aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* MFH: r514465release/12.1.0Renato Botelho2019-10-144-16/+6
| | | | | | | | | | | security/sudo: Update to 1.8.28 Sponsored by: Rubicon Communications, LLC (Netgate) Approved by: ports-secteam (delphij) Notes: svn path=/branches/2019Q4/; revision=514560 svn path=/tags/RELEASE_12_1_0/; revision=514565; tag=release/12.1.0
* MFH: r514447Tobias Kortkamp2019-10-144-4/+4
| | | | | | | | | | | security/signify: Add OpenBSD 6.7 key - Drop old OpenBSD 6.4 key Approved by: ports-secteam blanket Notes: svn path=/branches/2019Q4/; revision=514448
* MFH: r513528 r514111Tobias Kortkamp2019-10-092-22/+24
| | | | | | | | | | | | | | | | | security/cargo-audit: Update to v0.9.2 Changes: https://github.com/RustSec/cargo-audit/blob/v0.9.2/CHANGES.md security/cargo-audit: Update to v0.9.3 - Disable tests for now. They require network access. Changes: https://github.com/RustSec/cargo-audit/blob/v0.9.3/CHANGES.md Approved by: ports-secteam blanket Notes: svn path=/branches/2019Q4/; revision=514113
* MFH: r513924Koichiro Iwao2019-10-081-2/+0
| | | | | | | | | | | | | | | | security/stoken: Unbreak it is actually not broken. Builds fine without any modifications. Marking as BROKEN was MFH'ed, so MFH unbreak again. PR: 240940 Reported by: Rubin Simons <rubin@xs4all.nl> Approved by: samm@os2.kiev.ua (maintainer) Approved by: portmgr (miwi) Notes: svn path=/branches/2019Q4/; revision=514024
* MFH: r513633Jan Beich2019-10-034-8/+8
| | | | | | | | | | | | security/nss: update to 3.46.1 Changes: https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.46.1_release_notes Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_46_1_RTM ABI: https://abi-laboratory.pro/tracker/timeline/nss/ Approved by: ports-secteam blanket Notes: svn path=/branches/2019Q4/; revision=513639
* New port security/pam_scriptRodrigo Osorio2019-09-306-0/+90
| | | | | | | | | | PAM script module allows to hook user space scripts on PAM events PR: 240669 Submitted by: Natalino Picone <natalino.picone@nozominetworks.com> Notes: svn path=/head/; revision=513412
* Add a new option to enable PKCS11 pluginRenato Botelho2019-09-302-13/+20
| | | | | | | | | | PR: 240684 Approved by: strongswan@Nanoteq.com (maintainer) Obtained from: pfSense Sponsored by: Rubicon Communications, LLC (Netgate) Notes: svn path=/head/; revision=513403
* Update to 3.6.10.Tijl Coosemans2019-09-303-6/+7
| | | | | | | | Also revert r508194 (-Wl,-z,notext on i386). The problem has been fixed upstream. Notes: svn path=/head/; revision=513335
* Go ports: cleanup, finish transition to USES=go started with r505321 (cat. ↵Dmitri Goutnik2019-09-298-252/+207
| | | | | | | | | | | | | | | misc-shells) - Remove custom build/install targets left in place after r505321 - Switch to the new GO_TARGET tuple syntax introduced in r512001 - Switch to go:modules when upstream already uses them Reviewed by: tobik Approved by: araujo (mentor), portmgr (adamw) Differential Revision: https://reviews.freebsd.org/D21743 Notes: svn path=/head/; revision=513275
* Fix misprintVsevolod Stakhov2019-09-291-1/+1
| | | | Notes: svn path=/head/; revision=513242
* - Update to 0.6.21TAKATSU Tomonari2019-09-292-5/+4
| | | | Notes: svn path=/head/; revision=513238
* Document RCE in Exim: CVE-2019-16928Vsevolod Stakhov2019-09-291-0/+26
| | | | Notes: svn path=/head/; revision=513204
* Kernel module containing a KTLS software backend for AES-GCM connectionsMark Linimon2019-09-296-0/+517
| | | | | | | | | | | | | using Intel's ISA-L crypto library. Only for amd64 and only for very recent -CURRENT. Submitted by: jhb Reviewed by: gallatin Differential Revision: D21446 Notes: svn path=/head/; revision=513187
* Update to 2.8.3Dan Langille2019-09-282-5/+4
| | | | | | | | | | | | Letsencrypt CA recent changed the CDN provider, which resulted in hanging issues. Any downstream package should update. This is important. re: https://github.com/Neilpang/acme.sh/releases/tag/2.8.3 Submitted by: Ken (via private email) Notes: svn path=/head/; revision=513143
* security/vuxml: Add entry for lang/go and lang/go-devel CVE-2019-16276Dmitri Goutnik2019-09-281-0/+38
| | | | | | | | Approved by: araujo (mentor) Differential Revision: https://reviews.freebsd.org/D21802 Notes: svn path=/head/; revision=513122
* Document databases/mantis vulnerabilitiesTobias Kortkamp2019-09-271-0/+32
| | | | Notes: svn path=/head/; revision=513054
* security/suricata: Restore GEOIP optionRenato Botelho2019-09-271-1/+5
| | | | | | | | | | | GeoIP option works with libmaxminddb since 4.1.5. Add GEOIP option back. PR: 240835 Approved by: Franco Fichtner <franco@opnsense.org> (maintainer) Sponsored by: Rubicon Communications, LLC (Netgate) Notes: svn path=/head/; revision=513025
* security/cargo-audit: Update to v0.9.1Tobias Kortkamp2019-09-273-125/+178
| | | | | | | Changes: https://github.com/RustSec/cargo-audit/blob/v0.9.1/CHANGES.md Notes: svn path=/head/; revision=513023
* - Update WWWDmitry Marakasov2019-09-271-1/+1
| | | | | | | Approved by: portmgr blanket Notes: svn path=/head/; revision=513014
* lang/rust: Update to 1.38.0Tobias Kortkamp2019-09-275-2/+5
| | | | | | | | | | | | | | | - Force rebuild all consumers to catch regressions early Thanks to Mikaël Urankar for providing updated bootstraps for aarch64, armv6, armv7, powerpc64. Changes: https://blog.rust-lang.org/2019/09/26/Rust-1.38.0.html Tested by: jbeich, mikael.urankar@gmail.com, tobik With hat: rust Differential Revision: https://reviews.freebsd.org/D21778 Notes: svn path=/head/; revision=513013
* Update to 0.11.5Emanuel Haupt2019-09-272-15/+14
| | | | Notes: svn path=/head/; revision=513002
* Update to 4.5.0Sunpoet Po-Chuan Hsieh2019-09-262-6/+4
| | | | | | | Changes: https://github.com/keybase/client/releases Notes: svn path=/head/; revision=512918
* Mark BROKEN: fails to buildAntoine Brodin2019-09-261-0/+2
| | | | | | | | | | | | | | | | | | | | | | | /wrkdirs/usr/ports/security/snort3/work/snort3-3.0.0-258/src/codecs/ip/cd_ipv4.cc:223:28: error: use of undeclared identifier 'DAQ_PKT_FLAG_REAL_ADDRESSES' if ((raw.pkth->flags & DAQ_PKT_FLAG_REAL_ADDRESSES) and codec.ip_layer_cnt == 1) ^ /wrkdirs/usr/ports/security/snort3/work/snort3-3.0.0-258/src/codecs/ip/cd_ipv4.cc:227:33: error: no member named 'real_sIP' in '_daq_pkt_hdr' real_src.set(&raw.pkth->real_sIP, ~~~~~~~~ ^ /wrkdirs/usr/ports/security/snort3/work/snort3-3.0.0-258/src/codecs/ip/cd_ipv4.cc:228:33: error: use of undeclared identifier 'DAQ_PKT_FLAG_REAL_SIP_V6' ((raw.pkth->flags & DAQ_PKT_FLAG_REAL_SIP_V6) ? AF_INET6 : AF_INET)); ^ /wrkdirs/usr/ports/security/snort3/work/snort3-3.0.0-258/src/codecs/ip/cd_ipv4.cc:229:33: error: no member named 'real_dIP' in '_daq_pkt_hdr' real_dst.set(&raw.pkth->real_dIP, ~~~~~~~~ ^ /wrkdirs/usr/ports/security/snort3/work/snort3-3.0.0-258/src/codecs/ip/cd_ipv4.cc:230:33: error: use of undeclared identifier 'DAQ_PKT_FLAG_REAL_DIP_V6' ((raw.pkth->flags & DAQ_PKT_FLAG_REAL_DIP_V6) ? AF_INET6 : AF_INET)); ^ Reported by: pkg-fallout Notes: svn path=/head/; revision=512911
* security/sslproxy: Fix buildMuhammad Moinur Rahman2019-09-262-24/+0
| | | | Notes: svn path=/head/; revision=512896
* Update to bugfix release 3.08.01.Alexander Leidinger2019-09-262-6/+6
| | | | Notes: svn path=/head/; revision=512884
* Document Jenkins Security Advisory 2019-09-25Li-Wen Hsu2019-09-251-0/+47
| | | | | | | Sponsored by: The FreeBSD Foundation Notes: svn path=/head/; revision=512860
* security/suricata: Update to 4.1.5Renato Botelho2019-09-253-6/+7
| | | | | | | | | | | PR: 240793 Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) MFH: 2019Q3 Security: CVE-2019-16410 CVE-2019-16411 Sponsored by: Rubicon Communications, LLC (Netgate) Notes: svn path=/head/; revision=512858
* Update to 1.3.4Sunpoet Po-Chuan Hsieh2019-09-252-4/+4
| | | | | | | Changes: https://github.com/mattbrictson/airbrussh/releases Notes: svn path=/head/; revision=512852
* Update to 4.4.2Sunpoet Po-Chuan Hsieh2019-09-252-4/+4
| | | | | | | Changes: https://github.com/keybase/client/releases Notes: svn path=/head/; revision=512818
* - Update to 1.4.1TAKATSU Tomonari2019-09-252-5/+7
| | | | Notes: svn path=/head/; revision=512771
* - Add new port: security/R-cran-askpassTAKATSU Tomonari2019-09-254-0/+34
| | | | | | | | | | | | | | | | | Cross-platform utilities for prompting the user for credentials or a passphrase, for example to authenticate with a server or read a protected key. Includes native programs for MacOS and Windows, hence no 'tcltk' is required. Password entry can be invoked in two different ways: directly from R via the askpass() function, or indirectly as password-entry back-end for 'ssh-agent' or 'git-credential' via the SSH_ASKPASS and GIT_ASKPASS environment variables. Thereby the user can be prompted for credentials or a passphrase if needed when R calls out to git or ssh. WWW: https://cran.r-project.org/web/packages/askpass/ Notes: svn path=/head/; revision=512770
* security/sslproxy: Update version 0.6.0=>0.7.0Muhammad Moinur Rahman2019-09-242-5/+4
| | | | Notes: svn path=/head/; revision=512751
* security/doas: Update to 6.2Steve Wills2019-09-242-4/+4
| | | | | | | | PR: 240305 Submitted by: jsmith@resonatingmedia.com (maintainer) Notes: svn path=/head/; revision=512740
* security/strongswan: update to 5.8.1Steve Wills2019-09-242-4/+4
| | | | | | | | | PR: 240316 Submitted by: Jose Luis Duran <jlduran@gmail.com> Approved by: strongswan@Nanoteq.com (maintainer) Notes: svn path=/head/; revision=512739
* Run regression tests with bash since some test scripts unfortunatelyChristian Weisgerber2019-09-241-4/+3
| | | | | | | | | | rely on bash features. PR: 240686 Reviewed by: jbeich Notes: svn path=/head/; revision=512715
* security/pecl-mcrypt: udpate to 1.0.3Luca Pizzamiglio2019-09-242-4/+4
| | | | | | | | | Apparently only a fix for Windows, but updating anyway Sponsored by: trivago N.V. Notes: svn path=/head/; revision=512714
* Update to 0.7.1Michael Gmelin2019-09-249-313/+4
| | | | | | | | PR: 240774 Approved by: koobs (python, maintainer) Notes: svn path=/head/; revision=512694
* - Update the default TCTI config string to point to /dev/tpmLi-Wen Hsu2019-09-232-0/+12
| | | | | | | | Submitted by: maintainer Differential Revision: https://reviews.freebsd.org/D21770 Notes: svn path=/head/; revision=512671
* KDE Frameworks: update to 5.62.0Tobias C. Berner2019-09-232-3/+6
| | | | | | | | | | | Changelog: https://kde.org/announcements/kde-frameworks-5.62.0.php Exp-run by: antoine PR: 240720 Notes: svn path=/head/; revision=512666
* Add linux-c6-openssl to CVE-2019-1559 entry.Tijl Coosemans2019-09-231-0/+4
| | | | | | | Security: https://access.redhat.com/errata/RHSA-2019:2471 Notes: svn path=/head/; revision=512616
* Update to 1.0.1e-58.el6_10.Tijl Coosemans2019-09-232-9/+9
| | | | | | | | | MFH: 2019Q3 Security: https://access.redhat.com/errata/RHSA-2019:2471 Security: CVE-2019-1559 Notes: svn path=/head/; revision=512615
* security/gpgme: add USES=compiler:c11Piotr Kubaj2019-09-221-1/+1
| | | | | | | | | Needed to fix build on GCC architectures. Approved by: mentors (implicit approval) Notes: svn path=/head/; revision=512592
* Update CyberChef to 9.7.1Dan Langille2019-09-224-7/+11
| | | | | | | | | | re: https://github.com/gchq/CyberChef/releases/tag/v9.7.1 PR: 240743 Submitted by: thomas@bsdunix.ch Notes: svn path=/head/; revision=512580
* Ignore with php 7.4Antoine Brodin2019-09-223-0/+3
| | | | | | | Reported by: pkg-fallout Notes: svn path=/head/; revision=512557
* Fix INDEXAntoine Brodin2019-09-211-1/+0
| | | | Notes: svn path=/head/; revision=512540
* Delete security/php74-hashTorsten Zuehlsdorff2019-09-211-11/+0
| | | | | | | | | | The hash module is now part of the PHP core. It can't be disabled or enabled anymore. Therefore we remove this port. Sponsored by: PHP Upgrade Service Notes: svn path=/head/; revision=512539
* security/clamsmtp: Unbreak by switching to new master siteKurt Jaeger2019-09-212-7/+5
| | | | | | | | PR: 240731 Submitted by: Yasuhiro KIMURA <yasu@utahime.org> Notes: svn path=/head/; revision=512534
* security/arirang: fix build on GCC architecturesPiotr Kubaj2019-09-211-4/+10
| | | | | | | | | | | | Add USES=compiler:c11, base GCC can't build this port. Only add -L${OPENSSLLIB} when OpenSSL not from base is used to avoid linking to base libstdc++. Approved by: linimon (mentor) Differential Revision: https://reviews.freebsd.org/D21719 Notes: svn path=/head/; revision=512510
* security/steghide: fix build on GCC architecturesPiotr Kubaj2019-09-211-4/+5
| | | | | | | | | | Add -Wno-static-float-init only when clang is used. Also add USES=localbase. Approved by: linimon (mentor) Differential Revision: https://reviews.freebsd.org/D21407 Notes: svn path=/head/; revision=512503
* Fix pkg-plist.Tijl Coosemans2019-09-212-4/+2
| | | | | | | Reported by: olgeni Notes: svn path=/head/; revision=512490
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-03 16:03:12 +0000