kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
387600 commits 42 branches 80 tags 2.7 GiB
Commit graph

22647 commits

Author SHA1 Message Date
Philippe Audeoud
ce024c87e0 - Update to 2.024 2016-02-11 08:33:08 +00:00
Koop Mast
67bdc6b065 Document feb 8, 2016 flash vulnerabilities. 
Security:	CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967,
		CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0971,
		CVE-2016-0972, CVE-2016-0973, CVE-2016-0974, CVE-2016-0975,
		CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979,
		CVE-2016-0980, CVE-2016-0981, CVE-2016-0982, CVE-2016-0983,
		CVE-2016-0984, CVE-2016-0985
 2016-02-10 13:08:13 +00:00
Martin Wilke
2e71d454f2 - Update to 4.0.2 
PR:		206792
Submitted by:	maintainer
 2016-02-10 02:08:09 +00:00
Mark Felder
f73c543b24 Document dns/dnscrypt-proxy vulnerability 
PR:		206938
 2016-02-10 00:10:40 +00:00
Mark Felder
fd96ddd26b Fix vuxml to pass make validate 
An errant newline from the last entry caused "Error 1"
 2016-02-10 00:07:45 +00:00
Rene Ladan
944ad1c2ef Document new vulnerabilities in www/chromium < 48.0.2564.109 
Obtained from:	http://googlechromereleases.blogspot.nl/2016/02/stable-channel-update_9.html
 2016-02-09 23:11:37 +00:00
Mark Felder
2c54e17926 Update graphics/graphite2 vulnerability details 
I found a more comprehensive blog entry by Talos
 2016-02-09 20:30:42 +00:00
Mark Felder
f0457c9544 Document graphics/graphite2 vulnerability 
Security:	CVE-2016-1521
 2016-02-09 20:23:32 +00:00
Mark Felder
1e3f8cda39 Fix duplicate "reports" in last entry 2016-02-09 17:07:03 +00:00
Mark Felder
9d048b8bdc Document net-mgmt/xymon-server vulnerabilities 
MFH:		2016Q1
Security:	CVE-2016-2054
Security:	CVE-2016-2055
Security:	CVE-2016-2056
Security:	CVE-2016-2057
Security:	CVE-2016-2058
 2016-02-09 17:01:02 +00:00
Martin Wilke
0bab4d7094 - Document php -- pcre vulnerability 2016-02-09 10:55:58 +00:00
Raphael Kubo da Costa
2a699255ef Document multiple vulnerabilities in graphics/py-imaging and graphics/py-pillow. 
Security:	CVE-2016-0740
Security:	CVE-2016-0775
 2016-02-09 10:39:56 +00:00
Jan Beich
7e6d923605 security/nss: update to 3.22 
Changes:	https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.22_release_notes
PR:		207030
Submitted by:	Christoph Moench-Tegeder <cmt@burggraben.net>
 2016-02-09 00:09:37 +00:00
Carlos J. Puga Medina
9905a1a102 This patch fixes alignment of self-test context in salsa20 required 
for amd64 implementation.

Other changes:
   - Regenerate patches to make portlint(1) happy
   - Update MAINTAINER to my @FreeBSD.org address
   - Bump PORTREVISION

PR:		206919
Approved by:	junovitch (mentor)
 2016-02-08 20:54:10 +00:00
Antoine Brodin
8b2a23e265 Unbreak with new cracklib 
Reported by:	pkg-fallout
 2016-02-08 17:57:14 +00:00
Dmitry Marakasov
3675146836 - Mark BROKEN, does not build: 
verify.c:70:25: error: variable has incomplete type 'struct dsa_public_key'

Reported by:	pkg-fallout
Approved by:	portmgr blanket
 2016-02-08 15:20:27 +00:00
Philippe Audeoud
982b1ffe35 - Update to 1.20 2016-02-08 09:02:02 +00:00
Xin LI
9567fc068c 2015-12-31 security/polarssl: Upstream is ending support for 1.2.x 2016-02-07 09:58:59 +00:00
Xin LI
a8c411eaa0 Update to 1.2.19. 
Bugfix
   * Fix bug in certificate validation that caused valid chains to
     be rejected when the first intermediate certificate has
     pathLenConstraint=0. Found by Nicholas Wilson.
     Introduced in mbed TLS 1.3.15. #280
   * Removed potential leak in rsa_rsassa_pkcs1_v15_sign(), found
     by JayaraghavendranK. #372

MFH:	2016Q1
 2016-02-07 09:49:05 +00:00
Danilo Egea Gondolfo
f927e29a04 - Update to 20160204 2016-02-06 13:29:19 +00:00
Thomas Zander
e9fed5f764 Document remote denial of service in ffmpeg before 2.8.6 and 
mencoder / mplayer before 1.2.r20151219_3
 2016-02-06 11:23:58 +00:00
Vanilla I. Shu
9a4005e6c0 Update to 1.6.1. 2016-02-06 04:42:41 +00:00
Vanilla I. Shu
e897393092 Update to 1.6.1. 2016-02-06 04:42:26 +00:00
Jason Unovitch
7bc4044017 Update version of net/samba36 package to reflect it is still unpatched 
PR:		206808
Reported by:	Marcin Gryszkalis <mg@fork.pl>
Security:	CVE-2015-5252
Security:	CVE-2015-5296
Security:	CVE-2015-5299
Security:	https://vuxml.FreeBSD.org/freebsd/ef434839-a6a4-11e5-8275-000c292e4fd8.html
 2016-02-05 20:04:05 +00:00
Koop Mast
05b82b292f Document shotwell failure to validate TLS certificates. 
PR:		206807
 2016-02-05 16:32:09 +00:00
Cy Schubert
4f0c314e68 Fix Shared object "libcrack.so.2" not found, required by 
"cracklib-packer" pre-stage error.
 2016-02-05 14:02:37 +00:00
Cy Schubert
098a06a073 Update 2.9.4 --> 2.9.6 
Distfile has been moved from sourceforge to github.

Generate dictionary from github hosted word dictionary file instead of
in port.
 2016-02-05 07:05:11 +00:00
Erwin Lansing
d140eabacb - Update unbound to 1.5.7 
- Bump PORTREVISIOn on dependent ports

Some Upgrade Notes:

This release fixes a validation failure for nodata with wildcards and
emptynonterminals. Fixes OpenSSL Library compability. Fixes correct
response for malformed EDNS queries. For crypto in libunbound there is
libnettle support.

Qname minimisation is implemented. Use qname-minimisation: yes to
enable it. This version sends the full query name when an error is
found for intermediate names. It should therefore not fail for names
on nonconformant servers. It combines well with
harden-below-nxdomain: yes because those nxdomains are probed by the
qname minimisation, and that will both stop privacy sensitive traffic
and reduce nonsense traffic to authority servers. So consider
enabling both. In this implementation IPv6 reverse lookups add
several labels per increment, because otherwise those lookups would be
very slow. [ Reference
https://tools.ietf.org/html/draft-ietf-dnsop-qname-minimisation-08 ]

More details at <http://unbound.net>

PR:		206347
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl>
Approved by:	maintainer timeout
Sponsored by:	DK Hostmaster A/S
 2016-02-04 15:58:30 +00:00
Koop Mast
298502fbcd Document webkit CVE-2014-1748. 
If people look at the announcement, CVE-2014-3192 is already fixed. This
CVE was against chromium, and the same code in 2.4.9 is in webkit trunk
so I assume it already fixed.

CVE-2013-6663 is for webkit < 2.4.0, and the rest of the CVE's are for
apple products without any attached patches.

PR:		205683
Obtained from:	http://webkitgtk.org/security/WSA-2015-0002.html
 2016-02-04 11:03:33 +00:00
Kubilay Kocak
5133b75bd7 security/py-rsa: Update to 3.3 (Fixes CVE-2016-1494) 
- Update PORTVERSION and distinfo checksum (3.3)
- Modernize TEST entries (test target, TEST_DEPENDS, et al)
- Update setup.py patch (zip_safe no longer needed)
- Add LICENSE_FILE
- Enable NO_ARCH

This version fixed a security vulnerability:

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1494

PR:		206746
Reported by:	Sevan Janiyan <venture37 geeklan co.uk>
Security:	e78bfc9d-cb1e-11e5-b251-0050562a4d7b
Security:	CVE-2016-1494
MFH:		2016Q1
 2016-02-04 10:39:48 +00:00
Kubilay Kocak
b3801075c3 security/vuxml: Add CVE-2016-1494 for security/py-rsa 
PR:		206746
Reported by:	 Sevan Janiyan <venture37 geeklan co.uk>
 2016-02-04 10:35:32 +00:00
Guido Falsi
ecc9d91a49 Document new asterisk ports vulnerabilities. 2016-02-04 09:25:09 +00:00
Kubilay Kocak
baba90094d security/suricata: Add netmap IPS mode to pkg-message 
PR:		206875
Submitted by:	 Franco Fichtner <franco opnsense org>
 2016-02-04 07:58:46 +00:00
John Marino
76cac70f53 security/pwman: document ncurses requirement (USES+=ncurses) 
Also link with libncurses, not libcurses
 2016-02-03 22:27:14 +00:00
John Marino
c64bc83de5 security/yapet: document ncurses requirement (USES+=ncurses) 
approved by:	infrastructure blanket
 2016-02-03 22:16:34 +00:00
John Marino
6f41150b29 x11/xterm: document ncurses requirement (USES+=ncurses) 
also link to libncurses rather than libcurses

approved by:	infrastructure blanket
 2016-02-03 22:15:11 +00:00
John Marino
3d91af6f79 security/mdcrack: document ncurses rqmt (USES+=ncurses), respect LDFLAGS 
approved by:	infrastructure blanket
 2016-02-03 22:02:41 +00:00
John Marino
17d14bfce1 security/krb5-appl: document ncurses requirement (USES+=ncurses) 
approved by:	infrastructure blanket
 2016-02-03 22:01:15 +00:00
John Marino
50fa32bebd security/ckpass: document ncurses requirement (USES+=ncurses) 
approved by:	infrastructure blanket
 2016-02-03 22:00:04 +00:00
Sunpoet Po-Chuan Hsieh
a9b5bc9628 - Update RUN_DEPENDS: use Rails 4 
- Bump PORTREVISION for dependency change

PR:		206880
Submitted by:	Torsten Zuhlsdorff <ports@toco-domains.de>
 2016-02-03 20:54:56 +00:00
Sunpoet Po-Chuan Hsieh
3799db7072 - Add letsencrypt.sh 
- While I'm here:
  - Remove LOCALBASE/bin from RUN_DEPENDS
  - Use USES=shebangfix
  - Use ETCDIR
  - Add 000.letsencrypt.sh to SUB_FILES
  - Remove GH_PROJECT
  - Simplify Makefile

Letencrypt.sh is a pure BASH implementation of the ACME
protocol used by Lets Encrypt.

WWW: https://github.com/lukas2511/letsencrypt.sh

PR:		206375
Submitted by:	Sascha Holzleiter <sascha@root-login.org>
 2016-02-03 20:54:51 +00:00
Mark Felder
655c2f5d11 Document py-salt vulnerability 
Security:	CVE-2016-1866
 2016-02-03 17:16:57 +00:00
TAKATSU Tomonari
a8b45a5506 - Fix build on OSVERSION < 1000015 
Reported by:	pkg-fallout
 2016-02-03 09:42:34 +00:00
Martin Matuska
817ca149ff Horde package update: 
comms/pear-Horde_ActiveSync 2.30.2 -> 2.30.6
devel/pear-Horde_Alarm 2.2.5 -> 2.2.6
devel/pear-Horde_Argv 2.0.11 -> 2.0.12
security/pear-Horde_Auth 2.1.10 -> 2.1.11
devel/pear-Horde_Autoloader 2.1.1 -> 2.1.2
www/pear-Horde_Browser 2.0.10 -> 2.0.11
devel/pear-Horde_Cache 2.5.0 -> 2.5.2
archivers/pear-Horde_Compress 2.1.3 -> 2.1.4
archivers/pear-Horde_Compress_Fast 1.1.0 -> 1.1.1
devel/pear-Horde_Constraint 2.0.2 -> 2.0.3
devel/pear-Horde_Controller 2.0.3 -> 2.0.4
devel/pear-Horde_Core 2.22.3 -> 2.22.5
security/pear-Horde_Crypt 2.6.1 -> 2.7.0
security/pear-Horde_Crypt_Blowfish 1.1.0 -> 1.1.1
www/pear-Horde_Css_Parser 1.0.7 -> 1.0.8
devel/pear-Horde_Data 2.1.3 -> 2.1.4
devel/pear-Horde_Date 2.1.1 -> 2.2.0
devel/pear-Horde_Date_Parser 2.0.4 -> 2.0.5
databases/pear-Horde_Db 2.3.0 -> 2.3.1
devel/pear-Horde_Exception 2.0.6 -> 2.0.7
www/pear-Horde_Feed 2.0.3 -> 2.0.4
www/pear-Horde_Form 2.0.11 -> 2.0.12
security/pear-Horde_Group 2.0.5 -> 2.1.0
databases/pear-Horde_HashTable 1.2.3 -> 1.2.4
devel/pear-Horde_History 2.3.5 -> 2.3.6
www/pear-Horde_Http 2.1.5 -> 2.1.6
devel/pear-Horde_Icalendar 2.1.2 -> 2.1.3
dns/pear-Horde_Idna 1.0.3 -> 1.0.4
graphics/pear-Horde_Image 2.3.3 -> 2.3.4
mail/pear-Horde_Imap_Client 2.29.4 -> 2.29.5
devel/pear-Horde_Injector 2.0.4 -> 2.0.5
devel/pear-Horde_Itip 2.1.0 -> 2.1.1
mail/pear-Horde_ListHeaders 1.2.2 -> 1.2.3
devel/pear-Horde_Lock 2.1.1 -> 2.1.2
sysutils/pear-Horde_Log 2.1.2 -> 2.1.3
devel/pear-Horde_LoginTasks 2.0.5 -> 2.0.6
mail/pear-Horde_Mail 2.6.2 -> 2.6.3
mail/pear-Horde_Mapi 1.0.5 -> 1.0.6
mail/pear-Horde_Mime 2.9.2 -> 2.9.3
mail/pear-Horde_Mime_Viewer 2.1.1 -> 2.1.2
devel/pear-Horde_Notification 2.0.3 -> 2.0.4
archivers/pear-Horde_Pack 1.0.5 -> 1.0.6
textproc/pear-Horde_Pdf 2.0.6 -> 2.0.7
devel/pear-Horde_Prefs 2.7.4 -> 2.7.5
devel/pear-Horde_Rdo 2.0.4 -> 2.0.5
www/pear-Horde_Routes 2.0.4 -> 2.0.5
net/pear-Horde_Rpc 2.1.5 -> 2.1.6
security/pear-Horde_Secret 2.0.5 -> 2.0.6
devel/pear-Horde_Serialize 2.0.4 -> 2.0.5
www/pear-Horde_SessionHandler 2.2.5 -> 2.2.7
security/pear-Horde_Share 2.0.7 -> 2.0.8
mail/pear-Horde_Smtp 1.9.1 -> 1.9.2
net/pear-Horde_Socket_Client 2.0.0 -> 2.1.0
textproc/pear-Horde_SpellChecker 2.1.2 -> 2.1.3
devel/pear-Horde_Stream 1.6.2 -> 1.6.3
devel/pear-Horde_Stream_Filter 2.0.3 -> 2.0.4
devel/pear-Horde_Stream_Wrapper 2.1.2 -> 2.1.3
devel/pear-Horde_Support 2.1.4 -> 2.1.5
comms/pear-Horde_SyncMl 2.0.5 -> 2.0.6
www/pear-Horde_Template 2.0.2 -> 2.0.3
textproc/pear-Horde_Text_Diff 2.1.1 -> 2.1.2
textproc/pear-Horde_Text_Filter 2.3.2 -> 2.3.3
textproc/pear-Horde_Text_Flowed 2.0.2 -> 2.0.3
devel/pear-Horde_Timezone 1.0.9 -> 1.0.10
devel/pear-Horde_Token 2.0.7 -> 2.0.8
devel/pear-Horde_Translation 2.2.0 -> 2.2.1
net/pear-Horde_Url 2.2.4 -> 2.2.5
devel/pear-Horde_Util 2.5.6 -> 2.5.7
sysutils/pear-Horde_Vfs 2.3.0 -> 2.3.1
devel/pear-Horde_View 2.0.5 -> 2.0.6
textproc/pear-Horde_Xml_Element 2.0.3 -> 2.0.4
textproc/pear-Horde_Xml_Wbxml 2.0.2 -> 2.0.3
ftp/horde-gollem 3.0.6 -> 3.0.7
www/horde-base 5.2.8 -> 5.2.9
mail/horde-imp 6.2.11 -> 6.2.12
mail/horde-ingo 3.2.7 -> 3.2.8
deskutils/horde-kronolith 4.2.11 -> 4.2.12
deskutils/horde-mnemo 4.2.8 -> 4.2.9
deskutils/horde-nag 4.2.6 -> 4.2.7
devel/horde-timeobjects 2.1.0 -> 2.1.1
www/horde-trean 1.1.3 -> 1.1.4
mail/horde-turba 4.2.11 -> 4.2.12
mail/horde-webmail 5.2.11 -> 5.2.12
devel/horde-whups 3.0.5 -> 3.0.6
 2016-02-02 22:56:26 +00:00
Johan van Selst
df53895422 Update Nettle to 3.2 (ABI compatible) 
Remove local patches that are now included upstream
 2016-02-02 22:44:40 +00:00
Sunpoet Po-Chuan Hsieh
d4b96b4b51 - Document Ruby on Rails multiple vulnerabilities 2016-02-02 22:44:11 +00:00
Kubilay Kocak
286778c5c8 security/suricata: Update to 3.0 
- Switch from DISTVERSION to PORTVERSION
- Update PORTVERION and distinfo checksum (3.0)

Changes:

  * http://suricata-ids.org/2016/01/27/suricata-3-0-available/
  * https://redmine.openinfosecfoundation.org/versions/80

PR:		206690
Submitted by:	Franco Fichtner <franco opnsense org>
 2016-02-02 16:33:12 +00:00
Kubilay Kocak
b423c6ac57 security/py-{letsencrypt,acme}: Update to 0.3.0 
Common:

- Update PORTVERSION and distinfo checksum (0.3.0) [1]
- Use PORTVERSION over DISTVERSION (not necessary at the moment)
- Update dependency entries to match those in setup.py
  - match minimum versions, remove version if not specified there
  - requests has been removed from letsencrypt, acme depends on it

py-letsecnrypt:

- Remove setup.py patch (upstreamed) [1]

py-acme:

- Enable NO_ARCH

PR:		206397
Submitted by:	pkubaj@anongoth.pl [1]
Reviewed by:	cpm (maintainer, acme)
Approved by:	cpm (maintainer, acme)
 2016-02-02 12:34:09 +00:00
Koop Mast
47f7bfb1ab Document that the linux curl ports are still vulnerable. 
Submitted by:	xmj@
 2016-02-02 11:05:09 +00:00
Mark Felder
d3c4b41ff3 Document net/socat vulnerability 2016-02-01 22:05:51 +00:00