kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
357015 commits 42 branches 80 tags 2.7 GiB
Commit graph

3512 commits

Author SHA1 Message Date
Sunpoet Po-Chuan Hsieh
43c5ef5e0f - Fix typo 2015-01-09 18:51:32 +00:00
Sunpoet Po-Chuan Hsieh
71e80745d9 - Document cURL URL request injection vulnerability (CVE-2014-8150) 2015-01-09 18:41:22 +00:00
Koop Mast
4aa0ef3cf1 Document webkit-gtk[23] vulnabilities. 2015-01-09 13:35:31 +00:00
Xin LI
5a41788320 Document OpenSSL multiple vulnerabilities. 2015-01-08 23:59:59 +00:00
Matthias Andree
908673d4b7 Add three upstream patches to busybox 1.22.1, bumping PORTREVISION to 2. 
One fixes the CVE-2014-4608 buffer overrun in LZO2,
one fixes the nc app, one fixes the zcat and related apps when accessing
files without extension.

List busybox < 1.22.1_2 as vulnerable, and add CVE Name to the vulndb.

Security:	CVE-2014-4608
Security:	d1f5e12a-fd5a-11e3-a108-080027ef73ec
 2015-01-06 21:11:35 +00:00
Eygene Ryabinkin
b38f77b8f0 VuXML: document multiple vulnerabilities in WordPress 
CVE-2014-9033 to CVE-2014-9039.
 2015-01-04 22:54:02 +00:00
Eygene Ryabinkin
d18540c9f3 VuXML: document heap overflow in 32-bit builds of libpng 2015-01-04 22:25:19 +00:00
Xin LI
a89cf81862 Document file multiple vulnerabilities. 2015-01-02 23:24:17 +00:00
Eygene Ryabinkin
72aeb95356 Fix whitespace in entry for ntp (4033d826-87dd-11e4-9079-3c970e169bc2) 2014-12-23 21:24:55 +00:00
Eygene Ryabinkin
e21577fb97 Document CVE-2014-9116 in mutt 2014-12-23 21:22:35 +00:00
Xin LI
fc85605516 Document ntp multiple vulnerabilities. 2014-12-20 00:21:30 +00:00
Brad Davis
08f04987d9 Document git vulerability 
Approved by:	swills
Security:	CVE-2014-9390
 2014-12-19 18:05:51 +00:00
Carlo Strub
437f3b2ca1 OTRS security announcement 2014-12-16 22:06:31 +00:00
Koop Mast
f31902eea6 Register portepoch in the xorg-server entry. 
Submitted by:	Adam McDougall <mcdouga9@egr.msu.edu>
Pointyhat to:	kwm@
 2014-12-16 11:44:27 +00:00
Tijl Coosemans
722e2d67d3 Fix version information on several subversion vulnerabilities 2014-12-16 10:46:57 +00:00
Olli Hauer
2109543101 - document Subversion remote DoS 2014-12-15 22:18:49 +00:00
Alexey Dokuchaev
86fc1958ae The GLX indirect rendering support supplied on NVIDIA products is subject to 
the recently disclosed X.Org vulnerabilities (CVE-2014-8093, CVE-2014-8098)
as well as internally identified vulnerabilities (CVE-2014-8298).
 2014-12-14 09:45:08 +00:00
Xin LI
22bd7eedd5 Document BIND vulnerability. 2014-12-11 20:56:21 +00:00
Guido Falsi
6402653253 Document vulnerability in asterisk11. 2014-12-11 09:41:10 +00:00
Koop Mast
1f9994ea64 Document xserver security advisories. 2014-12-10 21:31:56 +00:00
Sergey Matveychuk
98b3a22b15 - Remove a redundant dot 2014-12-09 03:05:14 +00:00
Sergey Matveychuk
a8c2eba33a Document unbound vulnerability 2014-12-09 02:43:37 +00:00
Koop Mast
9ceda43b34 Document freetype 2 vulnability. 2014-12-07 12:25:30 +00:00
Matthew Seaman
07d81befa7 The latest in a long line of phpMyAdmin security advisories: DoS and 
XSS vulnerabilities.

Security:	c9c46fbf-7b83-11e4-a96e-6805ca0b3d42
 2014-12-04 07:15:30 +00:00
Beat Gaetzi
66f36fcbe0 Document mozilla vulnerabilities 
PR:		195559
Submitted by:	Jan Beich
 2014-12-03 11:20:51 +00:00
Xin LI
40cb0d33ed Document OpenVPN Denial of Service vulnerability. 2014-12-02 01:38:26 +00:00
Christian Weisgerber
f47b61b778 Document CVE-2014-8962 and CVE-2014-9028 in audio/flac. 2014-11-25 21:42:42 +00:00
Guido Falsi
f72299bfdd Add CVE names for recent asterisk vulnerabilities. 2014-11-23 10:35:06 +00:00
Guido Falsi
0428741c55 Document multiple vulnerabilities in asterisk ports. 2014-11-21 11:06:59 +00:00
Matthew Seaman
abdc729b94 Document the latest round of phpMyAdmin vulnerabilities. 
Security:	a5d4a82a-7153-11e4-88c7-6805ca0b3d42
 2014-11-21 08:13:00 +00:00
Raphael Kubo da Costa
1823ac9220 Add note about CVE-2014-8600 in kde4-runtime and kwebkitpart. 2014-11-20 21:30:29 +00:00
Guido Falsi
f3b72790cd Document yii vulnerability CVE-2014-4672. 2014-11-20 08:42:28 +00:00
Rene Ladan
74d7107830 Document new vulnerabilities in www/chromium < 39.0.2171.65 
Obtained from:	http://googlechromereleases.blogspot.nl/2014/11/stable-channel-update_18.html
 2014-11-18 18:32:22 +00:00
Raphael Kubo da Costa
97d4c532da Fix version check for the entry added in r372686. 
4.11.14 is not in ports yet, the fix was backported to 4.11.13 so we are
safe with 4.11.13_1.
 2014-11-17 21:27:58 +00:00
Raphael Kubo da Costa
20b860a4f7 Add entry for CVE-2014-8651 in x11/kde4-workspace. 2014-11-17 20:59:59 +00:00
Antoine Brodin
ff9251773b Cleanup plist 2014-11-13 10:38:16 +00:00
Koop Mast
11e7d8245f document dbus CVE-2014-7824 2014-11-11 18:35:05 +00:00
Eygene Ryabinkin
8eef663357 ftp/wget: document CVE-2014-4877, path traversal in recursive FTP mode 2014-11-07 22:07:54 +00:00
Max Brazhnikov
76f357180d VuXML: fix spelling for the latest entry 
Noticed by:	ports-secteam (rea)
 2014-11-05 22:18:26 +00:00
Max Brazhnikov
e772343952 VuXML: document CVE-2014-8483 for irc/konversation-kde4 
Approved by:	ports-secteam (zi)
 2014-11-05 14:49:08 +00:00
Eygene Ryabinkin
bc0b5959da VuXML: document remote Perl code execution in TWiki 
Crafted GET parameter "debugenableplugins" can be used to trigger
code execution,
  http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2014-7236
 2014-10-31 15:38:00 +00:00
Eygene Ryabinkin
37eb303bd8 VuXML: document vulnerability in Jenkins 
CVE-2014-3665, remote code execution on master servers that can
be initiated by (untrusted) slaves,
  https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-30
 2014-10-31 11:09:17 +00:00
Raphael Kubo da Costa
4c593ccfb2 Add entry for libssh's CVE-2014-0017. 2014-10-29 21:51:17 +00:00
Ryan Steinmetz
a272580889 - Document recent vulnerabilities in libpurple/pidgin 2014-10-24 01:58:13 +00:00
Matthew Seaman
24c270c5ad Document cross site scripting vulnerabilities in phpMyAdmin 
Security:	25b78f04-59c8-11e4-b711-6805ca0b3d42
 2014-10-22 08:54:58 +00:00
Guido Falsi
3103916734 Document asterisk susceptibility to the POODLE vulnerability, 
described in CVE-2014-3566.
 2014-10-21 13:58:33 +00:00
Koop Mast
a502e38ceb Document libxml2 denial of service 2014-10-18 12:52:26 +00:00
Johannes Jost Meixner
8950579048 Add linux-c6-openssl to OpenSSL entry from 2014-10-15. 
Approved by:	swills (mentor)
 2014-10-17 14:34:14 +00:00
Florian Smeets
2eac7ee011 Document critical SQL Injection Vulnerability in www/drupal7 2014-10-16 18:19:57 +00:00
Beat Gaetzi
f74c61732f - Mark libxul as vulnerable too 
Submitted by:	Jan Beich
 2014-10-16 10:34:50 +00:00