Commit graph

22203 commits

Author SHA1 Message Date
Koop Mast
6a9dbcbed9 Document libxslt:
CVE-2015-7995

Document libxml2 :
CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500
CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8242
2015-11-20 20:37:18 +00:00
Matthias Andree
ef927bc2fa Add optional extra patch for Tunnelblick obfuscation.
Adds a --scramble method to the executable but not documentation.
Requires careful review of implications before enabling, and has not
been accepted upstream.  https://tunnelblick.net/cOpenvpn_xorpatch.html

PR:		200215
Submitted by:	Franco Fichtner
2015-11-20 18:41:15 +00:00
Jimmy Olgeni
f4fc8519f7 Upgrade security/elixir-comeonin to version 1.6. 2015-11-20 13:38:47 +00:00
Sunpoet Po-Chuan Hsieh
dc73e8c328 - Add LICENSE
Approved by:	portmgr (blanket)
2015-11-20 09:15:45 +00:00
Sunpoet Po-Chuan Hsieh
1faec3f16c - Update distinfo (missing in r401990)
Approved by:	portmgr (blanket)
2015-11-20 09:03:43 +00:00
Bernard Spil
e1f412acc5 security/py-letsencrypt: Update to version 20151114
- Update py-letsencrypt and py-acme (to v0.0.0dev20151114)
  - Add regression test target for py-acme

Changes:

  - Turn off old/insecure challenge types[1]

[1]: https://community.letsencrypt.org/t/turning-off-old-insecure-challenge-types/3825

Reviewed by:	koobs (mentor), Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
Approved by:	koobs (mentor, maintainer), Carlos J Puga Medina <cpm@fbsd.es> (maintainer)
DifferentialRevision:	https://reviews.freebsd.org/D4162
2015-11-20 08:16:19 +00:00
Olli Hauer
0962fbef57 - update to version 7.00
Changelog:
Nmap 7.00 [2015-11-19]

o This is the most important release since Nmap 6.00 back in May 2012!
  For a list of the most significant improvements and new features,
  see the announcement at: https://nmap.org/7

o [NSE] Added 6 NSE scripts from 6 authors, bringing the total up to 515!
  They are all listed at https://nmap.org/nsedoc/, and the summaries are below
  (authors are listed in brackets):

  + targets-xml extracts target addresses from previous Nmap XML results files.
    [Daniel Miller]

  + [GH#232] ssl-dh-params checks for problems with weak, non-safe, and
    export-grade Diffie-Hellman parameters in TLS handshakes. This includes the
    LOGJAM vulnerability (CVE-2015-4000). [Jacob Gajek]

  + nje-node-brute does brute-forcing of z/OS JES Network Job Entry node names.
    [Soldier of Fortran]

  + ip-https-discover detectings support for Microsoft's IP over HTTPS
    tunneling protocol. [Niklaus Schiess]

  + [GH#165] broadcast-sonicwall-discover detects and extracts information from
    SonicWall firewalls. [Raphael Hoegger]

  + [GH#38] http-vuln-cve2014-8877 checks for and optionally exploits a
    vulnerability in CM Download Manager plugin for Wordpress. [Mariusz Ziulek]

o [Ncat] [GH#151] [GH#142] New option --no-shutdown prevents Ncat from shutting
  down when it reads EOF on stdin. This is the same as traditional netcat's
  "-d" option. [Adam Saponara]

o [NSE] [GH#229] Improve parsing in http.lua for multiple Set-Cookie headers in
  a single response.  [nnposter]
2015-11-20 06:32:38 +00:00
Jason Unovitch
c862bdb809 security/pecl-crypto: update 0.1.1 -> 0.2.1
- Update PORTVERSION and distinfo for the new release (0.2.1)
- USES: tar:tgz instead of EXTRACT_SUFX
- Regenerate patch while here (portlint)

Changes:
| 0.2.1
* Fixed C89 compatibility issue in Base64
| 0.2.0
* Support for PHP 7
* Added Crypto stream BIO wrapper
* Improved error handling
* Added an integer overflow checking
* Removed Algorithm class and AlogirithmException class
* Introduced a MAC class as a subclass of Hash and parent of HMAC and CMAC
* Added MACException class subclassing HashException
* Fixed HMAC and CMAC implementation and added key param to constructor
* Fixed and tested CCM mode
* Added new error code for failed tag verification (TAG_VERIFY_FAILED)
* Add setTagLength Cipher method replacing length param in getTag
* Removed Rand::egd
* Created a complete API documentation

PR:		204668
Submitted by:	Gasol Wu <gasol.wu@gmail.com> (maintainer)
2015-11-20 03:55:34 +00:00
Jan Beich
a178b8850d Document recent Mozilla vulnerabilities 2015-11-20 00:39:40 +00:00
Jan Beich
a356bf5bac gecko: catch up with 2015-11-03 release train
- Update NSPR to 4.10.10 [1]
- Update NSS to 3.20.1 [2]
- Update Firefox ESR and libxul to 38.4.0
- Update Firefox to 42.0 [2]
- Update SeaMonkey to 2.39

Changes:	http://mozilla.6506.n7.nabble.com/ANNOUNCE-NSPR-4-10-10-Release-td346822.html
Changes:	https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.20.1_release_notes
Changes:	https://www.mozilla.org/en-US/firefox/42.0/releasenotes/
Changes:	http://www.seamonkey-project.org/news#2015-11-08
PR:		204277 [1], 204332 [2], 203099
Submitted by:	swills, Christoph Moench-Tegeder
MFH:		2015Q4
Security:	9d04936c-75f1-4a2c-9ade-4c1708be5df9
2015-11-20 00:38:40 +00:00
Muhammad Moinur Rahman
cb433d279b security/p5-Crypt-GeneratePassword: Update version 0.04=>0.05
- Mark NO_ARCH
2015-11-19 10:02:20 +00:00
Ruslan Makhmatkhanov
f637b43fec devel/py-asn1: move to devel/py-pyasn1 to match PyPI name
- move to devel/py-pyasn1 to match PyPI name
- update *_DEPENDS and bump PORTREVISION in dependent ports
- reset PORTEPOCH

PR:		204567
Submitted by:	John W. O'Brien <john@saltant.com>
Approved by:	mhjacks@swbell.net (maintainer of devel/py-asn1)
2015-11-18 21:41:48 +00:00
Ruslan Makhmatkhanov
e6d8c6ef5a security/py-keyring: update to 5.6
Changes:
* Allow keyring to be invoked from command-line with
  python -m keyring.

See PR for full upstream changelog.

PR:		204582
Submitted by:	douglas@douglasthrift.net (maintainer)
2015-11-18 20:07:25 +00:00
Ruslan Makhmatkhanov
8473ec99c9 security/py-SecretStorage: update to 2.1.2
SecretStorage 2.1.2, 2015-06-30
===============================

* Add Item.unlock() method.
* Use setuptools when it is available.
* Documentation now uses Alabaster sphinx theme.
* Other documentation fixes and improvements.

While here let it build with python3 by picking correct py-dbus port
according to python version used in the build.

PR:		204581
Submitted by:	douglas@douglasthrift.net (maintainer)
2015-11-18 20:05:25 +00:00
Ruslan Makhmatkhanov
1c4d9cba5f security/py-keyczar: update to 0.715
Overview of Changes:
  * Change version numbering to match PEP-0440
  * Unpadding happens after MAC validation to prevent padding oracle attacks
  * Added Encoding options to all crypto operations to select whether or not
    not encoding should be used.
  * Python version setup improved for PyPi.
  * AttachedSign with empty nonce now correctly functions.

While here limit python version to 2.x, because it doesn't build with 3.x

PR:		204576
Submitted by:	douglas@douglasthrift.net (maintainer)
2015-11-18 20:03:41 +00:00
Koop Mast
656fe96fd7 Document gdm lock screen bypass
Security:	CVE-2015-7496
2015-11-18 10:18:23 +00:00
Vanilla I. Shu
b49191e046 Upgrade to 1.4.0. 2015-11-18 02:46:16 +00:00
Vanilla I. Shu
dcf4b21d03 Upgrade to 1.4.0. 2015-11-18 02:46:05 +00:00
Dan Langille
c0c203f387 Commit message will be:
Optionally use Kerberos from base, heimdal, or from MIT
take maintainership
PR: 199123
Approved by: mat (mentor)
2015-11-17 15:17:01 +00:00
Jason Unovitch
8f9602862d Fix a bad URL caused by an errant 'i' in the <url></url> tags 2015-11-16 23:46:04 +00:00
Lars Engels
4a9aada5f7 Remove bogus DISTREVISION variable.
Noticed by:	mat
2015-11-16 20:39:07 +00:00
Renato Botelho
39618f2a30 Update security/strongswan to 5.3.4
PR:		204597
Submitted by:	strongswan@nanoteq.com (maintainer)
MFH:		2015Q4
Security:	CVE 2015-8023
Security:	453e204ac4
Sponsored by:	Rubicon Communications (Netgate)
2015-11-16 14:08:25 +00:00
Renato Botelho
fb22be0918 Register CVE 2015-8023 on VuXML. It affects strongswan < 5.3.4 2015-11-16 14:06:56 +00:00
Renato Botelho
96cc77f82b - Update security/keychain to 2.8.2
- Drop bash from dependencies list since it now runs with /bin/sh
2015-11-16 11:07:49 +00:00
Jason Unovitch
71f2d2f890 Document Moodle multiple security vulnerabilities
Note upstream has not released CVE assignments or details of the issues at
this time.  Document the current verbiage from the release notes to help
downstream users proactively update.

Security:	https://vuxml.FreeBSD.org/freebsd/82b3ca2a-8c07-11e5-bd18-002590263bf5.html
2015-11-16 02:22:16 +00:00
Jason Unovitch
3f49658641 Document Xen XSA-156
Security:	CVE-2015-5307
Security:	CVE-2015-8104
Security:	https://vuxml.FreeBSD.org/freebsd/2cabfbab-8bfb-11e5-bd18-002590263bf5.html
2015-11-16 00:51:00 +00:00
Gerald Pfeifer
242073ad09 Add GCC_DESC to Mk/bsd.options.desc.mk. Use this in a number of ports
instead of their own respective settings.
2015-11-16 00:30:00 +00:00
Bernard Spil
3f4b66cc4d Document vulnerability of libpng
Differential Revision:	https://reviews.freebsd.org/D4164
Reviewed By:	koobs (mentor)
Approved By:	koobs
Security:	CVE-2015-8126
2015-11-15 17:28:48 +00:00
Lev A. Serebryakov
b522757c8b (1) Place pkgconfig files to proper directory (libdata)
(2) Strip binaries and libraries if MAINTAINER_DEBUG is not set
 (3) Set WITH_DEBUG if MAINTAINER_DEBUG option is selected

PR:		204496
Submitted by:	Dmitry Marakasov <amdmi3@FreeBSD.org>
2015-11-15 11:10:26 +00:00
Sunpoet Po-Chuan Hsieh
b51ad58be6 - Add NO_ARCH 2015-11-15 03:04:44 +00:00
Sunpoet Po-Chuan Hsieh
63268b3081 - Add NO_ARCH 2015-11-15 03:04:40 +00:00
Sunpoet Po-Chuan Hsieh
20b6a8cea9 - Add LICENSE
- Add NO_ARCH
- Sort PLIST
2015-11-15 03:02:30 +00:00
Dmitry Marakasov
6c74abfe8e - Update MASTER_SITES and WWW
- Switch to options helpers
- Switch to new test framework
- Silence patching
2015-11-14 23:20:56 +00:00
Koop Mast
a0fb2fceb7 Document latest flash vulnabilities.
Security:	CVE-2015-7651, CVE-2015-7652, CVE-2015-7653, CVE-2015-7654
Security: 	CVE-2015-7655, CVE-2015-7656, CVE-2015-7657, CVE-2015-7658
Security:	CVE-2015-7659, CVE-2015-7660, CVE-2015-7661, CVE-2015-7662
Security:	CVE-2015-7663, CVE-2015-8042, CVE-2015-8043, CVE-2015-8044
Security:	CVE-2015-8046
2015-11-14 22:44:06 +00:00
Ruslan Makhmatkhanov
8ed3bb339c devel/py-asn1-modules: rename to py-pyasn1-modules to match upstream naming
- bump PORTREVISION for dependend ports
2015-11-14 20:54:41 +00:00
Dmitry Marakasov
9eec0ba28a - Switch to USES=autoreconf 2015-11-14 17:17:38 +00:00
Lars Engels
3efea52018 - Fix fetch after upstreams switch from http to https
MFH:		2015Q4
2015-11-14 13:52:42 +00:00
Sunpoet Po-Chuan Hsieh
254743b6bf - Update to 2015.9.6.2
- Add NO_ARCH

Changes:	https://github.com/certifi/python-certifi/commits/master
2015-11-13 15:40:34 +00:00
Antoine Brodin
eac69bd248 Unbreak 2015-11-13 12:16:10 +00:00
Jimmy Olgeni
14628aad67 Remove GH_TAGNAME because project was tagged upstream. 2015-11-13 11:47:34 +00:00
Dmitry Marakasov
12499d4abf - Switch to USES=tar
- Switch to options helpers
- Unsilence installation
2015-11-12 17:20:45 +00:00
Dmitry Marakasov
f6727520fa - Clarify LICENSE
- Add NO_ARCH
- Switch to options helpers
2015-11-12 17:20:03 +00:00
Jimmy Olgeni
fdf1f83545 Upgrade security/elixir-comeonin to version 1.5. 2015-11-12 14:52:37 +00:00
Dmitry Marakasov
6ab1c00766 - Add LICENSE_FILE
- Switch to options helpers
2015-11-12 14:42:01 +00:00
Dmitry Marakasov
f49f981849 - Switch to options helpers
- Switch to new testing framework
2015-11-12 14:40:38 +00:00
Jimmy Olgeni
0ced111be8 Add security/elixir-comeonin_i18n, an internationalization library for
security/elixir-comeonin.
2015-11-12 14:27:38 +00:00
Ryan Steinmetz
c39c1ec545 - Update to 1.2-alpha4 2015-11-12 13:53:22 +00:00
Ryan Steinmetz
18aa9be4ab - Update to 1.9.17 2015-11-12 12:34:59 +00:00
Sunpoet Po-Chuan Hsieh
0f5c9201db - Update to 1.1.1
Changes:	https://github.com/onelogin/ruby-saml/releases
2015-11-12 11:58:57 +00:00
Hajimu UMEMOTO
2dd87a10a5 Use OPTIONS helper. 2015-11-12 11:21:48 +00:00