aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - Fix test targetDmitry Marakasov2019-05-082-2/+2
| | | | | | | Approved by: portmgr blanket Notes: svn path=/head/; revision=501025
* security/snort3: Update version 3.0.0-254=>3.0.0-255Muhammad Moinur Rahman2019-05-082-4/+4
| | | | Notes: svn path=/head/; revision=501017
* New Port: security/modsecurity3-apacheJochen Neumeister2019-05-065-0/+56
| | | | | | | | | | | | | | | | The ModSecurity-apache connector is the connection point between Apache and libmodsecurity (ModSecurity v3). Said another way, this project provides a communication channel between Apache and libmodsecurity. This connector is required to use LibModSecurity with Apache. The ModSecurity-apache connector takes the form of an Apache module. The module simply serves as a layer of communication between Apache and ModSecurity. https://github.com/SpiderLabs/ModSecurity-apache Sponsored by: Netzkommune GmbH Notes: svn path=/head/; revision=500924
* Add entry for www/giteaJochen Neumeister2019-05-061-0/+26
| | | | | | | | PR: 237734 Sponsored by: Netzkommune GmbH Notes: svn path=/head/; revision=500901
* Update yara and py-yara to 3.10.0Antoine Brodin2019-05-064-8/+8
| | | | Notes: svn path=/head/; revision=500899
* security/py-libnacl: Update to 1.6.1Kubilay Kocak2019-05-063-18/+6
| | | | | | | | | | | - Remove setup.py patch, use direct unittest invocation instead Changelog: https://libnacl.readthedocs.io/en/latest/topics/releases/index.html Notes: svn path=/head/; revision=500887
* security/vuxml: Add comms/hylafax -- Malformed fax sender remote code ↵Kubilay Kocak2019-05-051-0/+30
| | | | | | | execution in JPEG support Notes: svn path=/head/; revision=500846
* security/lastpass-cli: Switch to x11/xsel-conradTobias Kortkamp2019-05-041-1/+2
| | | | | | | | | | lastpass-cli calls xsel with --clipboard and --input arguments which the expiring x11/xsel does not support. Use x11/xsel-conrad instead which does support them and is also the version that is mentioned in README.md. Notes: svn path=/head/; revision=500798
* Update to 6.1.0Emanuel Haupt2019-05-042-5/+4
| | | | Notes: svn path=/head/; revision=500795
* security/highwayhash: Revert the erroneous updateYuri Victorovich2019-05-042-4/+5
| | | | | | | Reported by: tobik Notes: svn path=/head/; revision=500794
* security/highwayhash: Update g20181002 -> 1.1Yuri Victorovich2019-05-042-5/+4
| | | | Notes: svn path=/head/; revision=500786
* These ports also build on armv7 (and thus, presumably, on armv6).Mark Linimon2019-05-041-3/+0
| | | | | | | | Approved by: portmgr (tier-2 blanket) Obtained from: armv7 TRYBROKEN run Notes: svn path=/head/; revision=500778
* security/py-pycryptodome: Update to 3.8.1Kai Knoblich2019-05-032-4/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | While I'm here: * Level up port compliance (strip additional shared libraries in subdirectory PublicKey/) Changelog since 3.7.3: New features * Add support for loading PEM files encrypted with AES192-CBC, AES256-CBC and AES256-GCM. * When importing ECC keys, ignore EC PARAMS section that was included by some openssl commands. * Speed-up ECC performance. ECDSA is 33 times faster on the NIST P-256 curve * Added support for NIST P-384 and P-521 curves. * EccKey has new methods size_in_bits() and size_in_bytes(). * Support HMAC-SHA224, HMAC-SHA256, HMAC-SHA384, and HMAC-SHA512 in PBE2/PBKDF2. Resolved issues * repr() did not work for ECC.EccKey. * Fix installation in development mode. * Minimal length for Blowfish cipher is 32 bits, not 40 bits. * Various updates to docs. * DER objects were not rejected if their length field had a leading zero. * Allow legacy RC2 ciphers to have 40-bit keys. * ASN.1 Object IDs did not allow the value 0 in the path. Breaks in compatibility * point_at_infinity() becomes an instance method for Crypto.PublicKey.ECC.EccKey, from a static one. https://www.pycryptodome.org/en/latest/src/changelog.html#april-2019 PR: 237696 Submitted by: John W. O'Brien <john@saltant.com> (maintainer) Approved by: mentors (implicit) Notes: svn path=/head/; revision=500758
* These ports now build on aarch64.Mark Linimon2019-05-033-5/+2
| | | | | | | | | | Where necessary, pet portlint. Approved by: portmgr Obtained from: aarch64 TRYBROKEN run Notes: svn path=/head/; revision=500752
* Fix the a ports that were broken but did not know it.Mathieu Arnold2019-05-034-8/+4
| | | | | | | Differential Revision: https://reviews.freebsd.org/D20140 Notes: svn path=/head/; revision=500732
* Fix build with libressl 2.9.1.Cy Schubert2019-05-034-16/+60
| | | | | | | | | PR: 237621 Reported by: many MFH: 2019Q2 Notes: svn path=/head/; revision=500725
* Update to 4.1.4Jochen Neumeister2019-05-033-6/+5
| | | | | | | | | | | Changelog: https://suricata-ids.org/2019/04/30/suricata-4-1-4-released/ PR: 237684 Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) Sponsored by: Netzkommune GmbH Notes: svn path=/head/; revision=500707
* security/nextcloud-twofactor_u2f: Update to 3.0.0Bernard Spil2019-05-033-5/+7
| | | | | | | 9 Notes: svn path=/head/; revision=500701
* security/tor: Update 0.3.5.8 -> 0.4.0.5Yuri Victorovich2019-05-032-4/+4
| | | | | | | Reported by: upstream notification Notes: svn path=/head/; revision=500686
* Bump PORTREVISION after the last change.Michael Reifenberger2019-05-021-0/+1
| | | | Notes: svn path=/head/; revision=500661
* Apply fix for installation with ruby 2.5Michael Reifenberger2019-05-021-4/+4
| | | | | | | | PR: 237478 Submitted by: Koichiro Iwao Notes: svn path=/head/; revision=500659
* These ports now build on aarch64.Mark Linimon2019-05-012-3/+0
| | | | | | | | | While here, pet portlint. Approved by: portmgr (tier-2 blanket) Notes: svn path=/head/; revision=500604
* Documented vulnerability for gitlab.Matthias Fechner2019-05-011-0/+28
| | | | Notes: svn path=/head/; revision=500580
* security/vuxml: correct dovecot entry.Larry Rosenman2019-04-301-2/+1
| | | | | | | Reported by: leres Notes: svn path=/head/; revision=500573
* security/vuxml: document dovecot vulnerabilitiesLarry Rosenman2019-04-301-0/+33
| | | | Notes: svn path=/head/; revision=500566
* security/klee: fix build with GCC-based architecturesPiotr Kubaj2019-04-301-1/+2
| | | | | | | | | | | | | | Add USES=compiler:c++14-lang to fix build on GCC architectures: Make Error in lib/Basic/CMakeLists.txt: Target "kleeBasic" requires the language dialect "CXX14" (with compiler extensions), but CMake does not know the compile flags to use to enable it. PR: 237623 Approved by: arrowd (maintainer), mat (mentor) Differential Revision: https://reviews.freebsd.org/D20088 Notes: svn path=/head/; revision=500497
* Really fix build on GCC based architectures (missing part of previous commit).Alex Dupre2019-04-301-1/+1
| | | | | | | | PR: 237442 Submitted by: pkubaj Notes: svn path=/head/; revision=500489
* security/libssh2: Update to 1.8.2Steve Wills2019-04-302-4/+4
| | | | | | | | | | | | Fixes broken userauth module in 1.8.1 PR: 237541 Submitted by: leres Approved by: sbz (maintainer) MFH: 2019Q2 Notes: svn path=/head/; revision=500478
* security/keepassxc: Update to 2.4.1Kai Knoblich2019-04-294-50/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Remove the now obsolete patches for CMakeLists.txt (merged by upstream) and the one introduced in r496805 that fixed the build when the KEESHARE option was disabled. Changelog: * Fix database deletion when using unsafe saves to a different file system * Fix opening databases with legacy key files that contain '/' * Fix opening database files from the command line * Fix crash when editing master key * Fix multiple issues with apply button behavior * Fix issues on application startup (tab order, --pw-stdin, etc.) * Fix building without WITH_XC_KEESHARE * Improve UX of update checker; reduce checks to every 7 days * KeeShare improvements * Re-enable Ctrl+C to copy password from search box * Add KeePassXC-Browser integration for Brave browser * SSH Agent: Re-Add keys on database unlock * SSH Agent: Only remove keys on app exit if they are removed on lock * CLI: Add --no-password option * CLI: Improve database extraction to XML * CLI: Don't call mandb on build * CLI: Add debug info * Improve support for Snap theming * Ctrl+PgDn now goes to the next tab and Ctrl+PgUp to the previous * Add .gitrev output to tarball for third-party builds * Add WITH_XC_UPDATECHECK compile flag to toggle the update checker https://github.com/keepassxreboot/keepassxc/blob/2.4.1/CHANGELOG PR: 237625 Submitted by: Andrew Romanenko <melanhit@gmail.com> (maintainer) Approved by: mentors (implicit) Notes: svn path=/head/; revision=500441
* Document gitlab vulnerabilities.Matthias Fechner2019-04-291-0/+38
| | | | Notes: svn path=/head/; revision=500431
* Upgrade to 2.8.1Dan Langille2019-04-292-4/+4
| | | | | | | | | | | | | * Use letsencrypt v2 api as default. * Use dns over tls to check domain status. * Support Windows native taskschuler for cronjob. * fix IDN name issues. * fix other issues. re https://github.com/Neilpang/acme.sh/releases/tag/2.8.1 Notes: svn path=/head/; revision=500428
* security/lynis: Update to 2.7.4Lars Engels2019-04-293-4/+5
| | | | | | | MFH: 2019Q2 Notes: svn path=/head/; revision=500413
* Update to 0.3.0 release.Alex Dupre2019-04-297-125/+22
| | | | Notes: svn path=/head/; revision=500403
* - fix restart when shutdown is slowDirk Meyer2019-04-292-0/+2
| | | | | | | | PR: 228357 Reported by: CUI Hao Notes: svn path=/head/; revision=500398
* - fix __nonnull__ attributeDirk Meyer2019-04-292-1/+36
| | | | | | | | PR: 237602 Submitted by: pe82.de Notes: svn path=/head/; revision=500395
* Update to 0.33.1Sunpoet Po-Chuan Hsieh2019-04-2923-69/+68
| | | | | | | Changes: https://github.com/certbot/certbot/blob/master/CHANGELOG.md Notes: svn path=/head/; revision=500391
* Update to 5.0.19Antoine Brodin2019-04-282-7/+7
| | | | Notes: svn path=/head/; revision=500281
* Update to 1.3.66Antoine Brodin2019-04-282-6/+7
| | | | Notes: svn path=/head/; revision=500280
* Update to 0.5.12Antoine Brodin2019-04-282-6/+7
| | | | Notes: svn path=/head/; revision=500279
* Update to 2.3.0Antoine Brodin2019-04-282-5/+6
| | | | Notes: svn path=/head/; revision=500278
* Update to 0.1.80Antoine Brodin2019-04-282-5/+6
| | | | Notes: svn path=/head/; revision=500277
* Change RUN_DEPENDS from rubygem-msgpack1 to rubygem-msgpackSunpoet Po-Chuan Hsieh2019-04-271-1/+2
| | | | | | | - Bump PORTREVISION for dependency change Notes: svn path=/head/; revision=500259
* Update to 0.708Sunpoet Po-Chuan Hsieh2019-04-272-17/+27
| | | | | | | | | - Fix *_DEPENDS Changes: https://metacpan.org/changes/distribution/Dancer2-Plugin-Auth-Extensible Notes: svn path=/head/; revision=500248
* Update to 0.33.0Sunpoet Po-Chuan Hsieh2019-04-272-4/+4
| | | | | | | | Changes: https://gitlab.com/m2crypto/m2crypto/blob/master/CHANGES https://gitlab.com/m2crypto/m2crypto/commits/master Notes: svn path=/head/; revision=500234
* security/snort3: Update version 3.0.0_253=>3.0.0-254Muhammad Moinur Rahman2019-04-272-4/+4
| | | | Notes: svn path=/head/; revision=500216
* security/git-crypt: fix build with GCC-based architecturesPiotr Kubaj2019-04-271-4/+9
| | | | | | | | | | | | | Add USES=compiler:c++11-lang. Don't add -L${OPENSSLLIB} unconditionally, do it only when SSL library from ports is used. The reason is that adding -L/usr/lib makes ports GCC want to link to libstdc++ from /usr/lib, not from /usr/local/lib/gcc8. This causes linking errors PR: 237525 Approved by: ashish (maintainer), tcberner (mentor) Differential Revision: https://reviews.freebsd.org/D20053 Notes: svn path=/head/; revision=500197
* Add BUILD_DEPENDSSunpoet Po-Chuan Hsieh2019-04-261-0/+1
| | | | | | | | | | security/nettle requires gmp 6.0.0+, otherwise support for public key algorithms will be unavailable. PR: 237582 Submitted by: eugen Notes: svn path=/head/; revision=500165
* security/p5-IO-Socket-SSL: update to 2.066Steve Wills2019-04-262-4/+4
| | | | | | | | PR: 237556 Submitted by: Sergei Vyshenski <svysh.fbsd@gmail.com> (maintainer) Notes: svn path=/head/; revision=500129
* security/vuxml: Add buildbot CRLF injection vulnerabilityKubilay Kocak2019-04-261-0/+43
| | | | Notes: svn path=/head/; revision=500100
* security/py-cryptography: Fix build with libressl 2.9.1Kubilay Kocak2019-04-261-0/+49
| | | | | | | | | | | | | | Backport upstream pull request #4855 by Charlie Li <ml+freebsd vishwin info> PR: 237487 Submitted by: Maciej Pasternacki <maciej pasternacki. net> (v1) Submitted by: gahr (v2) Reported by: Simeon Simeonov <sgs pichove org> Obtained from: https://github.com/pyca/cryptography/pull/4855 Tested by: gahr (all USES=ssl versions), many Notes: svn path=/head/; revision=500082