kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
162906 commits 42 branches 80 tags 2.7 GiB
Commit graph

9540 commits

Author SHA1 Message Date
Simon L. B. Nielsen
7f62fb4e28 The latest couple of firefox vulnerabilities should be fixed in the 
2.0 release, so mark 2.0 as fixed.

Prodded by:	ahze
 2006-11-02 06:33:00 +00:00
Tom McLaughlin
e40789297d Fix fetch. 2006-11-02 02:12:16 +00:00
Andrew Pantyukhin
934215486d - Update to 20061101 snapshot 2006-11-01 22:16:41 +00:00
Andrew Pantyukhin
be2bd16f64 - Update to 2.03 2006-11-01 14:40:52 +00:00
Alex Dupre
c8ee87de03 Update to 0.9.10 release. 2006-11-01 13:32:38 +00:00
Lev A. Serebryakov
ce9664cb9a ru-apache and ru-apacvhe+mod_ssl were fixed. 2006-11-01 13:15:16 +00:00
Pav Lucistnik
6d4c843eda - Update to 2.7 
PR:		ports/104908
Submitted by:	Yonatan <onatan@gmail.com> (maintainer)
 2006-11-01 08:50:31 +00:00
Cheng-Lung Sung
e295244c59 - Update to 1.2.0 
PR:		ports/104249
Submitted by:	Jo Rhett<jrhett_AT_netconsonance dot com>
Approved by:	maintainer (Petr Rehor)
 2006-11-01 01:44:46 +00:00
Pav Lucistnik
1b7bd576ea - Fix COMMENT 
PR:		ports/104987, ports/104991
Submitted by:	Paul Schmehl <pauls@utdallas.edu> (maintainer)
 2006-10-31 22:08:40 +00:00
Renato Botelho
57373590dc - Update to 2.6.8 2006-10-31 20:53:47 +00:00
Shaun Amott
569933e6cd Replace ONLY_FOR_ARCHS with IA32_BINARY_PORT. 
PR:		ports/104223
Submitted by:	Mykola Dzham <freebsd@levsha.org.ua>
Approved by:	Alexander Demin <support@spectrum.ru> (maintainer)
 2006-10-31 18:36:29 +00:00
Martin Wilke
81434d83ba - Update to 1.4.0 
- Pass maintainership to submitter

PR:		ports/104729
Submitted by:	chinsan@
 2006-10-31 13:33:22 +00:00
Rong-En Fan
818860b02a - Update to 1.1 
PR:		ports/104658
Submitted by:	Michael Ranner <mranner at inode.at> (maintainer)
 2006-10-31 10:38:55 +00:00
Cheng-Lung Sung
fec0601be0 - Update to 5.44 
PR:		ports/104415
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
Approved by:	maintainer (gabor)
 2006-10-31 09:21:03 +00:00
Cheng-Lung Sung
42e5c36c65 - Update to 0.9 
- Reset maintainership to ports@FreeBSD.org

PR:		ports/104334
Submitted by:	Gea-Suan Lin <gslin@gslin.org>
 2006-10-31 09:00:08 +00:00
Cheng-Lung Sung
ac63a10463 - Update to 5.44 
PR:		ports/104414
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
 2006-10-31 08:18:45 +00:00
Cheng-Lung Sung
f4a6dfbc21 - Update to 2.22 
PR:		ports/104957
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
 2006-10-31 08:13:58 +00:00
Martin Wilke
fca28af774 - Update to 1.3 
PR:		ports/103815
Submitted by:	David Thiel <lx@redundancy.redundancy.org> (maintainer)
 2006-10-31 08:06:26 +00:00
Cheng-Lung Sung
2b89289466 - Update to 0.1.2.3 
PR:		ports/104932
Submitted by:	maintainer (Peter Thoenen)
 2006-10-31 06:33:00 +00:00
Alejandro Pulver
b529c1e197 Sguil is an open source tool to implement Network 
Security Monitoring (NSM).  NSM is the collection,
analysis, and escalation of indications and warnings
to detect and respond to intrusions.  NSM tools are
used more for network audit and specialized
applications than traditional alert-centric "intrusion
detection" systems.

Want to learn more about Network Security Monitoring
(NSM)? Then check out Richard Bejtlich's recently
released book, The Tao of Network Security Monitoring:
Beyond Intrusion Detection. An excerpt reads:

"Network security monitoring (NSM) equips security
staff to deal with the inevitable consequences of too
few resources and too many responsibilities. NSM collects
the data needed to generate better assessment, detection,
and response processes--resulting in decreased impact from
unauthorized activities."

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:		ports/104227
Submitted by:	Paul Schmehl <pauls at utdallas.edu>
 2006-10-31 02:43:25 +00:00
Alejandro Pulver
0e818cfa86 - Make fetchable. 
- Remove BROKEN, DEPRECATED and EXPIRATION_DATE.

PR:		ports/104593
Submitted by:	Alexander Logvinov <ports@logvinov.com>
 2006-10-31 02:22:04 +00:00
Alejandro Pulver
1be969103d - Reformat pkg-descr, add WWW. 
- Take maintainership.

PR:		ports/104235
Submitted by:	Thomas Abthorpe <thomas@goodking.ca>
 2006-10-31 02:15:29 +00:00
Alejandro Pulver
1762f5f1ad - Reformat pkg-descr. 
- Take maintainership.

PR:		ports/104233
Submitted by:	Thomas Abthorpe <thomas@goodking.ca>
 2006-10-31 02:11:25 +00:00
James E. Housley
3065300a3e * Upgrade to version 5.10 
* When package building, don't automatically fetch the newest DAT
 2006-10-31 00:22:39 +00:00
Renato Botelho
16fc551b11 Update to 20061029 to fix vulnerability 
Approved by:	portmgr (erwin)
Security:	http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
 2006-10-30 13:52:36 +00:00
Vasil Dimov
4d81bd32df Add a <modified> tag with the current date to reflect my previous change. 
I knew I should ask someone before committing, however trivial was the change.

Spotted by:	remko
Approved by:	portmgr (implicit)
 2006-10-30 07:34:06 +00:00
Vasil Dimov
c359213b8a Fix typo: "Dmitri Lenev reports reports a privilege ..." 
Approved by:	portmgr (implicit)
 2006-10-30 07:04:38 +00:00
Simon L. B. Nielsen
11ce17521a Document screen -- combined UTF-8 characters vulnerability. 
Approved by:	portmgr (secteam blanket)
 2006-10-29 19:07:08 +00:00
Simon L. B. Nielsen
04ee71b7ac Document two MySQL privilege escalations. 
PR:		ports/104890
Submitted by:	Henrik Brix Andersen <henrik@brixandersen.dk>
Approved by:	portmgr (secteam blanket)
 2006-10-29 13:50:01 +00:00
Martin Wilke
100c045e82 - Add entry for www/serendipity and www/serendipity-devel 
Reviewed by:	markus@
Approved by:	portmgr (implicit VuXML), secteam (Remko (not reviewed yet))
 2006-10-23 13:15:30 +00:00
Markus Brueffer
925b0719f1 Document an integer overflow vulnerability in Qt and kdelibs, based on an 
entry by sat

Approved by:	portmgr (erwin)
 2006-10-23 11:15:11 +00:00
Simon L. B. Nielsen
7af8fd8980 Add reference, which I missed the first time around, from Opera 
Software to opera -- URL parsing heap overflow vulnerability entry,

Approved by:	portmgr (secteam blanket)
 2006-10-20 22:59:39 +00:00
Simon L. B. Nielsen
a889bdb46b Document opera -- URL parsing heap overflow vulnerability. 
Approved by:	portmgr (secteam blanket)
 2006-10-20 22:56:04 +00:00
Simon L. B. Nielsen
8c9c1b0930 Minor correction to last commit; the NVIDIA driver version 1.0.8762 
was also affected, so mark it as such.

Approved by:		portmgr (secteam blanket)
 2006-10-20 22:45:27 +00:00
Simon L. B. Nielsen
83d2fc7202 Update entry for nvidia-driver -- arbitrary root code execution 
vulnerability:

- Add new info about vulnerable versions from NVIDIA.
- Add workaround.
- Add more references.
- Remove suggestion to move to "nv" driver now that we have a simpler
  workaround.

Approved by:		portmgr (secteam blanket)
Parts submitted by:	mnag
 2006-10-20 22:32:30 +00:00
Marcus Alves Grando
e4f21a09c1 - Mark as forbidden 
Approved by:	portmgr (secteam blanket)
Security:	http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
 2006-10-20 14:53:54 +00:00
Remko Lodder
7ef185e45c Document asterisk -- remote heap overwrite vulnerability 
Approved by:		portmgr (VuXML blanket)
Submitted by:		Thomas Sandford
Facilitated by:		Snow B.V.
 2006-10-20 08:13:06 +00:00
Remko Lodder
0546f23a3c Some style changes to the plone entry. 
Previous commit was also reviewed by myself.

Approved by:		portmgr (Blanket VuXML)
Facilitated by:		Snow B.V.
 2006-10-20 07:44:01 +00:00
Ion-Mihai Tetcu
2a9d3078c5 Fix plist. 
PR:		ports/104405
Submitted by:	Fabian Keil<fk@fabiankeil.de>
Approved by:	portmgr (erwin), Peter Thoenen (maintainer)
 2006-10-20 07:20:21 +00:00
Martin Wilke
2a7ec3a7c1 - Add a entry for www/plone 
Approved by:	portmgr (erwin)
 2006-10-19 22:47:49 +00:00
Shaun Amott
e54712d17f Document: 
drupal -- HTML attribute injection
  drupal -- cross site request forgeries
  drupal -- multiple XSS vulnerabilities

Submitted by:	brooks
Reviewed by:	remko
Approved by:	portmgr (erwin)
 2006-10-19 13:48:59 +00:00
Shaun Amott
cce7554a1c Document "ingo -- local arbitrary shell command execution" 
Submitted by:	thierry
Reviewed by:	remko
Approved by:	portmgr (erwin)
 2006-10-19 13:19:44 +00:00
Simon L. B. Nielsen
a0a4a2fb88 Update php -- _ecalloc Integer Overflow Vulnerability entry with 
details from Steffan Essers advisory about the implications of this
issue.  The advisory was not public when this issue was initially
fixed.

Approved by:	portmgr (secteam blanket)
 2006-10-17 20:45:55 +00:00
Marcus Alves Grando
3d5fa7b997 - Update HPN patch. Patch are renamed, the only content differences are two rows now enclosed in an "else" block. 
Submitted by:	ale
Approved by:	portmgr (erwin)
 2006-10-17 13:27:18 +00:00
Erwin Lansing
a2eb0bd472 Mark multimedia/win32-codecs as not-vulnerable after the quicktime codecs 
were optional. The quicktime codecs are still vulnerable though, but we
rely on the conditional FORBIDDEN statement in the ports Makefile for this.

Approved by:	portmgr (self), secteam (simon)
 2006-10-17 09:20:59 +00:00
Simon L. B. Nielsen
346b79b908 Document "nvidia-driver -- arbitrary root code execution vulnerability". 
Note that I haven't actually had time to make a test system to reproduce
this on FreeBSD, but due to the nature of this issue and that there is a
PoC exploit in the advisory, I'm adding this entry due to "better safe
than sorry"...

Approved by:	portmgr (secteam blanket)
 2006-10-16 21:54:38 +00:00
Andrew Pantyukhin
a02c9e0237 - Mark php open_basedir fixed 
Reviewed by:	secteam (simon)
Approved by:	portmgr (secteam blanket)
 2006-10-16 17:44:32 +00:00
Marcus Alves Grando
26c48dc2d6 - clamav -- CHM unpacker and PE rebuilding vulnerabilities 
Approved by:	portmgr (mnag with secteam hat)
 2006-10-16 14:32:54 +00:00
Marcus Alves Grando
ec97343ab6 - Update to 0.88.5 
- portlint(1)

Approved by:	portmgr (mnag with secteam hat), garga (maintainer)
Security:	http://lurker.clamav.net/message/20061016.015114.dc6a8930.en.html,
		http://secunia.com/advisories/22370/
 2006-10-16 14:18:52 +00:00
Martin Wilke
72f4c4414b - Add missing depends 
PR:             ports/104362
Submitted by:   Joshua Abraham<jabra@ccs.neu.edu> (maintainer)
Approved by:    portmgr (clement)
 2006-10-16 12:13:03 +00:00