aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Udate to DAT 4737James E. Housley2006-04-102-4/+4
| | | | Notes: svn path=/head/; revision=159282
* When yule is installed, add the yule user and group as well. This isSam Lawrance2006-04-093-3/+63
| | | | | | | | | | | | | especially useful for package users since they couldn't run the install-user target. PR: ports/90305 (based on) Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Approved by: maintainer timeout on feedback (3 months) Committed from: Sydney Linux User Group codefest at UTS Notes: svn path=/head/; revision=159184
* - Update to 1.3aPav Lucistnik2006-04-083-8/+9
| | | | | | | | | | - Take maintainership PR: ports/93784 Submitted by: Jose Alonso Cardenas Marquez <acardenas@bsd.org.pe> Notes: svn path=/head/; revision=159174
* mplayer -- Multiple integer overflowsMarcus Alves Grando2006-04-081-0/+38
| | | | Notes: svn path=/head/; revision=159128
* - update to 0.21Yen-Ming Lee2006-04-082-5/+5
| | | | Notes: svn path=/head/; revision=159123
* Update to DAT 4736James E. Housley2006-04-072-4/+4
| | | | Notes: svn path=/head/; revision=159073
* - Add Secunia references for last phpMyAdmin issue.Marcus Alves Grando2006-04-071-0/+2
| | | | Notes: svn path=/head/; revision=159052
* Document kaffeine -- buffer overflow vulnerability.Remko Lodder2006-04-071-0/+30
| | | | Notes: svn path=/head/; revision=159037
* Document thunderbird -- javascript execution.Remko Lodder2006-04-071-0/+29
| | | | Notes: svn path=/head/; revision=159034
* - Update to 20060406 snapshot -- fix multiple vulnerabilitiesRenato Botelho2006-04-0714-141/+122
| | | | | | | | | | | | | | | | | | | | | | * CVE-2006-1614 Damian Put discovered an integer overflow in the PE header parser. This is only exploitable if the ArchiveMaxFileSize option is disabled. * CVE-2006-1615 Format string vulnerabilities in the logging code have been discovered, which might lead to the execution of arbitrary code. * CVE-2006-1630 David Luyer discovered, that ClamAV can be tricked into an invalid memory access in the cli_bitset_set() function, which may lead to a denial of service. - Synchronize with clamav port using SUB_FILES, USE_RC_SUBR PR: ports/95425 Submitted by: garga Security: VuXML 6a5174bd-c580-11da-9110-00123ffe8333 Notes: svn path=/head/; revision=159031
* Take over maintainershipRenato Botelho2006-04-072-2/+2
| | | | | | | Approved by: maintainer by email Notes: svn path=/head/; revision=159030
* Update to DAT 4735James E. Housley2006-04-062-4/+4
| | | | Notes: svn path=/head/; revision=158979
* Update the latest zoo entry to match the latest update to the port.Remko Lodder2006-04-061-1/+2
| | | | | | | | This will mark zoo-2.10.1_2 and later as not vulnerable for this issue. Notes: svn path=/head/; revision=158977
* - Mark as FORBIDDENMarcus Alves Grando2006-04-061-0/+2
| | | | | | | Security: http://www.vuxml.org/freebsd/6a5174bd-c580-11da-9110-00123ffe8333.html Notes: svn path=/head/; revision=158976
* phpmyadmin -- XSS vulnerabilitiesMarcus Alves Grando2006-04-061-0/+58
| | | | | | | phpmyadmin -- 'set_theme' Cross-Site Scripting Notes: svn path=/head/; revision=158975
* clamav -- Multiple VulnerabilitiesMarcus Alves Grando2006-04-061-0/+43
| | | | Notes: svn path=/head/; revision=158969
* - Update to 0.88.1 -- Fix multiple vulnerabilitiesRenato Botelho2006-04-066-32/+11
| | | | | | | | | | | | | | | | | | | | | | | * CVE-2006-1614 Damian Put discovered an integer overflow in the PE header parser. This is only exploitable if the ArchiveMaxFileSize option is disabled. * CVE-2006-1615 Format string vulnerabilities in the logging code have been discovered, which might lead to the execution of arbitrary code. * CVE-2006-1630 David Luyer discovered, that ClamAV can be tricked into an invalid memory access in the cli_bitset_set() function, which may lead to a denial of service. - Use USE_RC_SUBR=script PR: ports/95403 Submitted by: garga Approved by: maintainer timeout (mnag on behalf of secteam) Security: VuXML 6a5174bd-c580-11da-9110-00123ffe8333 Notes: svn path=/head/; revision=158963
* Remove the skip port. Created before there was an IPSec implementation onArchie Cobbs2006-04-0695-3868/+0
| | | | | | | | FreeBSD, it is now extremely obsolete. In any case it doesn't compile. Earlier version of this port can still be used on older versions of FreeBSD of course. Notes: svn path=/head/; revision=158956
* Add cvename to the recent OpenVPN entry.Remko Lodder2006-04-061-0/+2
| | | | | | | Submitted by: Matthias Andree <matthias dot andree at gmx dot de> Notes: svn path=/head/; revision=158930
* - Change my ports MAINTAINER to jmelo@FreeBSD.org.Jean Milanez Melo2006-04-053-4/+4
| | | | | | | Approved by: mnag (mentor) Notes: svn path=/head/; revision=158897
* Update to DAT 4734James E. Housley2006-04-052-4/+4
| | | | Notes: svn path=/head/; revision=158894
* Document mediawiki -- hardcoded placeholder string security bypassRemko Lodder2006-04-051-0/+30
| | | | | | | vulnerability. Notes: svn path=/head/; revision=158893
* Document netpbm -- buffer overflow in pnmtopng.Remko Lodder2006-04-051-0/+31
| | | | Notes: svn path=/head/; revision=158892
* Document zoo -- stack based buffer overflow.Remko Lodder2006-04-051-0/+30
| | | | Notes: svn path=/head/; revision=158887
* - Update to 2.4.0Renato Botelho2006-04-054-26/+14
| | | | | | | | | | | - Substitute deprecated USE_RCORDER with USE_RC_SUBR - Add some dependency that are necessary according to the documentation PR: ports/95349 Submitted by: maintainer Notes: svn path=/head/; revision=158884
* Document mediawiki -- cross site scripting vulnerability.Remko Lodder2006-04-051-0/+30
| | | | Notes: svn path=/head/; revision=158883
* Update to DAT 4733James E. Housley2006-04-052-4/+4
| | | | Notes: svn path=/head/; revision=158878
* dia -- XFig Import Plugin Buffer OverflowMarcus Alves Grando2006-04-051-0/+34
| | | | Notes: svn path=/head/; revision=158873
* openvpn -- LD_PRELOAD code execution on client through malicious or ↵Marcus Alves Grando2006-04-051-0/+35
| | | | | | | | | | compromised server PR: 95343 Submitted by: Matthias Andree <matthias.andree__gmx.de> Notes: svn path=/head/; revision=158869
* - Update to 2.0.6Renato Botelho2006-04-059-216/+12
| | | | | | | | | | | | | | | | * security fix for client LD_PRELOAD code injection vulnerability through compromised upstream servers (FreeBSD VuXML Vuln VID be4ccb7b-c48b-11da-ae12-0002b3b60e4c, filed in separate PR) CVE id not known yet * 2 other changes only relevant for Linux and NetBSD, not detailed here. PR: ports/95345 Submitted by: maintainer Security: VuXML be4ccb7b-c48b-11da-ae12-0002b3b60e4c Notes: svn path=/head/; revision=158868
* - Update to 0.7.2Renato Botelho2006-04-052-4/+4
| | | | | | | * Fixed icmp6 handling with diffs supplied by Ralf Wagner. Notes: svn path=/head/; revision=158862
* samba -- Exposure of machine account credentials in winbind log filesMarcus Alves Grando2006-04-051-0/+44
| | | | Notes: svn path=/head/; revision=158830
* Upgrade pubcookie from 3.3.0-beta2 to 3.3.0a fixing serious XSSBrooks Davis2006-04-051-0/+93
| | | | | | | vulnerabilities. Notes: svn path=/head/; revision=158821
* Drop maintainer-shipEmanuel Haupt2006-04-041-1/+1
| | | | Notes: svn path=/head/; revision=158770
* Update to 1.3.9Emanuel Haupt2006-04-042-4/+4
| | | | Notes: svn path=/head/; revision=158764
* Update to 2.2.6.Roman Bogorodskiy2006-04-032-5/+4
| | | | Notes: svn path=/head/; revision=158736
* Update to DAT 4732James E. Housley2006-04-032-4/+4
| | | | Notes: svn path=/head/; revision=158735
* - Upgrade to 1.4.3.Jun Kuriyama2006-04-038-48/+30
| | | | | | | | | - Handle hidden dependency on libusb (1). Submitted by: Peter Pentchev <roam@ringlet.net> (1) Notes: svn path=/head/; revision=158721
* Update to 1.07Erwin Lansing2006-04-032-4/+4
| | | | | | | Noticed by: Ken Hathaway <kenhat@gmail.com> Notes: svn path=/head/; revision=158719
* BROKEN: Does not compileKris Kennaway2006-04-031-0/+2
| | | | Notes: svn path=/head/; revision=158678
* - Update to 1.2.3Pav Lucistnik2006-04-022-5/+6
| | | | | | | | PR: ports/94077 Submitted by: Daniel Gerzo <danger@rulez.sk> (maintainer) Notes: svn path=/head/; revision=158610
* Fill in the version numbers for the vidsEdwin Groothuis2006-04-011-2/+2
| | | | | | | | | | | 6e3b12e2-6ce3-11da-b90c-000e0c2e438a and 82a41084-6ce7-11da-b90c-000e0c2e438a to show which Mantis versions are vulnerable. Submitted by: In cooperation with dvl Notes: svn path=/head/; revision=158523
* The Project Cyrus web site is migrated to a new server.Hajimu UMEMOTO2006-04-014-4/+4
| | | | Notes: svn path=/head/; revision=158512
* Update to DAT 4731James E. Housley2006-03-312-4/+4
| | | | Notes: svn path=/head/; revision=158486
* Sorry for deletion of PORTEOCH.Shigeyuki Fukushima2006-03-311-0/+1
| | | | Notes: svn path=/head/; revision=158485
* Reset green@ as maintainer at his request.Mark Linimon2006-03-312-2/+2
| | | | | | | Hat: portmgr Notes: svn path=/head/; revision=158458
* change master siteYing-Chieh Liao2006-03-312-3/+2
| | | | | | | | PR: 95034 Submitted by: maintainer Notes: svn path=/head/; revision=158453
* upgrade to 2.2Ying-Chieh Liao2006-03-316-21/+68
| | | | | | | | PR: 95044 Submitted by: maintainer Notes: svn path=/head/; revision=158452
* Update to KDE 3.5.2Michael Nottebrock2006-03-308-138/+10
| | | | Notes: svn path=/head/; revision=158431
* Update to 1.60.Shigeyuki Fukushima2006-03-303-9/+8
| | | | | | | | PR: ports/94683 Submitted by: Vladimir Timofeev <vovkasm@gmail.com> Notes: svn path=/head/; revision=158429
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-27 01:48:38 +0000