freebsd-ports

Author	SHA1	Message	Date
Marcus Alves Grando	d3ce95bdb4	Update to 4.6.1 PR: 87000 Submitted by: Tim Bishop <tim@bishnet.net> (maintainer)	2005-10-06 20:48:47 +00:00
Emanuel Haupt	4e74162b8b	Change MAINTAINER address for my ports. Approved by: novel (mentor)	2005-10-06 11:57:11 +00:00
Simon Barner	463dd17b4c	- Update to 1.6.39 - Use DATADIR - Pass maintainership to submitter Submitted by: Emanuel Haupt <ehaupt@FreeBSD.org> Approved by: Dominic Marks <dom@goodforbusiness.co.uk> (old maintainer)	2005-10-05 23:13:02 +00:00
Thierry Thomas	c2caa0f6a0	Add an entry for UW-IMAP Mailbox Name Handling Remote Buffer Overflow Vulnerability (CAN-2005-2933).	2005-10-05 17:44:06 +00:00
Marcus Alves Grando	4ac2097c2f	Update to 0.7 PR: 86929 Submitted by: Philippe Rocques <phil@teaser.fr> (maintainer) Approved by: pav (mentor)	2005-10-05 17:21:11 +00:00
Marcus Alves Grando	ef82fc20c7	New port The Authen::CyrusSASL module provides a simple class that allows you to send request to the cyrus-sasl's authen daemon. This module is based on the Authen::Radius module with the similar interface. PR: 86943 Submitted by: Attila Nagy <bra@fsn.hu> Approved by: pav (mentor)	2005-10-05 16:31:43 +00:00
Emanuel Haupt	ec08f711e1	Add credit for recent ftp/weex incident Approved by: novel (mentor)	2005-10-05 15:55:08 +00:00
Sergei Kolobov	f7ffcd2325	- Update to 1.1 (minor bugfixes)	2005-10-05 07:12:58 +00:00
Edwin Groothuis	cc784699e5	[maintainer update] update security/pamtester update security/pamtester to 0.1.2 PR: ports/86905 Submitted by: Andrew Thompson <thompsa@FreeBSD.org>	2005-10-04 23:14:39 +00:00
Cy Schubert	f1d9e3bd4f	Update 1.8.1 --> 1.8.2	2005-10-04 22:16:02 +00:00
Cy Schubert	7d38b507de	Update 1.4.1 --> 1.4.2	2005-10-04 22:09:08 +00:00
James E. Housley	6d3e8af4f1	Update to DAT 4596	2005-10-04 16:39:19 +00:00
James E. Housley	07e46d9293	Update update_dat to use fetch and be a little more robust. Thanks to Sztankay Zsolt for the work.	2005-10-04 16:38:25 +00:00
Marcus Alves Grando	15069e7608	Update to 20051003 Unmark FORBIDDEN PR: 86878 Approved by: rob@debank.tv (maintainer), pav (mentor)	2005-10-04 13:39:49 +00:00
Renato Botelho	a1bb849ee3	rinetd >= 0.62_1 has no more vulnerabilities	2005-10-04 13:22:59 +00:00
Dirk Meyer	1114c10fef	- bump SHLIB version The API of openssl 0.9.8 ist compatible but not identical. This version bump might break build of all ports that try to include the opessl in base at the same time. That ports should be fixed.	2005-10-04 07:35:07 +00:00
Cheng-Lung Sung	f4e7eeef11	Changelog: - Fixed major performance problems with recent versions of GNU C++ - Added an implementation of the X9.31 PRNG - Removed the X9.17 and FIPS 186-2 PRNG algorithms - Changed defaults to use X9.31 PRNGs as global PRNG objects - Some cleanups related to the engine code and more (see http://botan.randombit.net/logs/log-14.php) PR: 86589 Submitted by: az (New committer today. Welcome to the zoo :) )	2005-10-04 06:46:00 +00:00
James E. Housley	9afbec6931	Update to 4595	2005-10-03 18:05:28 +00:00
Michael Landin	1182d9abe1	o Fix whitespace (to tab) o Fix path to database files problem [1] o use %%DATADIR%% while we are here Submitted by: andreas[1]	2005-10-03 13:51:14 +00:00
Remko Lodder	2d1e7daa64	Add references to three squid entries. Submitted by: Thomas-Martin Seck <tmseck at netcologne dot de> (except for the bid's which i added myself).	2005-10-02 20:10:41 +00:00
Simon L. B. Nielsen	99a5d1fcad	Use the <freebsdpr> tag to markup a PR in weex -- remote format string vulnerability entry.	2005-10-02 17:46:23 +00:00
Jean-Yves Lefort	2d89b6b140	Document a format string vulnerability in ftp/weex.	2005-10-02 16:11:30 +00:00
Simon L. B. Nielsen	28d0fdcdbf	Document picasm -- buffer overflow vulnerability.	2005-10-02 07:45:28 +00:00
Dirk Meyer	fefc53a04f	- Fix MASTER_SITES	2005-10-02 06:07:24 +00:00
MANTANI Nobutaka	3be9e2b847	Add an URL to the entry of the japanese/uim.	2005-10-01 16:43:38 +00:00
MANTANI Nobutaka	48c0ea3617	Document japanese/uim privilege escalation vulnerability.	2005-10-01 16:35:20 +00:00
Simon L. B. Nielsen	1389eab081	Document cfengine -- arbitrary file overwriting vulnerability.	2005-10-01 15:21:56 +00:00
Remko Lodder	a68c8964d5	Mark zsync <= 0.4.1 vulnerable to the zlib buffer overflow vulnerability. Inspired by: gordon's commit	2005-10-01 10:17:19 +00:00
Simon L. B. Nielsen	df8805e636	Add more references to unace -- multiple vulnerabilities entry.	2005-10-01 08:40:57 +00:00
Simon L. B. Nielsen	2ab099b72e	Add CVE name to an older ProZilla entry.	2005-10-01 07:14:34 +00:00
Mark Linimon	e019e1994f	Reset maintainer who had turned in his commit bit some time back as he no longer had time to work on FreeBSD. We appreciate the help in the past. Approved by: alex (former maintainer)	2005-10-01 06:09:00 +00:00
James E. Housley	9d63e26943	Update to DAT 4594	2005-09-30 17:02:41 +00:00
Sergey Skvortsov	b5c21cee5e	Update to 1.12	2005-09-30 16:38:31 +00:00
Renato Botelho	915f1d747c	- Use DOCSDIR, PORTDOCS and NOPORTDOCS - Remove one line pkg-plist - Take maintainership	2005-09-30 12:52:44 +00:00
Mark Linimon	40fa28d14c	With portmgr hat on, reset maintainer. There have been several maintainer timeouts, and no response to email for more than 2 weeks.	2005-09-30 02:49:52 +00:00
Marcus Alves Grando	62805621d9	Update to 2.5.5 Approved by: olive@oban.frmug.org (maintainer via email), pav (mentor)	2005-09-29 21:09:10 +00:00
Simon L. B. Nielsen	bd704294a4	Add more references for latest phpmyfaq entry.	2005-09-29 20:01:41 +00:00
Simon L. B. Nielsen	0daf44cec5	- Add a note that new entries, per convention, should be added to the start of this file. For latest phpmyfaq entry: - Use port directory name as first part of topic. - No need to include information about affected releases in topic (it's somewhat redundant and makes the title longer). - Reindent body with standard FreeBSD Doc Project (more or less) style.	2005-09-29 19:31:12 +00:00
Vsevolod Stakhov	2c558cfdfd	Document vulnerabilities in www/phpmyfaq	2005-09-28 22:54:43 +00:00
James E. Housley	51ab423d85	Update to 4592	2005-09-28 17:47:20 +00:00
Marius Strobl	5434bafd88	- Update to 1.1.1-9. For a list of changes since 1.1.0-7 please see the installed ChangeLog. - Remove the references to the no longer available free license key for private use from pkg-descr and pkg-message. Approved by: netchild	2005-09-28 15:41:25 +00:00
Mark Linimon	bdffcfd49a	Chase updated mastersite. Source: distfile survey	2005-09-28 08:20:59 +00:00
Mark Linimon	899ab72dbc	Remove obsolete mastersite. Source: distfile survey	2005-09-28 08:10:45 +00:00
Dirk Meyer	097f4747f6	- update to 3.0.18 - unbreak on >= 7.0 - set new maintainer Johan van Selst PR: 86645 Submitted by: Johan van Selst	2005-09-28 05:08:39 +00:00
Hajimu UMEMOTO	c9540832a2	make it compilable with OpenSSL 0.9.8. PR: ports/86452 Submitted by: Dirk Meyer <dirk.meyer__at__dinoex.sub.org>	2005-09-27 20:12:38 +00:00
Renato Botelho	0960e2f2f5	- s/malloc.h/stdlib.h/ on some files to fix build on amd64 - 7.x [1] - change some patches to REINPLACE_CMD [2] PR: ports/86638 [1] Submitted by: maintainer [1] Reworked by: me [2] Approved by: maintainer [2]	2005-09-27 16:36:23 +00:00
James E. Housley	7ef458b428	Update to 4590	2005-09-26 16:02:03 +00:00
Renato Botelho	fee319edae	Add tthsum 1.1.0, a command-line utility for generating and checking TTH message digests. PR: ports/86555 Submitted by: Emanuel Haupt <ehaupt@critical.ch>	2005-09-26 13:54:04 +00:00
Christian S.J. Peron	ba5e6bd4e1	-Remove MANCOMPRESSED macro as it's not required -Introduce do-install target which will use INSTALL_MAN and INSTALL_PROGRAM macros to install the files. This should fix packet build failures. Approved by: kris	2005-09-25 15:02:12 +00:00
Anton Berezin	80fcc57e5b	Add a missing dependency. Submitted by: Kevin Golding <kevin@caomhin.demon.co.uk> PR: 86556	2005-09-25 13:32:37 +00:00
Yen-Ming Lee	0e7e1529ae	- update to 1.03 - assign maintainer to perl@	2005-09-25 00:50:08 +00:00
Roman Bogorodskiy	4e891541c6	Update to 0.32. PR: 86513 Submitted by: David Thiel (maintainer)	2005-09-24 12:49:22 +00:00
Remko Lodder	29187277a0	Add linux_base-suse-9.3 to the zlib entry. Inspired by: trevors commit.	2005-09-24 09:22:30 +00:00
Simon L. B. Nielsen	4d45f19503	Mark FORBIDDEN due to arbitrary code execution vulnerability. Security: http://vuxml.FreeBSD.org/271498a9-2cd4-11da-a263-0001020eed82.html With hat: secteam	2005-09-24 08:35:43 +00:00
Simon L. B. Nielsen	2548c814c4	Document clamav -- arbitrary code execution and DoS vulnerabilities.	2005-09-24 08:31:46 +00:00
Simon L. B. Nielsen	30b443303c	- Be consistent and call entries "firefox & mozilla", not the other way around. - Mark latest linux-mozilla port as fixed for recent mozilla vulnerabilities.	2005-09-23 21:44:15 +00:00
Simon L. B. Nielsen	5477df8a4d	- Document mozilla & firefox -- multiple vulnerabilities. - Add Mozilla Foundation Security Advisory references to two other firefox/mozilla entries.	2005-09-23 19:19:03 +00:00
James E. Housley	f9d18c92e9	Update to 4589	2005-09-23 17:19:55 +00:00
Trevor Johnson	2ca0f2bd92	Checking MACHINE_ARCH is deprecated.	2005-09-23 16:21:45 +00:00
Bill Fenner	28cfc06ac5	search.cpan.org redirect reduction canonicalization project, pass 3: Refer to all modules using their /dist/Foo/ path instead of via the mishmash of old author path, new author path, module documentation, etc. These are mostly stragglers that should have been caught in pass 2. This pass brought to you by Bill's 102-degree fever during pass 2.	2005-09-22 18:57:24 +00:00
James E. Housley	e497162750	Update to 4588	2005-09-22 16:11:23 +00:00
Dirk Meyer	673a029500	- presrve downloaded cvd files on deinstall Approved by: Rob Evers	2005-09-22 13:17:52 +00:00
Vsevolod Stakhov	fa8ed25c45	Fix DISTNAME variable. Reported by: Jin-Shan Tseng <tjs@cdpa.nsysu.edu.tw> Pointy hat to: vsevolod	2005-09-22 07:15:29 +00:00
Simon L. B. Nielsen	9caf96ed77	Add real references to urban -- stack overflow vulnerabilities.	2005-09-21 23:03:56 +00:00
Vsevolod Stakhov	f22ba4665b	Update to 2.0.10 [1] Feed portlint PR: 86426 [1] Submitted by: David Thiel (maintainer) [1]	2005-09-21 22:56:58 +00:00
Simon L. B. Nielsen	dd5c1f81f5	Document mozilla & firefox -- command line URL shell command injection.	2005-09-21 22:31:09 +00:00
Dirk Meyer	46cb204584	- mark BROKEN for FreeBSD >= 7 - drop maintainership	2005-09-21 22:29:56 +00:00
Simon L. B. Nielsen	e348f65ac4	Add CVE name for tor -- diffie-hellman handshake flaw.	2005-09-21 21:59:31 +00:00
Simon L. B. Nielsen	ae68849b21	Correct package name for entry bind -- buffer overrun vulnerability.	2005-09-21 21:46:25 +00:00
Simon L. B. Nielsen	28c69d6d13	Add CVE name to an older CUPS issue.	2005-09-21 21:15:51 +00:00
Bill Fenner	a5b727886c	search.cpan.org redirect reduction canonicalization project, pass 2: Refer to all modules using their /dist/Foo/ path instead of via the mishmash of old author path, new author path, module documentation, etc. This pass brought to you by loving, painstaking hand editing.	2005-09-21 19:35:50 +00:00
Bill Fenner	81797980f7	search.cpan.org redirect reduction canonicalization project, pass 1: URLs automatically rewritten from /search?dist=Foo or /dist/Foo to /dist/Foo/ (note trailing slash). After a 2002(!) reorganization, this is the preferred way to refer to modules on search.cpan.org. This pass brought to you by http://people.freebsd.org/~fenner/fix-search	2005-09-21 19:31:43 +00:00
James E. Housley	13f7ace6df	Update to 4587	2005-09-21 15:46:33 +00:00
Marcus Alves Grando	9a84292384	Update to 0.31 PR: ports/86386 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer) Approved by: pav (mentor)	2005-09-21 12:06:58 +00:00
Christian S.J. Peron	90800ae149	Upgrade termlog. This fixes termlog on -CURRENT and hopefully the snp fixes in -CURRENT will be MFC'ed to RELENG_6 so it will work on all releases again. Approved by: petef	2005-09-21 04:20:28 +00:00
Yen-Ming Lee	50b592e495	- update to 0.22	2005-09-21 01:55:42 +00:00
Simon L. B. Nielsen	6888f0763b	Fix build with milter on FreeBSD 4.X.	2005-09-20 19:03:51 +00:00
Oliver Lehmann	b07c247ec4	update to 2.5.3 PR: 86331 Submitted by: oliver Approved by: maintainer	2005-09-20 17:15:59 +00:00
James E. Housley	088631653f	Update to 4586	2005-09-20 16:03:36 +00:00
James E. Housley	98bde96201	Update to 4585	2005-09-20 15:54:01 +00:00
Erwin Lansing	9030b5c3b8	Reset maintainership of Seamus Venasse who has not responded for some time. Thank you for your efforts in the past! Noticed by: tobez Approved by: portmgr (self)	2005-09-20 14:20:34 +00:00
Pav Lucistnik	07a83b18af	- Update to 0.87 PR: ports/86276 Submitted by: dawnshade <h-k@mail.ru> Approved by: maintainer timeout (3 days) timeout rushed by simon (secteam hat) Security: CAN-2005-2919, CAN-2005-2920, http://www.secunia.com/advisories/16848/	2005-09-20 08:09:03 +00:00
Dirk Meyer	3ba9af078b	- update default to 0.9.8 - new option WITH_OPENSSL_097	2005-09-19 21:04:35 +00:00
Stefan Eßer	858ffea968	Fix BUILD_DEPENDS on libpcap for -STABLE, it was overriding the dependency on libnet-devel ...	2005-09-19 18:16:02 +00:00
James E. Housley	9c336057b1	Update to 4584	2005-09-19 18:09:30 +00:00
Vsevolod Stakhov	d5f9e8dd85	Add missed dependency from textproc/py-libxml2 [1] Convert to static plist. PR: 86335 Submitted by: rik <freebsd-ports@rikrose.net>	2005-09-19 17:38:46 +00:00
Remko Lodder	7869900ab0	Fix the htdig entry, the port version and the VuXML version did not align. Reported by: Nic Bellamy <nic at bellamy dot co dot nz>	2005-09-19 16:12:06 +00:00
Remko Lodder	e16354e3c3	Fix the squirrelmail entry since only versions prior to 1.4.5 were affected. Bump modification date accordingly. Reported by: Avinash Piare <avinash at piare dot org>	2005-09-19 16:09:27 +00:00
Lars Thegler	50a1ba8b01	Fixed plist. Reported by: pointyhat via kris	2005-09-18 20:48:23 +00:00
Pav Lucistnik	10ee43b9c6	Pamsfs is a PAM module that logs a user into a SFS server on system login. The primary reason for doing this is to allow users' home-directories to be located on a SFS server. PR: ports/86095 Submitted by: David Thiel <lx@redundancy.redundancy.org>	2005-09-18 13:50:07 +00:00
Volker Stolz	acce299054	FreeBSD 6 no longer adds debug.if_* sysctl variables in its default kernel (according to the release notes), so our heuristic assumes the module is missing and tries to load it, which fails as the module already exists. PR: ports/86286 Submitted by: maintainer	2005-09-18 12:01:57 +00:00
Remko Lodder	2c4ab28551	Document the following items: o apache -- Certificate Revocation List (CRL) off-by-one vulnerability o squirrelmail -- _$POST variable handling allows for various attacks Reviewed by: simon	2005-09-17 19:08:42 +00:00
Lars Thegler	5f92c24a0b	Add p5-Digest-SHA 5.31, Perl extension for SHA-1/224/256/384/512. PR: ports/84570 Submitted by: Travis Campbell <hcoyote@ghostar.org>	2005-09-17 16:43:48 +00:00
Lars Thegler	8a75bddbee	Fixed plist Reported by: pointyhat via kris	2005-09-17 11:48:39 +00:00
Marcus Alves Grando	e158cc495c	Update to 0.6.0 Submitted to ports@ for test. Without reply. PR: ports/83748 Submitted by: Marcus Grando <marcus@corp.grupos.com.br> Approved by: pav (mentor), anders (maintainer timeout, 58 days)	2005-09-16 20:56:21 +00:00
Marcus Alves Grando	346fd0a6a3	Update my email Approved by: pav (mentor)	2005-09-16 17:58:32 +00:00
Marcus Alves Grando	097dadd09b	Update to 3.2.2 Approved by: pav (mentor)	2005-09-16 15:35:43 +00:00
Renato Botelho	30915f5be3	- Update to 3.93 PR: ports/86113 Submitted by: maintainer	2005-09-16 11:05:18 +00:00
Pav Lucistnik	0fa16d0db0	ClusterSSH controls a number of xterm windows via a single graphical console window to allow commands to be interactively run on multiple servers over an ssh connection. PR: ports/84970 Submitted by: David Thiel <lx@redundancy.redundancy.org>	2005-09-15 23:42:29 +00:00
Pav Lucistnik	2e5accd757	- Add an entry on possible DOS condition regarding NTLM in squid PR: ports/86179 Submitted by: Thomas-Martin Seck <tmseck@netcologne.de>	2005-09-15 20:14:26 +00:00
James E. Housley	4abf2b5095	Udate to DAT 4582	2005-09-15 16:03:51 +00:00
Lars Thegler	98c35b4d0f	Add p5-Crypt-NULL 1.02, perl implementation of the NULL encryption algorithm. PR: ports/84629 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org>	2005-09-15 15:02:39 +00:00
Vsevolod Stakhov	d11db448ed	Update to 0.6.1 Submitted by: Yvan Vanhullebus (maintainer)	2005-09-15 12:11:48 +00:00
Volker Stolz	7bd4a780be	- Firewalk port really depends on net/libnet-devel, but the check can be satisfied by net/libnet. - BIOCIMMEDIATE is undefined in some cases. PR: ports/86132 Submitted by: Michael Scheidell via maintainer	2005-09-15 11:14:54 +00:00
Joe Marcus Clarke	c790148f34	Update to 0.4.5.	2005-09-15 06:48:22 +00:00
Pav Lucistnik	0ffc3a41c0	- Update to 0.9.6 PR: ports/83453 Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu> Approved by: bms (maintainer; blanket)	2005-09-15 00:05:57 +00:00
Pav Lucistnik	3ba03fca82	- Remove dependencies on security/pf, it was removed. pf is in base since 502106 Pointy hat to: pav	2005-09-14 23:27:00 +00:00
Pav Lucistnik	05bf593a81	- Remove security/pf and security/authpf ports. They were only useful on FreeBSD 5.0 - 5.2.1. Requested by: mlaier (maintainer) via linimon	2005-09-14 23:14:39 +00:00
Dejan Lesjak	bf24ec6453	Document X11 server -- pixmap allocation vulnerability. Reviewed by: simon	2005-09-14 22:22:49 +00:00
James E. Housley	afa06c0f4a	Update to DAT 4581	2005-09-14 17:52:51 +00:00
Kirill Ponomarev	6b4c016cab	Drop maintainership, since I'm buried in the $REALLIFE stuff.	2005-09-14 08:26:09 +00:00
Jean-Yves Lefort	3087a89f88	Add signing-party. signing-party is a collection for all kinds of PGP/GnuPG related things, including signing scripts, party preparation scripts, etc. * caff: CA - Fire and Forget signs and mails a key * pgp-clean: removes all non-self signatures from key * pgp-fixkey: removes broken packets from keys * gpg-mailkeys: simply mail out a signed key to its owner * gpg-key2ps: generate PostScript file with fingerprint paper strips * gpglist: show who signed which of your UIDs * gpgsigs: annotates list of GnuPG keys with already done signatures * keylookup: ncurses wrapper around gpg --search WWW: http://pgp-tools.alioth.debian.org/ PR: ports/86077 Submitted by: Johan van Selst <johans@stack.nl>	2005-09-14 00:06:49 +00:00
Pav Lucistnik	880769f138	- Website is gone	2005-09-13 21:20:20 +00:00
Remko Lodder	b4a8bdcba3	Document unzip -- permission race vulnerability. [1] Update the recent htdig entry with it's corrected version. Reviewed by: simon [1]	2005-09-13 20:18:44 +00:00
James E. Housley	3c8da39abd	Update to DAT 4580	2005-09-13 16:04:08 +00:00
Oliver Lehmann	d498a658df	change USE_PERL5 to USE_PERL5_BUILD because perl is only needed during the build process Approved by: maintainer	2005-09-13 15:06:23 +00:00
Renato Botelho	9f1476475c	- Fix WWW PR: ports/86042 Submitted by: Marcus Alves Grando <marcus@corp.grupos.com.br>	2005-09-13 11:43:35 +00:00
James E. Housley	1ccbd76b6f	Update to DAT 4579	2005-09-12 16:05:00 +00:00
Vsevolod Stakhov	df897d7832	Update to 0.3.6b that fixes build with samba 3.0.20. PR: 86013 Submitted by: Jean Milanez Melo (maintainer)	2005-09-12 15:08:11 +00:00
Michael Nottebrock	ce5d52e353	Update to 1.9.19	2005-09-12 14:37:32 +00:00
Michael Nottebrock	ebc7d38523	Update to 0.9.12	2005-09-12 14:36:17 +00:00
Sergey Skvortsov	2d5f525970	Update to 1.16	2005-09-12 13:36:00 +00:00
Sergey Skvortsov	0823bd0832	Update to 1.11 Changes: http://search.cpan.org/src/GAAS/Digest-1.11/Changes	2005-09-12 07:56:07 +00:00
Roman Bogorodskiy	1caf8c7446	- Revive CONFLICTS with gnutls-devel [1] - Do not build static libraries [2] Requested by: kris [1] vs [2]	2005-09-11 11:23:24 +00:00
Simon L. B. Nielsen	02e71a56c9	Document firefox & mozilla -- buffer overflow vulnerability. Prodded by: pav	2005-09-10 20:55:35 +00:00
Pav Lucistnik	944cbf4d77	- Replace .error with IGNORE to prevent INDEX build failures	2005-09-10 20:32:10 +00:00
Pav Lucistnik	184a11723a	- Only for FreeBSD 4.X and 5.X Reported by: krismail	2005-09-10 18:37:39 +00:00
James E. Housley	7c1a2bebce	Update to DAT 4578	2005-09-10 12:14:59 +00:00
Pav Lucistnik	dc62b3aeec	- Update WWW	2005-09-09 23:31:23 +00:00
Pav Lucistnik	d1cadd4497	- Update to 2.1.0 PR: ports/85899 Submitted by: Rob Evers <rob@debank.tv> (maintainer)	2005-09-09 21:38:54 +00:00
Roman Bogorodskiy	6bb185d957	Don't CONFLICTS with gnutls-devel since it has been removed.	2005-09-09 15:34:02 +00:00
Sam Lawrance	bab426bf73	Update to 0.9.6 - Add rcng startup - No longer touch pksd.conf, only pksd.conf.sample - Ensure the port builds against db2 from ports by deleting the included version. Add post-patch bits to help this happen. - Submitter takes maintainership PR: ports/85802 Submitted by: Graham Todd <gtodd@bellanet.org> (new maintainer) Approved by: Jason Harris <jharris@widomaker.com> (maintainer)	2005-09-09 14:00:10 +00:00
Sam Lawrance	89f1f7b647	Give maintainership to submitter PR: ports/85870 Submitted by: Daniel Roethlisberger <daniel@roe.ch>	2005-09-08 23:59:46 +00:00
James E. Housley	8224ec153d	Update to DAT 4577	2005-09-08 16:46:26 +00:00
Kirill Ponomarev	5994a36bf8	Update to version 3.90	2005-09-08 13:18:14 +00:00
Kirill Ponomarev	cdeb671bcf	Assign maintainership to daniel@roe.ch PR: ports/85855 Submitted by: Daniel Roethlisberger <daniel@roe.ch>	2005-09-08 08:16:03 +00:00
James E. Housley	cfc8f567c9	Update to DAT 4576	2005-09-07 16:02:31 +00:00
Sam Lawrance	fa84631d99	s/BROKEN/IGNORE/ Reported by: linimon Log: Mark broken for OSVERSION >= 500000. Does not build without S/Key libraries and headers. PR: ports/85256 Submitted by: Christoph Weber-Fahr <wefa@tnd37.tnd.arcor.net>	2005-09-07 13:55:19 +00:00
Sam Lawrance	8fa6600b8c	Mark broken for OSVERSION >= 500000. Does not build without S/Key libraries and headers. PR: ports/85256 Submitted by: Christoph Weber-Fahr <wefa@tnd37.tnd.arcor.net>	2005-09-07 13:35:59 +00:00
Roman Bogorodskiy	22bea8ef86	Forgot to uncomment OPTIONS after testing. Noted by: David Thiel <lx@redundancy.redundancy.org>	2005-09-07 12:34:21 +00:00
Sam Lawrance	79fc4d5562	Mark the latest version of cups-base fixed for "xpdf -- disk fill DoS vulnerability"	2005-09-07 08:46:52 +00:00
Yen-Ming Lee	03c973f2b1	- Patch file updated to process rule numbers above 999. - remove redundant entries in pkg-plist PR: 85189 Submitted by: Michael Butler Reviewed by: Michael Ranner <mranner@inode.at> (maintainer)	2005-09-06 17:20:34 +00:00
James E. Housley	a815f63dae	Update to DAT 4575	2005-09-06 16:01:51 +00:00
Renato Botelho	f9f47c7079	Add ncrypt 0.7.0, advanced AES file encryption tool. PR: ports/85486 Submitted by: Frank Laszlo <laszlof@vonostingroup.com>	2005-09-06 12:49:38 +00:00
Renato Botelho	7877bb5c51	- Pass maintainership to submitter, since he sent the last patch. PR: ports/85775 Submitted by: Marcus Alves Grando <marcus@corp.grupos.com.br>	2005-09-06 12:36:30 +00:00
James E. Housley	d49cbd6b24	Update to DAT 4574	2005-09-06 10:47:15 +00:00
Dmitry Sivachenko	77c4c60ffa	Update WWW and MASTER_SITES.	2005-09-06 06:11:24 +00:00
Dmitry Sivachenko	0a7ff81632	Fix build with openssl-0.9.8. PR: 85309 Submitted by: Daniel Roethlisberger <daniel@roe.ch>	2005-09-06 06:06:15 +00:00
Joe Marcus Clarke	cd55c58e43	Update to 0.4.4.	2005-09-05 18:29:41 +00:00
Vsevolod Stakhov	9eebd2f131	Add IPSec tools port - the new "official" version of racoon, is the only one which is maintained and have lots of new features. PR: 85544 Submitted by: VANHULLEBUS Yvan <vanhu@netasq.com> Approved by: perky (mentor)	2005-09-05 14:13:42 +00:00
Cheng-Lung Sung	97cb38e987	- clamsmtp 1.5 works only in debug mode. Included patch fix this bug by moving socket creation after daemonizing as suggested in mailing list clamsmtp-users@lists.sourceforge.net http://sourceforge.net/mailarchive/forum.php?thread_id=8060741&forum_id=42732 - bump PORTREVISION PR: ports/85706 Submitted by: Alex L. Demidov <alexd AT vinf dot ru>	2005-09-05 03:16:20 +00:00
Ade Lovett	a817a3eaa8	Revert back to devel/bison	2005-09-04 19:36:50 +00:00
Sergey Matveychuk	1044b5d3e4	- Update to 1.1 PR: ports/85585 Submitted by: maintainer	2005-09-04 18:21:00 +00:00
Sergey Matveychuk	3135a5d41b	- Update to 1.1.4 PR: ports/84725 Submitted by: maintainer	2005-09-04 16:45:40 +00:00
Remko Lodder	9869f02a09	Add forgotten </package> line. Spotted by: simon	2005-09-04 15:24:56 +00:00
Remko Lodder	1f32002401	Mark b2evolution prior to 0.9.0.12_2 vulnerable to the XML_RPC remote php code injection vulnerability. Inspired by: pav's commit, updating the port.	2005-09-04 15:16:52 +00:00
Sam Lawrance	9dccd11f78	- Unbreak vpnc-disconnect by fixing the config.c patch - Remove obsolete vpnc-wrapper leftovers to make portlint happy - Use PLIST_FILES and PORTDOCS instead of pkg-plist - Bump PORTREVISION PR: ports/84491 Submitted by: Daniel Roethlisberger <daniel@roe.ch> Approved by: Christian Lackas <delta@lackas.net> (maintainer)	2005-09-04 14:20:45 +00:00
Remko Lodder	8d52ed02cb	Document htdig -- cross site scripting vulnerability. Reviewed by: simon	2005-09-04 09:03:05 +00:00
Sergey Matveychuk	df93a435e2	- Document two squid security related issues. PR: ports/85688 Submitted by: Thomas-Martin Seck <tmseck@netcologne.de> (squid maintainer)	2005-09-04 07:54:46 +00:00
Remko Lodder	59790d976f	Document bind9 -- denial of service. Also merge the FreeBSD-SA-05:12.bind9 advisory in the entry. [1] Suggested by: simon [1] Reviewed by: simon	2005-09-03 19:05:00 +00:00
Sergey Matveychuk	65677c9521	Bcrypt is a blowfish file encryption utility which aims for cross-platform portability. PR: ports/84798 Submitted by: Emanuel Haupt <ehaupt@critical.ch>	2005-09-03 19:03:17 +00:00
Sergey Matveychuk	7de2a18811	ipguard listens network for ARP packets. All permitted MAC/IP pairs listed in 'ethers' file. If it recieves one with MAC/IP pair, which is not listed in 'ethers' file, it will send ARP reply with configured fake address. This will prevent not permitted host to work properly in this ethernet segment. Especially Windows(TM) hosts. PR: ports/84627, ports/85671 Submitted by: SeaD <sead@mail.ru>	2005-09-03 18:51:19 +00:00
Remko Lodder	5d3e7f35e7	Document bind -- buffer overrun vulnerability	2005-09-03 18:06:52 +00:00
Yen-Ming Lee	2affd2c56e	- update to 2.15 PR: 85550 Submitted by: Tsung-Han Yeh <snowfly@yuntech.edu.tw>	2005-09-03 17:14:01 +00:00
Cheng-Lung Sung	4c5617f46c	- version 1.5 must start with '-d 4' (Thanks to Jack Raats <jack AT raats dot org>) - bump PORTREVISION	2005-09-03 07:48:10 +00:00
Roman Bogorodskiy	af9ca2af26	Update to 4.1.9. PR: 85673 Submitted by: David Thiel (maintainer)	2005-09-03 04:19:09 +00:00
Ade Lovett	2fc3c067af	Correctly fix RUN_DEPENDS	2005-09-02 21:28:39 +00:00
James E. Housley	6101a00d6f	Update to DAT 4573	2005-09-02 16:51:12 +00:00
Renato Botelho	47d5dca536	Add p5-Net-Daemon-SSL 1.0, perl5 extension for portable daemons. PR: ports/85125 Submitted by: Simon Dick <simond@irrelevant.org>	2005-09-02 16:29:26 +00:00
Stefan Eßer	43558cad27	Fix build on 4-stable: Use ports version of libpcap since system version is too old.	2005-09-02 16:25:29 +00:00
Stefan Eßer	afd2edaee3	Compile errors on ia64 and sparc64, do not build on those archs.	2005-09-02 16:23:28 +00:00
Renato Botelho	e52cafbb26	- Update to 0.1.0.14 PR: ports/85635 Submitted by: maintainer	2005-09-02 15:08:37 +00:00
Simon L. B. Nielsen	b8fc727f1e	Add a more or less bogus reference section to the last entry, to make it a valid entry. The reference simply references the VuXML entry itself, but at least it fixes the build for now. Missed by: simon	2005-09-02 13:10:51 +00:00
Jean-Yves Lefort	83951565f6	Document stack overflow vulnerabilities in games/urban. Approved by: simon	2005-09-02 12:59:55 +00:00
James E. Housley	d2da33ee65	Update to DAT 4572	2005-09-02 12:03:30 +00:00
Pav Lucistnik	a895ae4dab	- Switch bison dependency to bison175 port	2005-09-02 08:01:07 +00:00
Jean-Yves Lefort	08405b5337	Add p5-Net-OpenID-Server. OpenID is a decentralized identity system, but one that's actually decentralized and doesn't entirely crumble if one company turns evil or goes out of business. An OpenID identity is just a URL. You can have multiple identities in the same way you can have multiple URLs. All OpenID does is provide a way to prove that you own a URL (identity). Anybody can run their own site using OpenID, and anybody can be an OpenID server, and they all work with each other without having to register with or pay anybody to "get started". An owner of a URL can pick which OpenID server to use. WWW: http://www.openid.net PR: ports/85284 Submitted by: Alex Kapranoff <kappa@rambler-co.ru>	2005-09-02 01:52:34 +00:00
Jean-Yves Lefort	5021f93e01	Add p5-Data-Password. Data::Password checks potential passwords for crackability. It checks that the password has the appropriate length, that it has enough character groups, that it does not contain the same characters repeatedly, that it does not contain ascending or descending characters, or characters close to each other on the keyboard. It also searches for the password in the ispell word file. WWW: http://search.cpan.org/~razinf/Data-Password/ PR: ports/84513 Submitted by: ports@c0decafe.net	2005-09-02 01:34:09 +00:00
Renato Botelho	509cdc26e4	- Update to 4.2p1 PR: ports/85578 Submitted by: Marcus Grando <marcus@corp.grupos.com.br>	2005-09-01 19:24:36 +00:00
Vsevolod Stakhov	54e4b9a2e2	Fix build with openldap23 libraries. Submitted by: skv	2005-09-01 13:11:50 +00:00
Mark Linimon	d702e27064	Remove mastersite which has gone away.	2005-09-01 07:18:37 +00:00
Sam Lawrance	b7fe907a05	Update snortsms to version 1.0.0 - what a lovely number! PR: ports/85500 Submitted by: J Randolph <snortsms@servangle.net> (maintainer)	2005-09-01 00:09:38 +00:00
Pav Lucistnik	d90758ea41	- Update to 0.4.5 PR: ports/85332 Submitted by: ports@c0decafe.net <ports@c0decafe.net> (maintainer)	2005-08-31 19:44:17 +00:00
James E. Housley	15c2ecfe4e	Update to DAT 4571	2005-08-31 16:08:42 +00:00
Sergei Kolobov	adf5009843	- Update to 0.76	2005-08-31 12:10:25 +00:00
Sergey Skvortsov	65a13d7da6	Update to 0.9	2005-08-31 09:00:30 +00:00
Pav Lucistnik	54b77a9bfb	- Update to 2.0.9 - samhainrc.sample file is chgrp'd to wheel - RUNAS_USER now defaults to "yule" properly - XML logging is now on by default and tunable PR: ports/85448 Submitted by: David Thiel <lx@redundancy.redundancy.org> (maintainer)	2005-08-30 22:04:29 +00:00
Pav Lucistnik	ae90a659ec	- Bandaid compilation on FreeBSD 5.2.1 PR: ports/84131 Submitted by: Thorolf <thorolf@grid.einherjar.de> Approved by: maintainer timeout (1 month)	2005-08-30 21:47:46 +00:00
Pav Lucistnik	bcccd0308d	- Revert back to MASTER_SITE_MOZILLA	2005-08-30 20:52:18 +00:00
Joe Marcus Clarke	dfd75b02eb	The distfile was rerolled to include a dbm subdirectory (which we no longer use), and a RELEASE bump. There is no need to reinstall this port if you already have it installed.	2005-08-30 19:38:10 +00:00
Marius Strobl	ad7d3eb48c	Now that misc/compat5x exists use the FreeBSD 5 binary on FreeBSD > 600004 rather than the FreeBSD 4 binary. Prodded by: ache Approved by: netchild	2005-08-30 18:24:26 +00:00
Roman Bogorodskiy	7ebc0b8f21	Update to 1.8. PR: 85476 Submitted by: Andrej Zverev <az@inec.ru> Approved by: Frank Laszlo (maintainer)	2005-08-30 16:14:25 +00:00
James E. Housley	f08b246d8f	Update to DAT 4570	2005-08-30 16:09:22 +00:00
Pav Lucistnik	c37a010ddd	- Distfile was rerolled; put old distfile on MASTER_SITE_LOCAL for now Reported by: few	2005-08-30 14:57:58 +00:00
Sergei Kolobov	601a79499f	- Pass maintainership of gnutls, libtasn1 and opencdk ports to Roman Bogorodskiy (novel) who kindly agreed to look after them	2005-08-30 14:28:29 +00:00
Sergei Kolobov	79a5f22da1	- Remove gnutls-devel port: this development version of GnuTLS library is no longer being released upstream since 1.2.0 update of the stable branch. Thus, it does not make sense that we keep it anymore.	2005-08-30 14:22:28 +00:00
Sergei Kolobov	6bc3d12ff0	- Disconnect gnutls-devel from the parent Makefile prior to removal	2005-08-30 14:10:56 +00:00
Ying-Chieh Liao	8ba83b1a82	upgrade to 0.0.16 PR: 85388 Submitted by: Ports Fury	2005-08-30 03:17:06 +00:00
Ying-Chieh Liao	8425e489c9	upgrade to 0.0.22 PR: 85389 Submitted by: Ports Fury	2005-08-30 03:16:26 +00:00
Munechika SUMIKAWA	1fe62fb74b	Remove old library compatibility checking. It was necessary for 4.0-RELEASE.	2005-08-30 02:56:02 +00:00
Simon L. B. Nielsen	ab66fb30d3	Mark latest evolution port version as fixed wrt. evolution -- remote format string vulnerabilities.	2005-08-29 20:47:28 +00:00
Renato Botelho	aa7ff04e17	- Update to 2.0.2 that brings these upstream changes: - fix bug that would exhaust file descriptors as the routing table was modified (this had already been part of the port previously) - fix bug that would block the management socket until the peer connected - fix pkitool sh incompatibilities (from NetBSD) PR: ports/85299 Submitted by: maintainer	2005-08-29 18:52:19 +00:00
James E. Housley	1080adfe3c	Update to DAT 4569	2005-08-29 16:04:38 +00:00
Jun Kuriyama	11ed143aa7	Add entry for fswiki's vuln.	2005-08-29 15:10:29 +00:00
Pav Lucistnik	9e9dcc48e9	- Update to 1.06 - Provide options for new mathematical backends - Transfer maintainership to submitter PR: ports/83040 Submitted by: Wesley Shields <wxs@csh.rit.edu> Approved by: Afarsec <afarsec@012.net.il> (maintainer)	2005-08-29 14:58:21 +00:00
Sergey Matveychuk	1ef8ca871b	- Update to 1.3.6 - Update WWW in pkg-descr - Pass maintainership to submitter PR: ports/84998 Submitted by: Emanuel Haupt <ehaupt@critical.ch>	2005-08-29 12:59:16 +00:00
Sergey Matveychuk	9a4168d18d	- Update to 1.5.0 - Reformat pkg-descr - Pass maintainership to submitter PR: ports/85002 Submitted by: Emanuel Haupt <ehaupt@critical.ch>	2005-08-29 12:56:54 +00:00
Sergei Kolobov	ad05e3752c	- Update to 0.75 - Chase changed location of bglibs files	2005-08-29 12:15:37 +00:00
James E. Housley	2f4d822252	Update to DAT 4568	2005-08-29 11:22:27 +00:00
Niels Heinen	14c354e28c	Dante 1.1.15 is no longer affected by the fd_set bitmap index overflow. Updated the version in VuXML (was 0). Approved by: nectar (mentor)	2005-08-29 08:11:20 +00:00
Dejan Lesjak	0b8e4ca917	Update amavisd-new to 2.3.3. [1] Start amavisd as root so that it works both with and without chroot. [2] PR: ports/85241 [1], ports/83988 [2] Submitted by: Blaz Zupan (maintainer)	2005-08-29 04:41:23 +00:00
Cheng-Lung Sung	c096b52233	- Update to 1.5 PR: 85404 Submitted by: Marcus Grando <marcus AT corp dot grupos dot com dot br>	2005-08-29 04:08:55 +00:00
Simon L. B. Nielsen	db3d72ecbf	- Fill out part of the std. VuXML template missed in the last entry. - Mark acroread 7.0.1 as fixed for acroread -- XML External Entity vulnerability. [1] Reported by: Sverre H. Huseby [1]	2005-08-28 20:48:11 +00:00
Mario Sergio Fujikawa Ferreira	98e840bfab	Update to 1.3	2005-08-28 18:14:19 +00:00
Kirill Ponomarev	c8f1b15b01	Update to 0.2.7	2005-08-28 10:53:53 +00:00
Joe Marcus Clarke	b22dd09050	Chase the libsoup shared lib version.	2005-08-28 08:33:40 +00:00
Joe Marcus Clarke	95cecc3f71	Chase the Gaim 1.5.0 update.	2005-08-28 07:13:35 +00:00
Simon L. B. Nielsen	b7a42fed66	Document evolution -- remote format string vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-27 22:25:30 +00:00
Simon L. B. Nielsen	32797fc1e4	Document pam_ldap -- authentication bypass vulnerability. Approved by: portmgr (blanket, VuXML)	2005-08-27 21:54:42 +00:00
Joe Marcus Clarke	85cf42888a	Update to 1.8.0. Security: Fixes a security vulnerability described at http://www.kb.cert.org/vuls/id/778916 Requested by: simon Approved by: portmgr (implicit)	2005-08-27 19:20:04 +00:00
Simon L. B. Nielsen	8322548dab	Mark phpgroupware as vulnerable to pear-XML_RPC -- remote PHP code injection vulnerability. Reported by: olgeni Approved by: portmgr (blanket, VuXML)	2005-08-27 18:17:24 +00:00
Simon L. B. Nielsen	e88212ee93	Document pcre -- regular expression buffer overflow. Approved by: portmgr (blanket, VuXML)	2005-08-26 21:24:31 +00:00
Kirill Ponomarev	564a8c901a	Fix build on 6.x Submitted by: lesi Approved by: portmgr (self)	2005-08-26 05:23:21 +00:00
Kirill Ponomarev	79619ba2cd	Fix build on 6.x Approved by: portmgr (self)	2005-08-24 09:42:39 +00:00
Cy Schubert	bcbce02d61	Fix for broken build under 4.X. Approved by: portsmgr (clement)	2005-08-23 22:34:14 +00:00
Simon L. B. Nielsen	5fff46907e	Mark latest awstats port as fixed for awstats -- arbitrary code execution vulnerability. Approved by: portmgr (blanket, VuXML)	2005-08-23 20:26:38 +00:00
Sergey Matveychuk	5a393f74af	Document mail/elm remote buffer overflow vulnerability. PR: ports/85225 Submitted by: Kevin Day <toasty@dragondata.com> (elm maintainer) Approved by: portmgr (blanket, VuXML)	2005-08-23 19:07:08 +00:00
Renato Botelho	13dc48839d	Fix a typo in the new rc file, where documentation didn't match the actual variables. PR: ports/85156 Submitted by: maintainer Reported by: Benjamin Lutz <benlutz@datacomm.ch> Approved by: portmgr (krion)	2005-08-22 10:31:35 +00:00
Sam Lawrance	caa8001ecd	Fix so the distfile can be manually fetched for package building PR: ports/84573 Submitted by: Adi Pircalabu <apircalabu@bitdefender.com> (maintainer) Approved by: portmgr (krion)	2005-08-20 08:40:21 +00:00
Renato Botelho	0f64e52705	- Security update to version 2.0.1, fixing four denial of service bugs, CAN-2005-2531, CAN-2005-2532, CAN-2005-2533, CAN-2005-2534 - Drop old init script and add a modern rcNG script in its place, requested by Matthias Grimm and Dirk Gouders (although the script below is one I, Matthias Andree, wrote). It can automatically load tun/tap drivers. - move pkg-message to files/pkg-message.in, revise it, list it in SUB_FILES to expand ${PREFIX}. - print pkg-message after installation from port - switch to official "make check" as smoke-test, rather than wiring our own. - prefer LZO2 in most situations, as OpenVPN will pick up LZO2 rather than LZO1 if both are installed. PR: ports/85109 Submitted by: maintainer Approved by: portmgr (krion)	2005-08-19 18:48:34 +00:00
Remko Lodder	5dd48b46c5	Document four vulnerabilities in openvpn: * openvpn -- multiple TCP clients connecting with the same certificate at the same time can crash the server * openvpn -- denial of service: malicious authenticated "tap" client can deplete server virtual memory * openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients * openvpn -- denial of service: client certificate validation can disconnect unrelated clients Approved by: portsmgr (blanket VuXML) Submitted by: Matthias Andree <matthias dot andree at gmx dot de>	2005-08-19 09:58:19 +00:00
Sergey Matveychuk	e69c4117d8	- Update to 0.6.1. - Unbreak. Approved by: portmgr (krion)	2005-08-18 19:38:29 +00:00
James E. Housley	3438ac725b	Update the MASTER_SITES. This is the only part of PR/84815 what was approved for commit during the port freeze. Submitted by: Marcus Grando <marcus@corp.grupos.com.br> Approved by: portmgr (mcl)	2005-08-18 13:02:10 +00:00
Simon L. B. Nielsen	36ab3408aa	Also mark phpAdsNew as affected by "pear-XML_RPC -- remote PHP code injection vulnerability". Approved by: portmgr (blanket, VuXML)	2005-08-17 20:01:01 +00:00
Remko Lodder	b942a2a7c2	Add the fixed version so that people do not get a stale portaudit when the update is there. Also fix some indentation that i overlooked. Noticed by: simon (both of the items) Approved by: portsmgr (blanket VuXML)	2005-08-17 19:46:39 +00:00
Remko Lodder	937ce6aba9	Document tor -- diffie-hellman handshake flaw. Submitted by: Michal Bartkowiak <michal at nonspace dot net> Approved by: portsmgr (blanket VuXML)	2005-08-17 19:34:44 +00:00
Simon L. B. Nielsen	b301e67e49	gpdf has been fixed for "xpdf -- disk fill DoS vulnerability", mark it as such. Approved by: portmgr (blanket, VuXML)	2005-08-16 21:19:30 +00:00
Simon L. B. Nielsen	75172d796f	Add eGroupWare to the list of packages affected by "pear-XML_RPC -- remote PHP code injection vulnerability". Approved by: portmgr (blanket, VuXML)	2005-08-16 20:56:54 +00:00
Simon L. B. Nielsen	59a6826b92	Document acroread -- plug-in buffer overflow vulnerability. Approved by: portmgr (blanket, VuXML)	2005-08-16 18:43:41 +00:00
Simon L. B. Nielsen	2836760398	Add phpmyfaq and drupal to the "pear-XML_RPC -- remote PHP code injection vulnerability" entry since they contain an embedded version of pear-XML_RPC. Fix typo in body of the latest xpdf entry (note: no modified date bump as this is a minor typo fix which does change <affects>). Approved by: portmgr (blanket, VuXML)	2005-08-15 20:38:54 +00:00
Simon L. B. Nielsen	a098192895	Document pear-XML_RPC -- remote PHP code injection vulnerability. Submitted by: hrs Approved by: portmgr (blanket, VuXML)	2005-08-15 13:20:30 +00:00
Simon L. B. Nielsen	782374f5c4	Document awstats -- arbitrary code execution vulnerability. Approved by: portmgr (blanket, VuXML)	2005-08-14 21:09:10 +00:00
Simon L. B. Nielsen	c1bc774e4b	After further examination it turns out that gnugadu does not include libgadu, at least not any in any current version, and from looking at the gnugadu code there is no direct indication that this code should actually be vulnerable to the other libgadu vulnerabilities. [1] The gaim part of libgadu -- multiple vulnerabilities was fixed in 1.4.0_1. [2] Polish translation clue: pjd [1] General clue by: markus [2] Not enough checking: simon Approved by: portmgr (blanket, VuXML)	2005-08-12 16:38:54 +00:00
Simon L. B. Nielsen	41071473f7	Remove pl-gnugadu2 and kadu from being affected by libgadu -- multiple vulnerabilities, since it turns out that they use libgadu from the ekg port. Approved by: portmgr (blanket, VuXML)	2005-08-12 14:45:57 +00:00
Simon L. B. Nielsen	57454f0e97	Document libgadu -- multiple vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-12 14:21:10 +00:00
Simon L. B. Nielsen	da8382985a	Document gaim -- AIM/ICQ away message buffer overflow and gaim -- AIM/ICQ non-UTF-8 filename crash. Approved by: portmgr (blanket, VuXML)	2005-08-12 11:26:44 +00:00
Simon L. B. Nielsen	7cc5d12599	Remove pdftohtml from the list of packages affected by xpdf -- disk fill DoS vulnerability, since it includes xpdf 2, which should not be affected. Approved by: portmgr (blanket, VuXML)	2005-08-12 10:42:13 +00:00
Simon L. B. Nielsen	2a2ea79881	Document xpdf -- disk fill DoS vulnerability. Approved by: portmgr (blanket, VuXML)	2005-08-11 22:18:53 +00:00
Simon L. B. Nielsen	4518fa7463	Mark apache 1.3.33_2 as fixed for apache -- http request smuggling. Approved by: portmgr (blanket, VuXML)	2005-08-11 12:40:51 +00:00
Cy Schubert	c7361bfd1f	Fix ports/84648 (Interactive tripwire's database update does not work on 5.x). PR: ports/84648 Approved by: portsmgr (marcus)	2005-08-11 03:05:00 +00:00
Cy Schubert	62f4aa1e6b	Fix a fetch error. Approved by: portsmgr (marcus)	2005-08-11 00:04:53 +00:00
Cy Schubert	bd60fa6a1b	Update twpol.txt to make it current with 5.X and beyond. Approved by: portsmgr (marcus)	2005-08-09 18:24:15 +00:00
Simon L. B. Nielsen	d20662bf31	Document gforge -- XSS and email flood vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-09 11:51:25 +00:00
Michael Nottebrock	30778bc36d	Fix compilation on FreeBSD 6 or later in the WITH_PTH case. Reported by: Ion-Mihai Tetcu <itetcu@people.tecnik93.com> Approved by: portmgr (clement)	2005-08-08 19:23:48 +00:00
Simon L. B. Nielsen	befbd7cfa6	Document postnuke -- multiple vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-07 22:19:56 +00:00
Simon L. B. Nielsen	68bc305b6a	Document mambo -- multiple vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-05 13:32:16 +00:00
Remko Lodder	fe4ad03a99	Correct the ranges for the IPSec advisory and the devfs advisory. Also correct proper ranges for the zlib advisory. Approved by: portsmgr (blanket VuXML)	2005-08-05 10:34:41 +00:00
Remko Lodder	22fd9bb398	Document some recent FreeBSD advisories: o devfs -- ruleset bypass. o zlib -- buffer overflow vulnerability. o ipsec -- Incorrect key usage in AES-XCBC-MAC. Approved by: portsmgr (blanket VuXML)	2005-08-05 10:21:39 +00:00
Remko Lodder	6b21656446	Add some more entries to the apache -- http smuggling vulnerability. PR: ports/84312 Submitted by: Dmitry A Grigorovich <odip at bionet dot nsc dot ru> Approved by: portsmgr (blanket VuXML)	2005-08-04 15:56:53 +00:00
Joe Marcus Clarke	d9ab36fb8c	Disable automatic tests on all versions of FreeBSD as they seem to fail in a read-only port directory. More investigation is needed. Reported by: GNOME Tinderbox Approved by: portmgr (implicit)	2005-08-04 04:07:38 +00:00
Joe Marcus Clarke	68bf3df3eb	Disable the automatic tests on 4.X. They are known to fail. Reported by: pointyhat via kris Approved by: portmgr (implicit)	2005-08-03 22:08:09 +00:00
Simon L. B. Nielsen	379edd924d	Document proftpd -- format string vulnerabilities. Approved by: portmgr (blanket, VuXML)	2005-08-03 17:14:16 +00:00
Simon L. B. Nielsen	fa7419cac1	Note that the fix for gnupg -- OpenPGP symmetric encryption vulnerability in gnupg is not complete (see entry for details). Discussed with: nectar Approved by: portmgr (blanket, VuXML)	2005-08-03 16:54:47 +00:00
Simon L. B. Nielsen	79a8a98fa3	Mark p5-Crypt-OpenPGP, pgp, and pgpin as vulnerable to gnupg -- OpenPGP symmetric encryption vulnerability. Reminded by: nectar Approved by: portmgr (blanket, VuXML)	2005-08-03 11:58:12 +00:00
Simon L. B. Nielsen	e439b01dd9	Mark latest gdal version as fixed for all tiff vulnerabilities.	2005-08-01 18:38:11 +00:00
James E. Housley	7cc996ede3	UPdate to DAT 4547	2005-08-01 16:53:45 +00:00
Jun Kuriyama	4ae59b6f7d	Fix build failure on 4.x. Reported by: "Sander Holthaus - Orange XL" <info@orangexl.com>	2005-08-01 11:17:24 +00:00
Niels Heinen	1e90f90311	Added nbsmtp format string vulnerability. Approved by: nectar (mentor)	2005-08-01 07:45:17 +00:00
Simon L. B. Nielsen	78b7cf7598	Mark latest the linux-tiff and pdflib ports safe from latest tiff vulnerability. Thanks to lawrance and netchild for fast fixes.	2005-07-31 23:39:50 +00:00
Michael Nottebrock	ecc191066f	Update to KDE 3.4.2 / KOffice 1.4.1	2005-07-31 22:46:35 +00:00
Jun Kuriyama	2a9bde49bb	Upgrade to 1.4.2. PR: ports/84289 Submitted by: Vasil Dimov <vd@datamax.bg>	2005-07-31 22:31:11 +00:00
Joe Marcus Clarke	2c10cd6b80	Re-add IGNORE message for Alpha < 500035. Reported by: mjl on #freebsd-gnome	2005-07-31 21:49:47 +00:00
Thierry Thomas	e6b6ab8c0c	Update to 2.0.8. PR: 83960 Submitted by: Babak Farrokhi <babak (at) farrokhi.net> Approved by: maintainer	2005-07-31 19:53:33 +00:00
Yen-Ming Lee	be396bcc0d	- Update to 0.97 PR: 83639 Submitted by: leeym Approved by: maintainer timeout	2005-07-31 17:19:47 +00:00
Simon L. B. Nielsen	609dafe78b	Document sylpheed -- MIME-encoded file name buffer overflow vulnerability.	2005-07-31 15:00:54 +00:00
Simon L. B. Nielsen	5d71ef8197	Document phpmyadmin -- cross site scripting vulnerability.	2005-07-31 13:50:20 +00:00
Simon L. B. Nielsen	053cdd10d9	Document gnupg -- OpenPGP symmetric encryption vulnerability. Note: this is mainly a theoretical vulnerability.	2005-07-31 13:23:50 +00:00
Sergey Matveychuk	bb022ec8e2	- Look for libraries in LOCALBASE PR: ports/83455 Submitted by: maintainer	2005-07-31 12:06:25 +00:00
Remko Lodder	c58dccb6b5	Bump entry date. Forgotten by: remko Spotted by: simon	2005-07-31 11:38:25 +00:00
Remko Lodder	1053ed30f3	Document vim -- vulnerabilities in modeline handling: glob, expand. Discussed with: nectar, simon	2005-07-31 11:31:52 +00:00
Sergey Matveychuk	984b7312f9	- Update to 20050730 PR: ports/84360 Submitted by: maintainer	2005-07-31 09:43:53 +00:00
Joe Marcus Clarke	ba00a2c341	* Update to 3.10 [1] * Add a target for regression testing, and run that target automatically when building on the package build cluster [1] * Cleanup some portlint nits Submitted by: mi [1]	2005-07-31 00:06:49 +00:00
Simon L. B. Nielsen	39a985e2b4	Document that ekg -- insecure temporary file creation was fixed in 1.6r2,1. Noted by: Michal Kalkowski	2005-07-30 22:20:27 +00:00
Oliver Lehmann	c149369e83	Just remove the user if BATCH is set in env, don't ask for users feedback. PR: 84349 Submitted by: Matthias Andree <matthias.andree@gmx.de>	2005-07-30 21:55:23 +00:00
Simon L. B. Nielsen	64a8f10e17	Add pdflib-perl, fractorama, gdal, iv, ivtools, ja-iv, ja-libimg, paraview to recent libtiff vulnerabilities since they contain (and compile) an embedded version of libtiff...	2005-07-30 20:20:52 +00:00
Simon L. B. Nielsen	8c91f8349c	Change MAINTAINER address for ports maintained by the Security Team to secteam@ instead of security@ to make it more clear that the ports are not maintained by the freebsd-security@ mailing list. Both addresses go to the same people.	2005-07-30 19:13:10 +00:00
Simon L. B. Nielsen	819cb94b17	Document tiff -- buffer overflow vulnerability.	2005-07-30 15:48:06 +00:00
Simon L. B. Nielsen	80d009be80	- Misc. markup/whitespace fixes. - Collapse a few package entries from the latest apache entry (still matches same package names, is just shorter markup-wise). - Use standard topic style for jaberd entry. - Fix entry date for jaberd entry.	2005-07-30 11:18:20 +00:00
Vsevolod Stakhov	c2cb81e45a	Document jabberd vulnerabilities that were fixed by the latest update. Approved by: perky (mentor)	2005-07-30 10:00:41 +00:00
Simon L. B. Nielsen	b151450eb0	Be consistent and use the same title for the latest ethereal vulnerabilities as used for previous entries.	2005-07-30 09:24:47 +00:00
Simon L. B. Nielsen	1c4842c911	Document opera -- image dragging vulnerability and opera -- download dialog spoofing vulnerability.	2005-07-30 09:13:14 +00:00
Simon L. B. Nielsen	c5114fefb3	Document ethereal -- multiple vulnerabilities.	2005-07-30 08:26:06 +00:00
Volker Stolz	e79710b377	Fix build on amd64 with -fPIC PR: ports/84156 Submitted by: Hirohisa Yamaguchi Approved by: maintainer Note w.r.t. 4.x: The .depend-issue can be fixed through 'gmake'. However, then it still needs a patch for a missing <sys/time.h>, and still won't build with neither gcc-2.95, 3.4 or 4.0, so I didn't bother.	2005-07-29 17:18:17 +00:00
Renato Botelho	6f5b6a6666	Pass maintainership to last submitter Approved by: actual maintainer	2005-07-29 15:12:18 +00:00
Renato Botelho	ca4ca9f4f2	- Update to 0.1.0.12 PR: ports/84281 Submitted by: rik <freebsd-ports@rikrose.net> (maintainer)	2005-07-29 11:05:21 +00:00
Renato Botelho	b99c822452	- Fix pkg-plist and Unbreak the port PR: ports/84261 Submitted by: Jean Milanez Melo <jmelo@freebsdbrasil.com.br> Approved by: maintainer timeout - BROKEN over to 4 months	2005-07-29 10:52:16 +00:00
James E. Housley	6b97e0c6cd	* Update second master site * Update to DAT 4545	2005-07-28 18:35:22 +00:00
Renato Botelho	5e3cc60a87	This package implements an algorithm for breaking the PkZip cipher that was devised by Eli Biham and Paul Kocher. This program applies a known plaintext attack to an encrypted file. A known-plaintext-attack recovers a password using the encrypted file and (part of) the unencrypted file. Please note that cryptographers use the word 'plaintext' for any kind of unencrypted data - not necessarily readable ASCII text. Before you ask why somebody may want to know the password when he already knows the plaintext think of the following situations: - Usually there's a large number of files in a ZIP-archive. Usually all these files are encrypted using the same password. So if you know one of the files, you can recover the password and decrypt the other files. - You need to know only a part of the plaintext (at least 13 bytes). Many files have commonly known headers, like DOS .EXE-files. Knowing a reasonably long header you can recover the password and decrypt the entire file. WWW: http://www.unix-ag.uni-kl.de/~conrad/krypto/pkcrack.html PR: ports/84192 Submitted by: Emanuel Haupt <ehaupt@critical.ch>	2005-07-28 10:32:17 +00:00
Clement Laforet	f758062b43	- Fix apache 2.1 range for CAN-2005-2088 entry which prevents apache 2.0 from upgrading. Pointyhat to: clement, remko Reviewed by: erwin	2005-07-28 08:51:43 +00:00
Joe Marcus Clarke	2a8578098e	Update to 0.7.9.	2005-07-28 05:41:40 +00:00

... 4 5 6 7 8 ...

7924 commits