kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
295545 commits 42 branches 80 tags 2.7 GiB
Commit graph

3010 commits

Author SHA1 Message Date
Eitan Adler
85ace30496 Update flash the latest (hopefully) secure version. 
PR:		ports/176904
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Security:	http://www.vuxml.org/freebsd/5ff40cb4-8b92-11e2-bdb6-001060e06fd4.html
 2013-03-13 04:04:47 +00:00
Steve Wills
c7ef66fd94 - Update puppet to 3.1.1 resolving multiple security issues 
- Update puppet27 to 2.7.21 resolving multiple security issues
- Document multiple puppet security issues

Security:	cda566a0-2df0-4eb0-b70e-ed7a6fb0ab3c
 2013-03-13 03:35:54 +00:00
Eygene Ryabinkin
ca78291f62 Perl 5.x: fix CVE-2013-1667 
Feature safe:	wholeheartedly hope so
 2013-03-10 19:04:00 +00:00
Martin Wilke
06be4e421c - Fix previous entry 2013-03-10 04:03:12 +00:00
Joe Marcus Clarke
b4fc3feb8f Belatedly add an entry for libpurple's recent vulnerabilities. 2013-03-10 00:12:59 +00:00
Florian Smeets
5f18ea47e3 - update thunderbird, firefox-esr, linux-thunderbird and linux-firefox to 
17.0.4
- update firefox to 19.0.2
- add vuln.xml entry

Security:	630c8c08-880f-11e2-807f-d43d7e0c7c02
 2013-03-08 22:27:39 +00:00
Rene Ladan
c775bc3c07 Document a vulnerability in chromium < 25.0.1364.160 
Obtained from:	http://googlechromereleases.blogspot.nl/search/Stable%20Updates
 2013-03-08 09:06:27 +00:00
Frederic Culot
564cfec669 - Document vulnerabilities in typo3. 
Security:       b9a347ac-8671-11e2-b73c-0019d18c446a
Obtained from:  http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-001/
 2013-03-06 15:56:59 +00:00
Rene Ladan
0a75a27f0f Document vulnerabilities in www/chromium < 25.0.1364.152 
Obtained from:	http://googlechromereleases.blogspot.nl/search/Stable%20Updates
 2013-03-06 00:19:08 +00:00
Ryan Steinmetz
d450ab3a4a - Document recent vulerability in security/stunnel (CVE-2013-1762) 
Security:	c97219b6-843d-11e2-b131-000c299b62e1
 2013-03-03 20:17:59 +00:00
Olli Hauer
3411e90377 - document apache22 issues 
- tim trailing tabs
 2013-03-02 20:07:41 +00:00
Wesley Shields
bc9a82dd2b Document two sudo problems. 2013-03-01 02:08:30 +00:00
Steve Wills
ea9f3c8d6f - Update to 0.9.14 to fix CVE-2013-1756 
Security:	aa7764af-0b5e-4ddc-bc65-38ad697a484f
 2013-02-28 01:46:41 +00:00
Eitan Adler
bfe92b3914 Update to 11.2r202.273 
Security:	http://www.vuxml.org/freebsd/dbdac023-80e1-11e2-9a29-001060e06fd4.html
 2013-02-27 13:40:46 +00:00
Sunpoet Po-Chuan Hsieh
05731af3f5 - Update affected ettercap versions: CVE-2012-0722 was fixed in 0.7.5.2-Assimilation 2013-02-26 17:27:06 +00:00
Bryan Drewery
8644e31f6a - Document 3 OTRS vulnerabilities from 2012 
- CVE-2012-4751
 - CVE-2012-4600
 - CVE-2012-2582
 2013-02-26 01:38:58 +00:00
Steve Wills
19b9b04511 - Document Ruby REXML DoS 2013-02-24 18:21:02 +00:00
Steve Wills
4ebcd6044d - Document rubygem-ruby_parser issue 2013-02-24 17:51:49 +00:00
Po-Chien Lin
92ebf424d6 - Document Django 2013-02-21 vulnerabilty 
Approved by:	araujo (mentor)
 2013-02-24 14:23:46 +00:00
Rene Ladan
8800a2b6fd Document vulnerabilities in www/chromium < 25.0.1364.97 
Obtained from:	http://googlechromereleases.blogspot.nl/search/Stable%20Updates
 2013-02-22 23:49:44 +00:00
Cy Schubert
7833a0f195 Document security/krb5 1.11 and prior null pointer dereference in the 
KDC PKINIT code [CVE-2013-1415].

Security:	CVE-2013-1415
 2013-02-22 20:28:21 +00:00
Remko Lodder
1be2aa0120 Convert the ! back into a 1. 
Noticed by:	crees
 2013-02-22 08:07:26 +00:00
Remko Lodder
71be45ba2c Add the latest two FreeBSD Security Advisories. 2013-02-21 21:38:16 +00:00
Florian Smeets
719a920981 Document drupal7 Denial of service 2013-02-21 07:11:50 +00:00
Ruslan Makhmatkhanov
a3f2f050cc - add an entry for net/nss-pam-ldapd stack-based buffer overflow 
According to advisory, vulnerability exists in nss-pam-ldapd < 0.8.11,
but since we never had this version in the ports tree, mark everything
< 0.8.12 as vulnerable.

PR:		176293
Submitted by:	pluknet
 2013-02-20 13:58:19 +00:00
Florian Smeets
b452328822 Fix up the latest gecko update by: 
- reapplying the workaround for svn:eol-style and svn:keywords
- fixing version matching in vuln.xml, 17.0.3 is NOT vulnerable
 2013-02-20 07:16:31 +00:00
Olli Hauer
c6abd552ea - update bugzilla ports to latest version 
Bugzilla 4.0.10 and 3.6.13 are security updates for the 4.0
  branch and the 3.6 branch, respectively. 4.0.10 contains several
  useful bug fixes and 3.6.13 contains only security fixes.

Security:	CVE-2013-0785
		CVE-2013-0786
 2013-02-20 06:16:01 +00:00
Florian Smeets
d39d92427c - update firefox to 19.0 
- update firefox-esr, thunderbird, linux-firefox, linux-thunderbird to 17.0.3
- update linux-seamonkey to 2.16
- update nspr to 4.9.5
- update nss to 3.14.3
- add DuckDuckGo search plugin to firefox [1]
- mark kompozer deprecated
- clang fixes for www/libxul19 [2]

Security:	http://www.vuxml.org/freebsd/e3f0374a-7ad6-11e2-84cd-d43d7e0c7c02.html
Submitted by:	DuckDuckGo [1], dim [2]
In collaboration with:	Jan Beich <jbeich@tormail.org>
 2013-02-19 23:53:07 +00:00
Ryan Steinmetz
41a95c5e37 - Fix version range for recent ruby vulnerabilities (d3e96508-056b-4259-88ad-50dc8d1978a6 and c79eb109-a754-45d7-b552-a42099eb2265) due to missing port epoch in package range 
Submitted by:	Matthias Andree <mandree@FreeBSD.org>
 2013-02-19 00:19:14 +00:00
Eitan Adler
83689ac33a Combine ranges into one entry to prevent false positives 2013-02-17 19:58:28 +00:00
Steve Wills
c1a7765ec7 - Document rubygem-rack issue 2013-02-17 16:47:06 +00:00
Steve Wills
9a9878ba94 - Document activemodel issue 2013-02-17 16:33:18 +00:00
Li-Wen Hsu
e43326a3a9 Document Jenkins Security Advisory 2013-02-16 2013-02-17 10:28:54 +00:00
Ruslan Makhmatkhanov
ee0adc4530 - add entry for dns/poweradmin 
PR:		175704
Submitted by:	Edmondas Girkantas <eg@fbsd.lt> (maintainer of dns/poweradmin)
 2013-02-16 17:03:28 +00:00
Steve Wills
99ee3b7426 - Document ruby json issue 2013-02-16 14:41:44 +00:00
Steve Wills
63eb704749 - Document vulnerability in rdoc 2013-02-16 04:29:14 +00:00
Eitan Adler
d8ce37738d Update flash to the latest version 
PR:		ports/175159
Submitted by:	Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
 2013-02-08 19:18:40 +00:00
Martin Wilke
1da0c559b8 - Fix whitespaces 2013-02-08 08:44:15 +00:00
Eitan Adler
4bdcfb44da Fix vuxml build 2013-02-07 02:10:29 +00:00
Dirk Meyer
4f9c01bde1 - report openssl vulnerabilities 2013-02-06 20:06:18 +00:00
Florian Smeets
c7fd019365 - update databases/mariadb-server to 5.3.12 [1] 
- update databases/mariadb55-server 5.5.29 [2]

PR:		ports/175764 [1]
PR:		ports/175767 [2]
Submitted by:	Geoffroy Desvernay <dgeo@centrale-marseille.fr> (maintainer) [1]
Submitted by:	Alexandr Kovalenko <never@nevermind.kiev.ua> (maintainer) [2]
Security:	8c773d7f-6cbb-11e2-b242-c8600054b392
 2013-02-01 22:42:55 +00:00
Dirk Meyer
95e92c6086 - report opera 12.12 vulnerabilities 2013-02-01 08:50:39 +00:00
Pawel Pekala
379f5be841 Document devel/upnp vulnerabilities 2013-01-30 18:34:02 +00:00
Xin LI
7621bd7fa7 Document wordpress multiple vulnerabilities. 2013-01-29 20:02:37 +00:00
Carlo Strub
e52f472555 Fix last entry: version 2.3.4 is also affected 2013-01-25 09:37:55 +00:00
Wesley Shields
4fd3100bcf Fix whitespace in previous commit. 2013-01-25 02:08:56 +00:00
Carlo Strub
dcbeef410e XSS vulnerability in py-django-cms 2013-01-25 01:26:37 +00:00
Rene Ladan
4ef577e990 Document vulnerabilities in www/chromium < 24.0.1312.56 
Obtained from:	http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
 2013-01-23 12:52:48 +00:00
Florian Smeets
8693d9fc6c - update www/drupal6 to 6.28 
- update www/drupal7 to 7.19

Security:	http://www.vuxml.org/freebsd/1827f213-633e-11e2-8d93-c8600054b392.html
Approved by:	portmgr (beat)
 2013-01-20 20:58:12 +00:00
Eygene Ryabinkin
398d37e270 VuXML: add newly-allocated CVE for SQUID-2012:1 
New CVE was allocated for the underfixed DoS and added possible
infinite loop in Squid 3.2 and 3.1.
 2013-01-16 19:16:09 +00:00