kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
389698 commits 42 branches 80 tags 2.7 GiB
Commit graph

22865 commits

Author SHA1 Message Date
Dmitry Marakasov
705c944592 - Clarify LICENSE 
- Don't install unneeded docs
- Switch to options helpers
- Regenerate patches with `make makepatch`
 2016-03-12 14:09:35 +00:00
Raphael Kubo da Costa
179fb16180 Update to 2.32. 
Changes: http://keepass.info/news/n160309_2.32.html

PR:		207861
Submitted by:	Ben Woods <woodsb02@gmail.com> (maintainer)
 2016-03-12 12:41:58 +00:00
Hajimu UMEMOTO
d5223d4aff the GS2 plugin can be buildable with the MIT Kerberos as well. 2016-03-12 02:58:46 +00:00
Sunpoet Po-Chuan Hsieh
5bf3afe3b8 - Update to 1.9.0 
Changes:	https://github.com/capistrano/sshkit/blob/master/CHANGELOG.md
 2016-03-12 00:02:22 +00:00
Sunpoet Po-Chuan Hsieh
fc68465b9e - Update to 2.1.1 
- Add NO_ARCH

Changes:	https://github.com/pbhogan/scrypt/blob/master/CHANGELOG.md
 2016-03-12 00:02:18 +00:00
Bryan Drewery
6423a71442 Document OpenSSH 7.2p2 fix for X11Forwarding command injection 2016-03-11 22:50:09 +00:00
Bryan Drewery
8699aa41f2 - Update to 7.2p2 which fixes X11Forwarding command injection vulnerability. 
Changelog:	http://www.openssh.com/txt/release-7.2p2
Advisory:	http://www.openssh.com/txt/x11fwd.adv
 2016-03-11 22:49:26 +00:00
Mark Felder
0bc718d0a0 Document net/quagga vulnerability 
Security:	CVE-2016-2342
 2016-03-10 23:37:44 +00:00
Mark Felder
e714095ac5 net-im/ricochet: Document vulnerability 
PR:		207536
 2016-03-10 19:50:28 +00:00
Raphael Kubo da Costa
4e84a1c4aa Update to 16.0.0. 
PR:		207789
Submitted by:	jochen@jochen-neumeister.de (first version),
		Axel.Rau@Chaos1.DE (later version)
Approved by:	Axel.Rau@Chaos1.DE (maintainer)
 2016-03-10 16:30:32 +00:00
Mark Felder
bbf94ea27a security/pidgin-otr: Update to 4.0.2 
Changes:

- Fix use-after-free issue during SMP
- Updated Spanish, German, Norwegian Bokmål translations
- New Danish translation
- The Windows binary has been linked with updated versions of libotr,
    libgcrypt, libgpg-error, and other supporting libraries

MFH:		2016Q1
Security:	CVE-2015-8833
Security:	http://www.vuxml.org/freebsd/77e0b631-e6cf-11e5-85be-14dae9d210b8.html
 2016-03-10 15:06:51 +00:00
Mark Felder
515d586b1c Document security/pidgin-otr vulnerability 
Security:	CVE-2015-8833
 2016-03-10 15:03:39 +00:00
Philippe Audeoud
ab151d0807 - Update to 2.55 2016-03-10 09:09:16 +00:00
Jan Beich
dceef331b5 security/nss: refresh patch with version approved upstream 2016-03-10 00:18:31 +00:00
Mark Felder
2cb1dfe780 Update libotr vulnerability information 
Correct description is "integer overflow"

libotr3 has also been added as vulnerable. It appears vulnerable as it
also has datalen defined as unsigned int and identical functions.

Security:	http://www.vuxml.org/freebsd/c2b1652c-e647-11e5-85be-14dae9d210b8.html
 2016-03-09 22:58:44 +00:00
Mark Felder
c54823e66a Document security/libotr vulnerability 
It is not clear at this time if security/libotr3 is also affected.

Security:	CVE-2016-2851
 2016-03-09 22:42:39 +00:00
Mark Felder
23cc40478d security/libotr: Update to 4.1.1 
Changes:
* Fix an integer overflow bug that can cause a heap buffer overflow (and
from there remote code execution) on 64-bit platforms
* Fix possible free() of an uninitialized pointer
* Be stricter about parsing v3 fragments
* Add a testsuite ("make check" to run it), but only on Linux for now,
since it uses Linux-specific features such as epoll
* Fix a memory leak when reading a malformed instance tag file
* Protocol documentation clarifications

MFH:		2016Q1
Security:	CVE-2016-2851
 2016-03-09 22:37:52 +00:00
Dmitry Marakasov
128243116e - Add LICENSE_FILE 
- Add NO_ARCH
- Don't install LICENSE with PORTDOCS
- Install bash completion where it belongs

PR:		207817
Submitted by:	amdmi3
Approved by:	lme (maintainer)
 2016-03-09 20:46:17 +00:00
Antoine Brodin
9d6b8e3e70 Sleuthkit 4.2.0 switched from 100 nano seconds precision to 1 nano second 
precision for *time_nano fields.  Adjust py-dfvfs for this.

See: https://github.com/log2timeline/dfvfs/issues/116
 2016-03-09 17:25:52 +00:00
Vanilla I. Shu
9923887cd7 Update to 1.7.1. 2016-03-09 07:21:25 +00:00
Vanilla I. Shu
5f3cfc09ca Update to 1.7.1. 2016-03-09 07:21:02 +00:00
Jan Beich
0d8f020d6f Adjust brotli vulnerability after MFH in r410670 2016-03-09 01:47:19 +00:00
Jan Beich
f10ee991c9 Adjust brotli vulnerability after r410664 2016-03-08 21:16:45 +00:00
Kurt Jaeger
196d198cd0 security/pam_google_authenticator: fix space/tab in Makefile 
PR:		207229
 2016-03-08 20:45:15 +00:00
Kurt Jaeger
01a8c41893 security/pam_google_authenticator: fix .so location 
- move .so location back to where it was

PR:		207229
Submitted by:	Ralf van der Enden <tremere@cainites.net>
Approved by:	just-fix-it
 2016-03-08 20:43:20 +00:00
Jan Beich
b169d2913c Move brotli to its own entry 2016-03-08 20:41:24 +00:00
Jan Beich
666352f240 Document recent Firefox vulnerabilities 2016-03-08 19:45:11 +00:00
Sunpoet Po-Chuan Hsieh
96a6768f10 - Add LICENSE_FILE 2016-03-08 18:52:09 +00:00
Sunpoet Po-Chuan Hsieh
b56a6d21a2 - Update to 3.1.11 
Changes:	https://github.com/codahale/bcrypt-ruby/blob/master/CHANGELOG
 2016-03-08 18:52:05 +00:00
Sunpoet Po-Chuan Hsieh
e13d0d863e - Update to 1.203 
Changes:	http://search.cpan.org/dist/Digest-Bcrypt/CHANGES
 2016-03-08 18:51:52 +00:00
Mark Felder
9f240c045b security/sshguard: Update to 1.6.3 
Changelog:	https://sourceforge.net/p/sshguard/mailman/message/34733464/

PR:		207511
Submitted by:	<dcarmich@dcarmichael.net>
 2016-03-08 16:20:03 +00:00
Mathieu Arnold
018eeadae5 Always set the DEFAULT github DISTFILE with .tar.gz for EXTRACT_SUFX. 
Fix distinfo for the offending ports.

lang/yorick's tag was moved, and the added patch was no longer needed.

PR:			207644
Submitted by:		mat
Exp-run by by:		antoine
Sponsored by:		Absolight
Differential Revision:	https://reviews.freebsd.org/D4268
 2016-03-08 13:09:12 +00:00
Cy Schubert
7855438b5f Update 1.13.3 --> 1.13.4 2016-03-08 06:57:00 +00:00
Jason Unovitch
8d10903695 Document Django multiple vulnerabilities 
Security:	CVE-2016-2512
Security:	CVE-2016-2513
Security:	https://vuxml.FreeBSD.org/freebsd/f9e6c0d1-e4cc-11e5-b2bd-002590263bf5.html
 2016-03-08 01:45:27 +00:00
Jason Unovitch
6ed4f1b94a Wrap long lines. No content change. 2016-03-08 01:09:24 +00:00
Jason Unovitch
02139382dd Document Wordpress multiple vulnerabilities 
While here, fix URL reference in last Wordpress entry

Security:	CVE-2016-2221
Security:	CVE-2016-2222
Security:	https://vuxml.FreeBSD.org/freebsd/fef03980-e4c6-11e5-b2bd-002590263bf5.html
 2016-03-08 01:00:34 +00:00
Antoine Brodin
5e08487d1d Update to 0.22 2016-03-07 20:24:02 +00:00
Sunpoet Po-Chuan Hsieh
ac1765d0ca - Fix LICENSE 
- Add LICENSE_FILE
 2016-03-07 20:12:58 +00:00
Sunpoet Po-Chuan Hsieh
152e981b71 - Update to 2.0.1 
Changes:	https://github.com/google/oauth2client/blob/master/CHANGELOG.md
 2016-03-07 20:12:41 +00:00
Antoine Brodin
48d630e356 - Switch regripper to USE_GITHUB 
- Update regripper to a recent snapshot (2.8.20160225)
- Merge regripperplugins into regripper
 2016-03-07 19:34:42 +00:00
Matthias Andree
56dcd4e91d Security upgrade to new upstream release 0.67. 
Unix-relevant changes:
* Security fix: a buffer overrun in the old-style SCP protocol when receiving
  the header of each file downloaded from the server is fixed. (CVE-2016-2563)
* Assorted other robustness fixes for crashes and memory leaks.

MFH:		2016Q1
Security:	7f0fbb30-e462-11e5-a3f3-080027ef73ec
Security:	CVE-2016-2563
 2016-03-07 16:54:16 +00:00
Guido Falsi
f654b4da14 Add CVE Names for old asterisk vulnerabilities. 2016-03-07 15:37:38 +00:00
Matthias Andree
1da2e3f583 New: remote buffer overflow in PuTTY < 0.67's scp documented 
Security:	CVE-2016-2563
 2016-03-07 12:53:01 +00:00
Adam Weinberger
ed50139dd7 Update to 1.201. Add NO_ARCH, and sort plist. 
Changes: https://metacpan.org/changes/distribution/Digest-Bcrypt
 2016-03-06 21:57:39 +00:00
Bernard Spil
8be19dc2f2 security/libressl*: Register conflict with security/openssl-devel 
- Add conflict for security/openssl-devel
 - Sort conflicts alphabetically

Reviewed by:	feld (mentor), koobs (mentor)
Approved by:	feld (mentor)
Differential Revision:	D5539
 2016-03-06 20:06:41 +00:00
Raphael Kubo da Costa
007392ff74 Update to the 1.01.20160208 snapshot. 
- Removed STEPSIZE option since it's now part of the code (which also makes the
  patches obsolete).
- The upstream code is now hosted on GitHub, so use USE_GITHUB=yes.
- The upstream code now has a proper buildsystem, which allows us to simplify
  the code quite significantly.

PR:		207229
Submitted by:	Ralf van der Enden <tremere@cainites.net>
Approved by:	maintainer timeout (20 days)
 2016-03-06 20:00:32 +00:00
Muhammad Moinur Rahman
9554b7f40e security/barnyard: Update WWW as it has moved to github 
PR:		207573
Submitted by:	vvelox@vvelox.net
 2016-03-06 19:21:30 +00:00
Raphael Kubo da Costa
6af337e474 Add entries for CVE-2013-6892 and CVE-2016-2511 in devel/websvn. 
Security:	CVE-2013-6892
Security:	CVE-2016-2511
 2016-03-06 13:22:33 +00:00
Sunpoet Po-Chuan Hsieh
633ffbae19 - Document Ruby on Rails multiple vulnerabilities 2016-03-06 06:37:45 +00:00
Sunpoet Po-Chuan Hsieh
2013e5ae3b - Update to 1.5.0 
- Add LICENSE_FILE
- Update WWW

Changes:	https://github.com/omniauth/omniauth-saml/releases
 2016-03-06 06:35:01 +00:00