 Notes: svn path=/head/; revision=443596
* Use USES=readlineSunpoet Po-Chuan Hsieh2017-06-141-5/+1
| | | | Notes: svn path=/head/; revision=443587
* * Add fetch function to rkhunterRichard Gallamore2017-06-145-21/+42
| | | | | | | | | | | | | | | * Remove wget as a dependency * Added NO_ARCH * Fixed portlint items PR: 219825 Submitted by: Helge Oldach <freebsd@oldach.net> Reviewed by: matthew (mentor) Approved by: Lukasz Wasikowski <lukasz@wasikowski.net> (maintainer), matthew (mentor) Differential Revision: https://reviews.freebsd.org/D11168 Notes: svn path=/head/; revision=443547
* security/vuxml: mark firefox < 54 as vulnerableJan Beich2017-06-131-0/+90
| | | | Notes: svn path=/head/; revision=443537
* security/lynis: Update to 2.5.1Lars Engels2017-06-132-4/+4
| | | | Notes: svn path=/head/; revision=443506
* Use USES=readline:portSunpoet Po-Chuan Hsieh2017-06-121-5/+3
| | | | | | | | - Use MAKE_CMD instead of MAKE - Use bsd.port.mk instead of bsd.port.pre.mk + bsd.port.post.mk Notes: svn path=/head/; revision=443481
* fix build with libiconv installed by USES=iconvNikolai Lifanov2017-06-121-1/+1
| | | | | | | | PR: 219937 Submitted by: John Hein <z7dr6ut7gs@snkmail.com> Notes: svn path=/head/; revision=443471
* New port: security/rubygem-doorkeeper-openid_connectTorsten Zuehlsdorff2017-06-124-0/+33
| | | | | | | | | | | | | | Implements an OpenID Connect authentication provider for Rails applications on top of the Doorkeeper OAuth 2.0 framework. OpenID Connect is a single-sign-on and identity layer with a growing list of server and client implementations. If you're looking for a client in Ruby check out omniauth-openid-connect. WWW: https://github.com/doorkeeper-gem/doorkeeper-openid_connect Notes: svn path=/head/; revision=443432
* New port: security/rubygem-securecompareTorsten Zuehlsdorff2017-06-124-0/+28
| | | | | | | | | | | | securecompare borrows the secure_compare private method from ActiveSupport::MessageVerifier which lets you do safely compare strings without being vulnerable to timing attacks. Useful for Basic HTTP Authentication in your rack/rails application. WWW: https://github.com/samuelkadolph/securecompare Notes: svn path=/head/; revision=443421
* security/nss: update to 3.31Jan Beich2017-06-116-19/+9
| | | | | | | | | | Changes: https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.31_release_notes Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_31_RTM ABI: https://abi-laboratory.pro/tracker/timeline/nss/ MFH: 2017Q2 Notes: svn path=/head/; revision=443402
* Mark BROKEN: missing headerAntoine Brodin2017-06-111-0/+2
| | | | | | | | | | | libtool: compile: cc -DHAVE_CONFIG_H -I. -I../.. -I../../include -O2 -pipe -fstack-protector -fno-strict-aliasing -c libwebfwlog_udf.c -fPIC -DPIC -o .libs/libwebfwlog_udf.o libwebfwlog_udf.c:13:10: fatal error: 'mysql.h' file not found #include <mysql.h> Reported by: pkg-fallout Notes: svn path=/head/; revision=443395
* Fix build error with clang 4.MANTANI Nobutaka2017-06-111-0/+11
| | | | Notes: svn path=/head/; revision=443388
* Update to 4.14.25Antoine Brodin2017-06-112-5/+5
| | | | Notes: svn path=/head/; revision=443383
* Update to 1.2.32Antoine Brodin2017-06-112-4/+4
| | | | Notes: svn path=/head/; revision=443382
* Update to 2.0.10Antoine Brodin2017-06-112-4/+5
| | | | Notes: svn path=/head/; revision=443381
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => LiveUser_Admin-0.4.0.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/LiveUser_Admin-0.4.0.tgz fetch: http://pear.php.net/get/LiveUser_Admin-0.4.0.tgz: size mismatch: expected 68873, actual 69870 Reference: https://people.FreeBSD.org/~sunpoet/checksum/LiveUser_Admin-0.4.0.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443320
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => LiveUser-0.16.14.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/LiveUser-0.16.14.tgz fetch: http://pear.php.net/get/LiveUser-0.16.14.tgz: size mismatch: expected 76857, actual 77911 Reference: https://people.FreeBSD.org/~sunpoet/checksum/LiveUser-0.16.14.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443319
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => HTML_Crypt-1.3.4.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/HTML_Crypt-1.3.4.tgz fetch: http://pear.php.net/get/HTML_Crypt-1.3.4.tgz: size mismatch: expected 4380, actual 4416 Reference: https://people.FreeBSD.org/~sunpoet/checksum/HTML_Crypt-1.3.4.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443318
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | | | - While I'm here: - Add USES=php - Fix indent Content of tarballs are unchanged (checked against [1]). => File_SMBPasswd-1.0.3.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/File_SMBPasswd-1.0.3.tgz fetch: http://pear.php.net/get/File_SMBPasswd-1.0.3.tgz: size mismatch: expected 5251, actual 5312 Reference: https://people.FreeBSD.org/~sunpoet/checksum/File_SMBPasswd-1.0.3.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443317
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => File_Passwd-1.1.7.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/File_Passwd-1.1.7.tgz fetch: http://pear.php.net/get/File_Passwd-1.1.7.tgz: size mismatch: expected 24140, actual 24547 Reference: https://people.FreeBSD.org/~sunpoet/checksum/File_Passwd-1.1.7.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443316
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => File_HtAccess-1.2.1.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/File_HtAccess-1.2.1.tgz fetch: http://pear.php.net/get/File_HtAccess-1.2.1.tgz: size mismatch: expected 4937, actual 5024 Reference: https://people.FreeBSD.org/~sunpoet/checksum/File_HtAccess-1.2.1.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443315
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => Crypt_XXTEA-0.9.0.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/Crypt_XXTEA-0.9.0.tgz fetch: http://pear.php.net/get/Crypt_XXTEA-0.9.0.tgz: size mismatch: expected 6522, actual 6583 Reference: https://people.FreeBSD.org/~sunpoet/checksum/Crypt_XXTEA-0.9.0.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443314
* Update distinfo and unbreak this portSunpoet Po-Chuan Hsieh2017-06-112-3/+4
| | | | | | | | | | | | | | | | - While I'm here, fix indent Content of tarballs are unchanged (checked against [1]). => Crypt_RSA-1.2.1.tgz doesn't seem to exist in /usr/ports/distfiles/PEAR. => Attempting to fetch http://pear.php.net/get/Crypt_RSA-1.2.1.tgz fetch: http://pear.php.net/get/Crypt_RSA-1.2.1.tgz: size mismatch: expected 21903, actual 22113 Reference: https://people.FreeBSD.org/~sunpoet/checksum/Crypt_RSA-1.2.1.tgz [1] Approved by: portmgr (blanket) Notes: svn path=/head/; revision=443313
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-15 20:12:41 +0000