aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* devel/icu: update to 69.1Jan Beich2021-04-081-1/+1
| | | | | Changes: https://github.com/unicode-org/icu/releases/tag/release-69-1 Reported by: GitHub (watch releases)
* security/py-keyring: update to 23.0.1Piotr Kubaj2021-04-082-4/+4
| | | | | PR: 254895 Approved by: douglas@douglasthrift.net (maintainer)
* security/fwknop: Fix compilation on FreeBSD 13+Kevin Bowling2021-04-082-4/+20
| | | | | | PR: 254570 Reported by: Jens Grassel <freebsd-ports@jan0sch.de> Approved by: Sean Greven <sean.greven@gmail.com> (maintainer)
* security/gnupg: Update to 2.3.0Adam Weinberger2021-04-088-93/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes: * A new experimental key database daemon is provided. To enable it put "use-keyboxd" into gpg.conf and gpgsm.conf. Keys are stored in a SQLite database and make key lookup much faster. * New tool gpg-card as a flexible frontend for all types of supported smartcards. * New option --chuid for gpg, gpgsm, gpgconf, gpg-card, and gpg-connect-agent. * The gpg-wks-client tool is now installed under bin; a wrapper for its old location at libexec is also installed. * tpm2d: New daemon to physically bind keys to the local machine. See https://gnupg.org/blog/20210315-using-tpm-with-gnupg-2.3.html * gpg: Switch to ed25519/cv25519 as default public key algorithms. * gpg: Verification results now depend on the --sender option and the signer's UID subpacket. [#4735] * gpg: Do not use any 64-bit block size cipher algorithm for encryption. Use AES as last resort cipher preference instead of 3DES. This can be reverted using --allow-old-cipher-algos. * gpg: Support AEAD encryption mode using OCB or EAX. * gpg: Support v5 keys and signatures. * gpg: Support curve X448 (ed448, cv448). * gpg: Allow use of group names in key listings. [e825aea2ba] * gpg: New option --full-timestrings to print date and time. * gpg: New option --force-sign-key. [#4584] * gpg: New option --no-auto-trust-new-key. * gpg: The legacy key discovery method PKA is no longer supported. The command --print-pka-records and the PKA related import and export options have been removed. * gpg: Support export of Ed448 Secure Shell keys. * gpgsm: Add basic ECC support. * gpgsm: Support creation of EdDSA certificates. [#4888] * agent: Allow the use of "Label:" in a key file to customize the pinentry prompt. [5388537806] * agent: Support ssh-agent extensions for environment variables. With a patched version of OpenSSH this avoids the need for the "updatestartuptty" kludge. [224e26cf7b] * scd: Improve support for multiple card readers and tokens. * scd: Support PIV cards. * scd: Support for Rohde&Schwarz Cybersecurity cards. * scd: Support Telesec Signature Cards v2.0 * scd: Support multiple application on certain smartcard. * scd: New option --application-priority. * scd: New option --pcsc-shared; see man page for important notes. * dirmngr: Support a gpgNtds parameter in LDAP keyserver URLs. * The symcryptrun tool, a wrapper for the now obsolete external Chiasmus tool, has been removed. * Full Unicode support under Windows for the command line. [#4398] Release-info: https://dev.gnupg.org/T5343
* security/p5-Net-SinFP: update to 2.10Sofian Brabez2021-04-082-27/+11
| | | | | | Simplify makefile, cleanups, remove the db fetch, regenerate distinfo. Reported by: portscout
* - Update security/py-scramp to 1.4.0Wen Heping2021-04-082-4/+4
|
* security/logcheck: Update to 1.3.23Neel Chauhan2021-04-082-4/+4
| | | | | | | Changes: https://tracker.debian.org/news/1237718/accepted-logcheck-1323-source-into-unstable/ PR: 254700 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org> (maintainer)
* security/clamav: Update to 0.103.2Neel Chauhan2021-04-083-27/+28
| | | | | | | Changes: https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html PR: 254862 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org> (maintainer)
* Document multiple vulnerabilities in security/clamavNeel Chauhan2021-04-081-0/+35
| | | | | PR: 254861 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org>
* Document Jenkins Security Advisory 2021-04-07Li-Wen Hsu2021-04-081-0/+33
| | | | Sponsored by: The FreeBSD Foundation
* Remove useless Created by: headers mentioning meDmitry Marakasov2021-04-073-6/+0
|
* security/pidentd: Remove portJuraj Lutter2021-04-077-258/+0
| | | | | | | | pidentd is broken on recent FreeBSD versions and abandoned upstream. Remove port, disconnect from category Makefile. PR: 254748 Reported by: daniel.engberg.lists@pyret.net
* security/vuxml: document Node.js April 2021 Security ReleasesBradley T. Hughes2021-04-071-0/+47
| | | | https://nodejs.org/en/blog/vulnerability/april-2021-security-releases/
* Remove expired ports:Rene Ladan2021-04-0723-715/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 2021-04-01 ftp/wzdftpd: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 astro/roadmap: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cosmo: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/bomberinstinct: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/drm: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/bygfoot: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cre: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 irc/hybserv: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 irc/xaric: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 mail/elmo: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 misc/cave: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/bugs: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/dmitry: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/doorman: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 shells/esh: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 sysutils/cpu: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 textproc/libcrm114: No known users, dead upstream 2021-04-01 x11/wmmatrix: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/wmxss: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/tycoon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xgrab: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xbanner: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/bricons: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xmon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cavezofphear: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 astro/saoimage: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/ksmp3play: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/jamin: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/musicbox-tag-editor: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/nspmod: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/cdplay: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/gimmix: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/ghostess: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/wmrecord: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/toolame: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/shout: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/grappa: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/phylip: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/lagan: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 cad/varkon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 cad/transcalc: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 comms/seyon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 comms/efax: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 converters/vda2fbd: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 converters/shftool: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/openzz: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/sourcenav: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/gb: Unmaintained and dead upstream 2021-04-01 dns/checkdns: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 dns/inadyn-mt: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 editors/gate: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 editors/thoteditor: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/cinc: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/e-uae: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/dtcyber: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 ftp/jftpgw: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 ftp/pureadmin: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-02 textproc/hs-pandoc-citeproc: Integrated into textproc/hs-pandoc
* security/vuxml: Document upnp stack overflow vulnerabilityLewis Cook2021-04-071-0/+30
| | | | | Approved by: fernape (mentor) Differential Revision: https://reviews.freebsd.org/D29618
* security/vuxml: add FreeBSD SA-21:10.jail_mountPhilip Paeps2021-04-071-0/+32
|
* security/vuxml: add FreeBSD SA-21:09.accept_filterPhilip Paeps2021-04-071-0/+35
|
* security/vuxml: add FreeBSD SA-21:08.vmPhilip Paeps2021-04-071-0/+35
|
* security/vuxml: add FreeBSD SA to CVE-2021-3449/50Philip Paeps2021-04-071-0/+6
| | | | | Note that FreeBSD 12.2 prior to FreeBSD 12.2-RELEASE-p5 was vulnerable to CVE-2021-3449 and CVE-2021-3450. Reference FreeBSD-SA-21:07.openssl.
* One more small cleanup, forgotten yesterday.Mathieu Arnold2021-04-07413-413/+0
| | | | Reported by: lwhsu
* security/wpa_supplicant-devel: Update to latest GH commitCy Schubert2021-04-072-5/+5
| | | | Update to the latest w1.fi commit, proxied through my GH account.
* security/krb5-devel: update to the latest MIT/KRB5 github commit.Cy Schubert2021-04-072-5/+5
|
* Update to 0.071.Vanilla I. Shu2021-04-072-4/+4
|
* security/gvm-libs: portlint, fix plistAdriaan de Groot2021-04-062-1/+5
| | | | | One orphaned directory shows up in poudriere bulk -t; while here, add missing (transitive) LIB_DEPENDS.
* security/openvpn-devel: Update to 2021-W13 development snapshotMatthias Andree2021-04-062-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Commit history from 202049 to 202113: 5ac8c3c7 Fix async push broken after auth deferred refactor 8ccce69d log file descriptor in more socket related error messages c5fec838 Move auth deferred related members into its own struct 6ea62d50 Remove deprecated option '--keysize' 60f5889a Deprecate non TLS mode in OpenVPN 79ff3f79 Allow running a default configuration with TLS libraries without BF-CBC 9e702a5d Always disable TLS renegotiations 203afbe9 reliable: retransmit if 3 follow-up ACKs are received 343b6119 Remove do_init_socket_2 and do_init_socket_1 wrapper function 9fe0b2c2 Extract multi_assign_peer_id into its own function 18b4a838 Remove thread_mode field of multi_context aba8776e Fix 'compress migrate' for 2.2 clients. 8fa8a175 Implement '--compress migrate' to migrate to non-compression setup 72e1ecb5 Move is_proto function to the socket.h header 9eb285f4 Remove unused variable pass_config_info c0b36e9f Remove unused function tls_test_auth_deferred_interval 3667df1d Remove unused field txqueuelen from struct tuntap 14061e3e Remove pointless tun_adjust_frame_parameters function 137eb670 Remove code for aligning non-swapped compression bdc11ae4 Rename tunnel_server_udp_single_threaded to tunnel_server_udp 213fd3ee Remove superflous ifdefs around enum like defines 997b006a Get rid of last PLUGIN_DEF_AUTH #ifdef 76ccc62d Stop using deprecated getpass() 2d5c437f Remove automatic service d11c273b Fix #elif TARGET_LINUX missing defined() call f91e2116 Remove support for non ISO C99 vararg support 7975e33b Remove flexible array member autoconf check ca570706 Cleanup print_details and add signature/ED certificate print 467b16dc Use correct types for OpenSSL and Windows APIs e756e12a Fix socket related functions using int instead of socket_descriptor_t 7fc608da Make buffer related function conversion explicit when narrowing 5a2ed714 Restore also ping related options on a reconnect 7064ccb9 Move NCP saving and restore to the prepush restore code 528a78fb Move restoring pre pull options to initialising of c2 context 1e938c50 openvpnserv: Cache last error before it is overridden 1b71f859 Remove empty dummy functions 5b8a1231 Deprecate the --verify-hash option 26117a82 Document the simple self-signed certificate setup in examples 423ced96 Support fingerprint authentication without CA certificate e5e9a07e tapctl: Resolve MSVC C4996 warnings c3a7065d Implement peer-fingerprint to check fingerprint of peer certificate d1fe6d52 Extend verify-hash to allow multiple hashes df471f4d iservice: Resolve MSVC C4996 warnings 709c3810 interactive.c: Resolve MSVC C4996 warning 26540310 tun.c: Remove dead code 6eb28f7c Wipe Socks5 credentials after use f9d9fe55 Move extract_iv_proto to ssl_util.c/h 45e7d412 Fix multiple problems when compiling with LLVM/Windows (clang-cl) 1480903e README.wolfssl Update 9b2e8034 Remove compat-lz4 references from VS project files 60c18b45 build: Add support for pkg-config < 0.28 for old autoconf versions f38819b7 Add README.wolfssl documentating the state of WolfSSL in OpenVPN f6dca235 Support for wolfSSL in OpenVPN 4524feb2 Avoid generating unecessary mbed debug messages 24596b25 build: Remove compat-lz4 4170da07 Do not print Diffie Hellman parameters file to log file 476990d4 EVP_DigestSignFinal siglen parameter correction b0bff559 Require at least 100MB of mlock()-able memory if --mlock is used. fdb4f276 Allow pending auth to be send from a auth plugin d8ed5932 Change parameter of send_auth_pending_messages from context to tls_multi 88664aba Refactor extract_var_peer_info into standalone function and add ssl_util.c 53229047 Implement server side of AUTH_PENDING with extending timeout 4cf01c8e Fix EVP_PKEY_CTX_... compilation with LibreSSL 06f6cf3f Prefer TLS libraries TLS PRF function, fix OpenVPN in FIPS mode 3338f2d5 Quote the domain name argument passed to the wmic command 04876274 Add S_EXITCODE flag for openvpn_run_script to report exit code b29f7dff Introduce management client state for AUTH_PENDING notifications 3f8fb2b2 Implement client side handling of AUTH_PENDING message 0714ed80 Check return values in md_ctx_init and hmac_ctx_init fdfbd444 Explain structver usage in sample defer plugin. 413580b6 Change pull request timeout use a timeout rather than a number ce652e7d Remove inetd support from OpenVPN a385a3e8 More explicit versioning compatibility in sample-plugins/defer/simple.c 7d1361c1 Update openvpn_plugin_func_v2 to _v3 in sample-plugins/defer/simple.c 595be121 Documentation fixes around openvpn_plugin_func_v3 in openvpn-plugin.h.in 2d7e1954 Fix naming error in sample-plugins/defer/simple.c 452e016c clean up / rewrite sample-plugins/defer/simple.c 6a0c51ba Make OPENVPN_PLUGIN_ENABLE_PF failures FATAL ef2405a6 Document common uses of 'echo' directive, re-enable logging for 'echo'. 15daa988 Fix tls-auth mismatch OCC message when tls-cryptv2 is used. 3b1ded39 Man page sections corrections e0e7625c Skip DHCP renew with Wintun adapter b1a8213e Remove 1 second delay before running netsh 8a8ee283 Clarify --block-ipv6 intent and direction. aa58035a Zero initialise msghdr prior to calling sendmesg 86d7e990 ssl_common.h: fix 'not all control paths return a value' msvc warning ab4688e3 Fix too early argv freeing when registering DNS a686f7e2 Fix line number reporting on config file errors after <inline> segments PR: 254785 Submitted by: Eric F. Crist (maintainer) -- Diese und die folgenden Zeilen werden ignoriert -- > Description of fields to fill in above: 76 columns --| > PR: If and which Problem Report is related. > Submitted by: If someone else sent in the change. > Reported by: If someone else reported the issue. > Reviewed by: If someone else reviewed your modification. > Approved by: If you needed approval for this commit. > Obtained from: If the change is from a third party. > MFC after: N [day[s]|week[s]|month[s]]. Request a reminder email. > MFH: Ports tree branch name. Request approval for merge. > Relnotes: Set to 'yes' for mention in release notes. > Security: Vulnerability reference (one per line) or description. > Sponsored by: If the change was sponsored by an organization (each collaborator). > Differential Revision: https://reviews.freebsd.org/D### (*full* phabric URL needed). > Empty fields above will be automatically removed. M openvpn-devel/Makefile M openvpn-devel/distinfo
* security/fizz: Update 2021.03.29.00 -> 2021.04.05.00Yuri Victorovich2021-04-062-4/+4
|
* security/aws-vault: Update to 6.3.1Dmitri Goutnik2021-04-062-7/+6
| | | | Changes: https://github.com/99designs/aws-vault/releases/tag/v6.3.1
* security/nettle: move patches to filesPiotr Kubaj2021-04-062-0/+0
|
* all: Remove all other $FreeBSD keywords.Mathieu Arnold2021-04-06127-301/+31
|
* Remove # $FreeBSD$ from Makefiles.Mathieu Arnold2021-04-061323-1326/+0
|
* security/vuxml: Document XML round-trip vulnerability of REXML in RubyKoichiro Iwao2021-04-061-0/+39
| | | | | | | | Document XML round-trip vulnerability of REXML in Ruby. PR: 254793 Reported by: Yasuhiro Kimura <yasu@utahime.org> Security: CVE-2021-28965
* security/nettle: fix build on powerpc64*Piotr Kubaj2021-04-062-0/+38
| | | | | | | | | | | Due to the string "swap_mask" being replaced with the vector register, the assembly label pointing at the local data variable .swap_mask was being replaced as well, causing the local label to be named ".0", which the clang integrated assembler treats as a syntax error. Change the name to .swap_data. Submitted by: bdragon
* security/openssl: Fix /dev/crypto issue with 1.1.1kBernard Spil2021-04-061-2/+9
| | | | | | PR: 254643 Reported by: <cryx-freebsd h3q com> Reviewed by: wollman
* Removed svn keywords again.Matthias Fechner2021-04-061-1/+1
| | | | | They went in by accident while merging older commits. Reported by: jbeich
* Add vuln-flat.xml to the ignore list and remove the one committed by accidentRene Ladan2021-04-061-180293/+0
|
* Document new vulnerabilities in www/chromium < 89.0.4389.114Rene Ladan2021-04-061-0/+49
| | | | Obtained from: https://chromereleases.googleblog.com/2021/03/stable-channel-update-for-desktop_30.html
* Document gitlab-ce vulnerabilities.Matthias Fechner2021-04-062-0/+180329
|
* Update to 1.1.0 which is required for gitlab-ce 13.10.Matthias Fechner2021-04-062-6/+5
|
* Update libgit2 to 1.1.0.Matthias Fechner2021-04-061-1/+1
| | | | | | | | | This update is also required for www/gitlab-ce 13.10 upgrade. Changelog: https://github.com/libgit2/libgit2/releases/tag/v1.1.0 PR: 252098
* security/openssl-unsafe: Unbreak with FreeBSD 13Bernard Spil2021-04-062-2/+11
|
* Build and install example applicationsSunpoet Po-Chuan Hsieh2021-03-303-1/+70
| | | | | | | - Bump PORTREVISION for package change Notes: svn path=/head/; revision=569597
* Clean up TEST_DEPENDSSunpoet Po-Chuan Hsieh2021-03-301-2/+1
| | | | Notes: svn path=/head/; revision=569591
* Update to 3.7.2Sunpoet Po-Chuan Hsieh2021-03-303-12/+37
| | | | | | | | | Changes: https://git.lysator.liu.se/nettle/nettle/blob/master/NEWS Exp-run by: antoine Notes: svn path=/head/; revision=569572
* security/suricata: Update to 5.0.6Rainer Hurling2021-03-303-7/+10
| | | | | | | | | | Changelog: https://redmine.openinfosecfoundation.org/versions/164 PR: 254579 Submitted by: Franco Fichtner <franco@opnsense.org> (maintainer) Notes: svn path=/head/; revision=569557
* security/fizz: Update 2021.03.22.00 -> 2021.03.29.00Yuri Victorovich2021-03-292-4/+4
| | | | Notes: svn path=/head/; revision=569513
* Fix @sample usage, problem exposed by r569271.Guido Falsi2021-03-291-1/+1
| | | | Notes: svn path=/head/; revision=569503
* Update to the latest w1.fi commit, proxied through my GH account.Cy Schubert2021-03-292-5/+5
| | | | Notes: svn path=/head/; revision=569495
* security/krb5-devel: update to the latest MIT/KRB5 github commit.Cy Schubert2021-03-292-5/+5
| | | | Notes: svn path=/head/; revision=569493
* Rebuild lang/rust consumers after r569489Tobias Kortkamp2021-03-297-5/+7
| | | | Notes: svn path=/head/; revision=569491
* Bump PORTREVISION on *-sbcl ports after lang/sbcl upgrade.Kirill Ponomarev2021-03-291-1/+1
| | | | Notes: svn path=/head/; revision=569434
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-15 03:18:18 +0000