freebsd-ports

Author	SHA1	Message	Date
Remko Lodder	55420bc1fe	Document samba -- buffer overflow vulnerability.	2007-12-12 15:29:13 +00:00
Remko Lodder	a5079d699d	Remove redundant "A" in the latest entry	2007-12-12 15:11:17 +00:00
Renato Botelho	b480474622	- Update to 20071212 - Unrar code was removed from clamav source due to license problems, and a patch was created. I've added an UNRAR option, Off by default. - Cosmetic changes - Fix rc.d/clamav-milter to change socket permissions after startup. It fixes proclems when sendmail or postfix cannot connect to this socket. [1] Submitted by: Chris St Denis <chris@smartt.com> by email	2007-12-12 11:15:27 +00:00
Martin Wilke	cf6d47a08b	- Fix previous commit - Sorting - more referencs	2007-12-12 08:32:33 +00:00
Beech Rintoul	3bdbad04a9	- Missed a section - smbftpd Pointyhat to: Self	2007-12-12 08:11:07 +00:00
Beech Rintoul	ef56eeec23	- Document smbftpd - format string vulnerability. Requested by: linimon Approved by: linimon (mentor)	2007-12-12 07:55:42 +00:00
Joe Marcus Clarke	7a835e63d0	Update to 2.20.2.	2007-12-12 04:44:20 +00:00
Andrew Pantyukhin	1f457abfd1	- Update to 0.5.3	2007-12-12 01:28:04 +00:00
Johan van Selst	09bd875e57	- Fix build on FreeBSD 8 Reported by: pointyhat via pav	2007-12-11 21:12:17 +00:00
David Thiel	0f45e3e389	Update to 0.18.	2007-12-11 20:18:21 +00:00
Alex Dupre	16eeea61ed	Update to 0.9.22 release.	2007-12-11 20:13:40 +00:00
David Thiel	f00f189c12	Update to 2.4.1. Also fix a rather silly uninstall message, reported by brd@.	2007-12-11 20:10:42 +00:00
David Thiel	1694682b5c	Update to 1.4.	2007-12-11 20:09:36 +00:00
Jeremy Messenger	98e28c9f66	Fix the build when net/lam installed in system. PR: ports/117623 and ports/114871 Reported by: Alexander Vasyanin <avasyanin@mail.ru> Koji Yokota <yokota@res.otaru-uc.ac.jp>	2007-12-11 19:27:53 +00:00
Remko Lodder	31c963fff9	Document jetty - multiple vulnerabilities PR: ports/118524 Submitted by: Nick Barkas <snb at threerings dot net> with minor modifications by me Approved by: portmgr (secteam blanket)	2007-12-10 07:00:05 +00:00
Norikatsu Shigemura	35a9136398	Update to 2007.12.07 with fix security issue. Security: VuXML ID: 821afaa2-9e9a-11dc-a7e3-0016360406fa CVE-2007-6036 http://aluigi.altervista.org/adv/live555x-adv.txt Approved by: portmgr (erwin)	2007-12-09 15:47:20 +00:00
Remko Lodder	3e1df12f13	Document liveMedia -- DoS vulnerability Submitted by: Rafae«l CareÃ© <funm at videolan dot org> with modifications by me Approved by: portmgr (secteam blanket)	2007-12-08 23:26:34 +00:00
Xin LI	992be0dfcf	Update to reflect the squid issue has been assigned CVE-2007-6239. Approved by: portmgr (ports-security blanket)	2007-12-07 10:25:05 +00:00
Martin Wilke	07ce45bc66	- Update gnu-finger entry * Fix cvename handling Approved by: portmgr (ports-security blanket)	2007-12-05 07:49:40 +00:00
Mark Linimon	c1f6c82617	http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165 : gnu-finger is old, creaky, and not for use in production environments. Submitted by: tabthorpe Approved by: portmgr (self)	2007-12-05 07:26:59 +00:00
Xin LI	be144111fc	Update to reflect an updated www/squid30 version which is no longer vulnerable. Approved by: portmgr (ports-security blanket)	2007-12-05 00:28:14 +00:00
Pav Lucistnik	64a425ae65	- Chase rubygem-activerecord update Missed by: miwi Reported by: pointyhat Approved by: portmgr (hat)	2007-12-04 23:21:23 +00:00
Xin LI	f2f038bbc6	Update to reflect an updated www/squid version which is no longer vulnerable. Approved by: portmgr (ports-security blanket)	2007-12-04 19:49:48 +00:00
Xin LI	c1f761805b	Document squid denial of service vulnerability. This can be triggered from trusted squid client only. Approved by: portmgr (ports-security blanket)	2007-12-04 19:20:45 +00:00
Cy Schubert	820eecfb41	PORTREVISION bump in support of pkg-plist revision 1.5. Approved by: portsmgr (ewin)	2007-12-03 17:25:05 +00:00
Cy Schubert	6873fbe267	Correct chmod location. Approved by: portmgr (linimon)	2007-12-02 07:02:37 +00:00
Xin LI	536ef4952b	Remove the rsync entry for now. Better way of handling this is still under discussion, as the vendor patch does not automatically resolve problem for customized configuration that have chroot = no. Requested by: pav Approved by: portmgr (ports-security blanket)	2007-12-02 00:15:27 +00:00
Xin LI	b3db6b6ffb	Document rsync security bypass vulnerability. Approved by: portmgr (ports-security blanket)	2007-12-01 20:23:43 +00:00
Simon L. B. Nielsen	f199be9d03	Make the rubygem-rails -- JSON XSS vulnerability entry valid UTF-8 (at least the special chars doesn't look like UTF-8 as per emacs or freshports). Reported by: freshports via dvl Approved by: portmgr (secteam blanket)	2007-12-01 14:25:28 +00:00
Li-Wen Hsu	32ddc12372	- Update to 0.10 - Unbreak on HEAD/7 (re-add a needed patch) PR: ports/118066 Submitted by: Peter Johnson <johnson.peter AT gmail.com> (maintainer) Reported by: pointyhat (pav) Approved by: portmgr (linimon)	2007-11-30 21:11:04 +00:00
Xin LI	79cc8b9cc2	Also cover rubygem-activesupport which is part of rails and is affected by CVE-2007-3227 as well. Approved by: portmgr (ports-security blanket)	2007-11-28 00:26:56 +00:00
Xin LI	afa8c55f49	Document recent Ruby On Rails vulnerabilities. Approved by: portmgr (ports-security blanket)	2007-11-28 00:19:08 +00:00
Henrik Brix Andersen	b703078233	Document ikiwiki improper symlink verification vulnerability. Reviewed by: remko Approved by: portmgr (erwin), erwin (mentor)	2007-11-27 21:57:02 +00:00
Xin LI	636d490c9b	Document firefox multiple unspecified memory corruption vulnerabilities. Approved by: portmgr (ports-security blanket)	2007-11-27 21:35:54 +00:00
Ade Lovett	ccd0fca5ec	Unbreak pthread-related issues on 5.x Approved by: portmgr	2007-11-26 17:45:55 +00:00
Mark Linimon	022234ed2a	Mark as broken on 5.x: fails to find pthread.h. Something in the infrastructure changed in the late July timeframe that actually caused this problem. The only major thing at that time was the autoconf/libtool change, but I can't see how that could have caused this failure mode. It only happens on 5.x; 6.x and 7.x are fine. Approved by: portmgr (self)	2007-11-25 01:24:13 +00:00
Mark Linimon	8c1c9234be	Mark as broken: fails to install. Approved by: portmgr (self)	2007-11-24 23:14:35 +00:00
Mark Linimon	67f4ea5edd	Add sfsrwcd: clients cannot make connections without it. Part of: ports/116966 Submitted by: maintainer, private email Approved by: portmgr (self)	2007-11-23 01:22:51 +00:00
Martin Wilke	b170922337	- Document phpmyadmin -- Cross Site Scripting Reviewed by: remko Approved by: portmgr (ports-security blanket	2007-11-21 18:58:28 +00:00
Martin Wilke	088cb609f7	- Update last Samba entry, * Add reference to the samba advisories * Fix the PORTVERSION/PORTEPOCH Reviewed by: simon Approved by: portmgr (ports-security blanket)	2007-11-21 09:02:57 +00:00
Martin Wilke	b2589226b2	Document samba - multiple vulnerabilities Reviewed by: remko Approved by: portmgr (ports-security blanket)	2007-11-21 07:40:49 +00:00
Mark Linimon	e8101ce2d5	Unmark broken; the missing Objective C header with gcc 4.2 has now been fixed. PR: ports/117967 Submitted by: maintainer Approved by: portmgr (self)	2007-11-20 02:21:27 +00:00
Xin LI	1efb5213dd	postnuke 0.763 is not vulnerable to 35f2679f-52d7-11db-8f1a-000a48049292 so mark it as not vulnerable. Approved by: portmgr (ports-security blanket)	2007-11-18 00:47:43 +00:00
Xin LI	2e6ae504e7	Improve JDK version coverage. We should consider PORTEPOCH'ed version separately, so restruct the range. Approved by: portmgr (ports-security blanket)	2007-11-17 07:07:41 +00:00
Xin LI	9f91025e2e	Document PHP multiple vulnerabilities that are fixed by php 5.2.5. Approved by: portmgr (ports-security blanket)	2007-11-16 19:53:06 +00:00
Martin Wilke	e54c6135f9	- Fix c93e4d41-75c5-11dc-b903-0016179b2dd5 entry Submitted by: glewis Reviewed by: remko Approved by: portmgr (ports-security blanket)	2007-11-16 08:05:48 +00:00
Erwin Lansing	eedba319e8	print/cups-base is vulnerable for all previous versions to 1.3.3_2, not all coming ones. Submitted by: Andrew Daugherity <ADaugherity@vprmail.tamu.edu> Approved by: portmgr (self)	2007-11-14 22:19:06 +00:00
Johan van Selst	f51c28d0ef	- Fix build on FreeBSD 7 Reported by: pointyhead (via pav) Approved by: portmgr (pav)	2007-11-14 18:38:40 +00:00
Remko Lodder	843e669bf0	Document mt-daapd -- denial of service vulnerability, also correct the previous entry style wise. Submitted by: Mark D. Foster <mark at foster dot cc> with minor modifications by me. Approved by: portmgr (secteam blanket)	2007-11-14 14:23:32 +00:00
Martin Wilke	fc2b3e1dc1	- Update xpdf -- multiple remote Stream.CC vulnerabilities * Mark cups-base as safe Approved by: portmgr (ports-security blanket)	2007-11-14 09:23:51 +00:00
Jun Kuriyama	c81bd82f43	o Add a patch for CVE-2007-5846, and add an entry for vuxml. Approved by: portmgr (marcus)	2007-11-14 05:45:24 +00:00
Martin Wilke	96cc343b74	- Document flac -- media file processing integer overflow vulnerabilities Reviewed by: simon Approved by: portsmgr (ports-security blanket) Thanks to: naddy	2007-11-13 15:41:57 +00:00
Peter Pentchev	50fa8f3e41	Add an official fix for the chroot mode resolving bug. Approved by: portmgr (pav)	2007-11-13 10:09:51 +00:00
Simon L. B. Nielsen	58cf5e4c31	Unbreak file by closing </li> tag. Approved by: portmgr (secteam blanket)	2007-11-13 06:46:43 +00:00
Xin LI	8393f841e2	Document xpdf arbitrary code execution vulnerability, as documented in CVE-2007-4352, CVE-2007-5392, CVE-2007-5393. Approved by: portmgr (ports-security blanket)	2007-11-13 01:14:50 +00:00
Pav Lucistnik	74a84673b8	- Attempt to fix plist on 7.0 Reported by: pointyhat Approved by: portmgr (hat)	2007-11-13 00:40:27 +00:00
Pav Lucistnik	e731f00f9e	- hcrypto library is only installed on FreeBSD < 7.0 Reported by: pointyhat Approved by: portmgr (hat)	2007-11-12 23:27:08 +00:00
Xin LI	186fa90550	dinoex@ has choosen to apply a vendor patch that has resolved CVE-2007-4351 instead of upgrading to 1.3.4. Mark this updated version as not vulnerable. Approved by: portmgr (ports-security blanket)	2007-11-12 19:46:09 +00:00
Tom McLaughlin	f280695adb	- Make fetchable again. Add my MASTER_SITE_LOCAL to the mix and replace a number of outdated sites. Notified by: Ferenc Gartner Approved by: portmgr (linimon, erwin)	2007-11-12 01:21:19 +00:00
Xin LI	ba6f684d19	Document plone arbitrary code execution vulnerability. Approved by: portmgr (ports-security blanket)	2007-11-12 00:39:01 +00:00
Martin Wilke	1026a9aa68	- Updated the last gftp entry (we have 2.0.18_6 in the portstree not 2.10.18_6) Submitted by: Fabian Keil (via private mail) Approved by: portmgr (ports-security blanket)	2007-11-11 18:43:12 +00:00
Martin Wilke	373ea7ec89	- Document phpmyadmin -- cross-site scripting vulnerability Reviewed by: simon Approved by: portmgr (ports-security blanket)	2007-11-11 15:52:23 +00:00
Xin LI	356067459c	Document gallery2 multiple vulnerabilities. Approved by: portmgr (ports-security blanket)	2007-11-09 19:05:50 +00:00
Martin Wilke	fb7fbfb64a	- Document tikiwiki -- multiple vulnerabilities Reviewed by: simon Approved by: portmgr (ports-security blanket)	2007-11-09 10:00:01 +00:00
Xin LI	58bf052253	Document cups-base remote buffer overflow vulnerability. Approved by: portmgr (ports-security blanket)	2007-11-09 07:51:42 +00:00
Xin LI	ef23794802	Make perl entry to cover perl-threaded as well. Reported by: Andy Greenwood <greenwood.andy gmail com> Approved by: portmgr (ports-security blanket)	2007-11-07 22:03:25 +00:00
Martin Wilke	6e1aed3252	- Fix pkg-plist Submitted by: pointyhat via linimon Approved by: portmgr (linimon)	2007-11-07 19:04:21 +00:00
Rong-En Fan	7a301384b6	- After last update, sshit keeps exiting with signal 15 due to wrong hostname regexp. Fix the regexp for hostname matching. - While fixing that, fix IPv6 regexp, too. - Reduce syslog level from ERROR to INFO for most informational messages. These changes are submitted to author for inclusion in next version. - Grab maintainership as current maintainer does not use it anymore. - Bump PORTREVISION. Approved by: portmgr (linimon), maintainer via irc	2007-11-07 07:27:10 +00:00
Martin Wilke	f1751568f5	- Document perl -- regular expressions unicode data buffer overflow Reviewed by: simon/tobez Approved by: portmgr (blanket) (ports-security blanket)	2007-11-06 22:19:49 +00:00
Xin LI	35af81b4fe	Document pcre arbitrary code execution vulnerability. Approved by: portmgr (ports-security blanket)	2007-11-06 18:28:58 +00:00
Beech Rintoul	02580b2f51	- perdition entry - correct range Approved by: portmgr (pav) linimon (mentor)	2007-11-06 11:03:36 +00:00
Beech Rintoul	f2dccfb69d	- Add entry for mail/perdition PR: ports/117796 Approved by: portmgr (pav), linimon (mentor)	2007-11-06 09:58:50 +00:00
Martin Wilke	e64b45d48e	- gftp -- multiple vulnerabilities Reviewed by: simom Approved by: portmgr (blanket) (ports-security blanket)	2007-11-05 21:12:07 +00:00
Martin Wilke	5d5ca9e2bb	- Update dirproxy -- remote denial of service * Add net/dirproxy with the same affect * Update net/dirproxy-devel as safe Reviewed by: simon Approved by: portmgr (blanket) (ports-security blanket)	2007-11-05 11:46:14 +00:00
Martin Wilke	254f1242a5	- dirproxy -- remote denial of service Reviewed by: remko Approved by: portmgr (blanket) (ports-security blanket)	2007-11-04 13:43:35 +00:00
Martin Wilke	1831cf3564	- Fix discovery date on my previous commit Approved by: portmgr (ports-security blanket)	2007-11-01 15:16:37 +00:00
Martin Wilke	b1780d50df	- document wordpress -- cross-site scripting Reviewed by: simon Approved by: portmgr (ports-security blanket)	2007-11-01 12:46:52 +00:00
Xin LI	3c0238f590	Extend coverage to OpenLDAP 2.4.x series which is affected according to CVS history. Approved by: portmgr (ports-security blanket)	2007-11-01 00:58:11 +00:00
Xin LI	12b31a21c3	Document openldap multiple vulnerabilities. Approved by: portmgr (ports-security blanket)	2007-10-31 21:48:26 +00:00
Simon L. B. Nielsen	0cbcb19f7c	Bump modified date for entry updated in last commit. Approved by: portmgr (secteam blanket)	2007-10-31 17:21:15 +00:00
Palle Girgensohn	109a1ae1a1	Update vuxml to reflect that mod_jk and mod_jk-ap2 have different portepochs. Approved by: portmgr (pav)	2007-10-31 16:38:07 +00:00
Martin Wilke	5486dda5b2	- Update mozilla -- code execution via Quicktime media-link files PR: 117704 Submitted by: John Hein <jhein@timing.com> Reviewed by: simon Approved by: portmgr (blanket) secteam (blanket via simon)	2007-10-31 12:44:03 +00:00
Roman Bogorodskiy	7c2ab0fd81	gnutls-devel is now older than gnutls, so in order not to update or delete it during the freeze, mark it IGNORE. Approved by: portmgr (linimon)	2007-10-31 05:46:58 +00:00
Roman Bogorodskiy	1fb5bc60d9	Chase opencdk shared lib version change. Approved by: portmgr (pav) (as a part of security/opencdk commit)	2007-10-31 05:42:35 +00:00
Roman Bogorodskiy	8774ab9f2c	Update to 0.6.0 - the versioin compatible with the current version of gnutls in ports. Therefore, it fixes the problem described in ports/117671. Approved by: portmgr (pav)	2007-10-31 05:40:39 +00:00
Martin Wilke	c0a999e575	- Update to 1.17 PR: 117659 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org> (maintainer)	2007-10-30 09:23:19 +00:00
Michael Nottebrock	bf1f2cf63d	Update to 0.7.3	2007-10-30 08:39:28 +00:00
Alejandro Pulver	e3403ae728	- Update to version 2.0.2. - Update the NAT-T patch notice (in pre-everything). Submitted by: Matthew Grooms <mgrooms@shrew.net> (maintainer, via e-mail)	2007-10-30 03:54:04 +00:00
Michael Nottebrock	c13a5bcfcd	Update to KDE 3.5.8	2007-10-29 23:48:18 +00:00
Cy Schubert	f1625cd26f	Fix build for OpenSSL 0.9.8. PR: 117552 Submitted by: Hirohisa Yamaguchi <umq@umo.co.jp>	2007-10-29 23:23:27 +00:00
Martin Wilke	b5d6c545e4	This program uses a brute force algorithm to guess your encrypted compressed file's password. If you forget your encrypted file password, this program is the solution. This program can crack zip,7z and rar file passwords. WWW: http://sourceforge.net/projects/rarcrack PR: ports/117630 Submitted by: Philippe Audeoud <jadawin at tuxaco.net>	2007-10-29 22:57:12 +00:00
Cy Schubert	55bf5d1092	Fix build under 7.0-PRERELEASE.	2007-10-29 22:49:49 +00:00
Andrew Pantyukhin	b56de356e1	- Update www and master sites	2007-10-29 19:05:22 +00:00
Roman Bogorodskiy	12f89b2804	Update to 1.1.	2007-10-29 17:44:48 +00:00
Peter Pentchev	7446ef4da0	Update to stunnel-4.21.	2007-10-29 16:45:19 +00:00
Roman Bogorodskiy	e57d88f50b	Update to 2.0.2.	2007-10-29 16:34:38 +00:00
Mathieu Arnold	68ca94070f	Update to 1.12	2007-10-29 13:54:55 +00:00
Shaun Amott	0b6fd25060	Re-add a file (for cracklib support) that was inadvertently removed with the last update. PR: ports/117351 [1], ports/116864 [2] Submitted by: Koji Yokota <yokota@res.otaru-uc.ac.jp> [1], Matthias Andree <matthias.andree@gmx.de> [2]	2007-10-29 13:31:06 +00:00
Chin-San Huang	4cb090ddb2	- Update my mail address.	2007-10-29 06:37:44 +00:00
Chin-San Huang	ef000a009d	Add uberkey, a keylogger for x86 systems. WWW: http://www.linuks.mine.nu/uberkey/	2007-10-29 05:00:58 +00:00
Xin LI	b046226089	Document django DoS issue.	2007-10-28 22:22:45 +00:00
Martin Wilke	163be42a75	- Update to 0.2.0.9-alpha PR: 117582 Submitted by: bf <bf2006a@yahoo.com> Approved by: maintainer	2007-10-28 09:02:50 +00:00
Alex Dupre	3bb985bdf6	Update to 0.6.14 release.	2007-10-28 08:11:25 +00:00
Chin-San Huang	9be3a734f8	- Add WWW link.	2007-10-27 19:52:11 +00:00
Tim Bishop	f18a3b7da2	Update f-prot to 4.6.8.	2007-10-27 17:47:58 +00:00
Martin Wilke	0bc4193a2e	- Fix day entry for 498a8731-7cfc-11dc-96e6-0012f06707f0 Reviewed by: simon	2007-10-26 20:41:39 +00:00
Pav Lucistnik	d0c9520750	- Fix previous commit by edwin - 500000 != 600000. While here, fix packaging Reported by: pointyhat	2007-10-26 08:07:50 +00:00
Cy Schubert	c44c48c59e	Fix erroneous patch. PR: 117469 Submitted by: Karen Andrews <dearmiss@optusnet.com.au>	2007-10-25 21:15:23 +00:00
Martin Wilke	b7852ea261	- Document opera -- multiple vulnerabilities Reviewed by: remko	2007-10-25 18:34:32 +00:00
Martin Wilke	49ffc49d6f	- Update MASTER_SITES Submitted by: pointyhat	2007-10-25 12:11:40 +00:00
Martin Wilke	3c22b82ef3	- Document drupal --- multiple vulnerabilities Reviewed by: simon	2007-10-25 08:47:21 +00:00
Cheng-Lung Sung	66f857032e	- Update to 0.9.16 - Added two patches due to some system umask settlement(s). Added file(s): - files/patch-prelude-admin__prelude-admin.c - files/patch-src__prelude-failover.c Changelog libprelude-0.9.16: - Implement prelude-admin list [-l] command, which provide the ability to list existing profile name, permission, registration permission, analyzerID, and Issuer analyzerid. - Implement multiple analyzer deletion in prelude-admin. - Correct printing of IDMEF time field using non local GMT offset. - Patch to avoid struct typespec redefinition, due to variable mispelling. This fixes a compilation problem on OpenBSD 3.8. - Various bug fixes. PR: ports/117417 Submitted by: maintainer (Robin Gruyters)	2007-10-25 02:18:38 +00:00
Cheng-Lung Sung	be9a93457a	- Update to 0.9.10 Changelog prelude-manager-0.9.10: - Make threshold act like a real threshold: pass every Nth events in the defined amount of seconds. - Allow mixing Limit and Threshold. - Do not share the tresholding hash accross thresholding plugin instance: previously, the shared hash would result in strange thresholding plugin behavior if you had several instance of thresholding loaded. - Various bug fixes concerning plugin instance un-subscribtion (unsubscribtion of certain plugin was not triggered). PR: ports/117416 Submitted by: maintainer (Robin Gruyters)	2007-10-25 02:16:57 +00:00
Xin LI	90eaba07f5	Update to 1.3. PR: ports/117459 Approved by: gabor (via IRC)	2007-10-24 23:42:19 +00:00
Joe Marcus Clarke	4acc6fb2a4	Presenting GNOME 2.20.1 and all related works for FreeBSD. The official GNOME 2.20 release notes can be found at http://www.gnome.org/start/2.20/notes/en/ . Beyond that, this update includes the new GIMP 2.4 (courtesy of ahze). The GNOME 2.20 update also includes a huge change in the FreeBSD GNOME hierarchy. We are now using the more standard DATADIR of ${PREFIX}/share rather than ${PREFIX}/share/gnome. The result is that fewer patches and hacks are needed to port GNOME components to FreeBSD. This will mean some user changes may be required, so be sure to read /usr/ports/UPDATING for more details. This release and the things we accomplished in it would not have been possible without mezz's crazy idea to collapse DATADIR, and his persistence to make it happen successfully. Ahze and pav also deserve thanks for their work on porting modules and testing the whole ball of wax on pointyhat (respectively). The FreeBSD GNOME team would also like to thank our various testers and contributors: Yasuda Keisuke Frank Jahnke Pawel Worach Brian Gruber Franz Klammer Yuri Pankov Nick Barkas Cristian KLEIN Tony Maher Scot Hetzel Martin Matuska (mm) Benoit Dejean Martin Wilke (miwi) (And anyone else I may have missed) PRs fixed in this release: 111272, 113470, 115995, 116338	2007-10-24 23:37:25 +00:00
Martin Wilke	1ed39dca71	pdfcrack is a command line, password recovery tool for PDF-files. WWW: http://sourceforge.net/projects/pdfcrack PR: ports/117442 Submitted by: Philippe Audeoud <jadawin at tuxaco.net>	2007-10-24 09:22:03 +00:00
Joe Marcus Clarke	99c8e1a515	Update to 1.8.4. fix for BUG#291: don't suppress password policy errors which should not be suppressed fix for BUG#312: pam_ldap does not try to reconnect when LDAP server closed the connection PR: 116176 Submitted by: mm	2007-10-24 06:15:14 +00:00
Thomas Abthorpe	3f90fd4974	- Use PLIST_FILES, remove pkg-plist - Bump PORTREVISION - Pass maintainership to submiiter PR: ports/117426 Submitted by: Philippe Audeoud <jadawin tuxaco.net> Approved by: clsung (mentor, implicit)	2007-10-24 02:10:30 +00:00
Christian S.J. Peron	701d7bd70a	Update bsmtrace to 1.1.0. 1.1.0 fixes a pretty serious bug which resulted in BSM records without pathname tokens being processed in some cases. Additionally, timeout-window and timeout-probability features were added to allow people defining sequences with timeouts to add an element of randomness to the timeout, in theory making it more difficult for people to attack. timeout 60; timeout-window 10; timeout-probability 65; Basically equates to: "This sequence should timeout in a random amount of time, where the probability of the timeout being from 60-70 is 65%" It should be noted that there is a probability of 35% that the value will be completely random. So naturally, the lower the timeout-probability, the more random the timeout will be. Approved by: tmclaugh	2007-10-24 01:08:36 +00:00
Cheng-Lung Sung	0a9079174c	- Update to 0.22 - Reset maintainership PR: ports/117408 Submitted by: Gea-Suan Lin <gslin_AT_gslin dot org>	2007-10-24 00:49:32 +00:00
Dirk Meyer	03911fceb2	- remove option OPENSSL_OVERWRITE_BASE it was only supported for FreeBSD 4.x	2007-10-23 20:39:31 +00:00
Dirk Meyer	a169a59876	- update to 0.9.8g	2007-10-23 20:24:16 +00:00
Martin Wilke	80de5b726f	- Update to 0.6.1 PR: 117294 Submitted by: Philippe Audeoud <jadawin@tuxaco.net>	2007-10-23 13:39:15 +00:00
Martin Wilke	8e216c797c	- Update to 0.2.0.7-alpha PR: 117328 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com> (maintainer)	2007-10-23 11:41:04 +00:00
Martin Wilke	af520b1e1d	- Document ldapscripts -- Command Line User Credentials Disclosure PR: 117152 Submitted by: Ganael Laplanche <ganael.laplanche at martymac.com> (maintainer/author) rafan@ Reviewed by: simon@	2007-10-23 11:12:41 +00:00
Cy Schubert	3d878157d5	Update 1.6.2 --> 1.6.3 Security: fix CVE-2007-3999, CVE-2007-4743 svc_auth_gss.c buffer overflow fix CVE-2007-4000 modify_policy vulnerability Also: add PKINIT support	2007-10-23 03:41:37 +00:00
Tom McLaughlin	dc2037ceec	Update to 1.9.4 - Required due to recent update to Mono. Submitted by: Phillip Neumann Approved by: maintainer timeout	2007-10-23 03:39:04 +00:00
Tom McLaughlin	6bd9501dcd	Update to 1.6.9p6 - Sudo now only prints the password prompt if the process is in the foreground.	2007-10-23 00:46:44 +00:00
Xin LI	79f666f212	Modify firefox entry to cover linux-* variants.	2007-10-22 18:51:32 +00:00
Ion-Mihai Tetcu	3175f99138	Fix install path of CHANGES.txt when using nikto -update and bump PORTREVISION. PR: ports/117379 Submitted by: Naram Qashat	2007-10-22 08:47:45 +00:00
Xin LI	e8d809578a	Document firefox JavaScript Entrapment vulnerabilities.	2007-10-22 01:37:31 +00:00
Alejandro Pulver	28c8e95f4a	This port contains the Shrew Soft ike daemon and client tools. The software supports ike v1 communications between two gateways or a a client and a gateway. For more information please visit ... WWW: http://www.shrew.net/ PR: ports/116684 Submitted by: mgrooms at shrew.net	2007-10-21 02:51:20 +00:00
Martin Wilke	70272da132	- Update to 1.3.0 PR: 117269 Submitted by: Philippe Audeoud <jadawin@tuxaco.net> Approved by: maintainer implicit	2007-10-20 23:51:21 +00:00
Martin Wilke	7a91a45be7	- Fix year entry in 498a8731-7cfc-11dc-96e6-0012f06707f0 Submitted by: freshports Thanks to: Dan Langille	2007-10-20 20:48:33 +00:00
Roman Bogorodskiy	3fe9e09bf3	OpenFWTK is an application proxy toolkit which inherits the ideology of TIS fwtk and maintains API backwards compatibility. The design goal is to make it simple yet powerful; no performance hacks allowed in the code and library dependencies are reduced to minimum. WWW: http://sourceforge.net/projects/openfwtk PR: ports/117194 Submitted by: Anton Karpov <toxa at toxahost.ru>	2007-10-19 16:52:23 +00:00
Marcus Alves Grando	dd323d2da4	- Add new line between entries.	2007-10-19 14:23:35 +00:00
Stanislav Sedov	c0e14e480e	- Add entry about recent phpMyAdmin XSS server_status.php vulnerability - Fix URL in my previous entry while I'm here.	2007-10-17 22:15:35 +00:00
Ade Lovett	dbd39ca660	Migration from bison 1.x to 2.x PR: 117086 Tested by: -exp runs	2007-10-17 10:13:01 +00:00
Martin Wilke	d5502ae2a3	- Unbreak - Fix build gcc 4.2 PR: 116815 Submitted by: miwi Approved by: maintainer timeout	2007-10-17 09:45:28 +00:00
Johan van Selst	996f4eccd7	- Update patchfiles to match latest release (Nov 2001) - Fix MASTER_SITES (adding local mirror) The old master sites referenced distinct distfiles with the same filename. Primary site carries the latest version which includes minor bugfixes. Patches in previous commit were broken as they matched the older release.	2007-10-17 08:35:03 +00:00
Johan van Selst	26a4787a22	- Fix Makefile, update distinfo, bump portrevision (forgotten in prev commit)	2007-10-17 07:04:29 +00:00
Johan van Selst	5c849abdda	- Fix build with gcc 4.2 - Fix plist now that all libraries build	2007-10-17 06:46:21 +00:00
Dirk Meyer	092e182ecf	- Secuurity update to 0.9.8f Security: CVE-2007-4995	2007-10-16 20:37:24 +00:00
Stanislav Sedov	905ba3f81c	- Fix package name in 51b51d4a-7c0f-11dc-9e47-0011d861d5e2 and 229577a8-0936-11db-bf72-00046151137e entries (phpmyadmin->phpMyAdmin).	2007-10-16 18:29:34 +00:00
Stanislav Sedov	f6e0ab5ae1	- Add entry about phpMyAdmin XSS vulnerability.	2007-10-16 18:13:04 +00:00
Thomas Abthorpe	1e13747ed0	2007-09-10 security/p5-Digest-SHA2: Has numerious known bugs, deprecated in favor of Digest::SHA	2007-10-16 03:35:04 +00:00
Anders Nordby	3567e448d4	Correct build, libtool is a dependency. PR: ports/116982 Submitted by: Cory R. King <coryking@mozimedia.com>	2007-10-15 20:09:06 +00:00
Erwin Lansing	bd30680593	Update to 1.11 PR: 117212 Submitted by: Esa Karkkainen <ejk@iki.fi>	2007-10-15 19:31:59 +00:00
Renato Botelho	b131d84f27	- Port was building stuffs on post-patch: target, fix it using do build: [1] - Since i'm here, just make it respect PREFIX PR: ports/117106 [1] Submitted by: maintainer [1]	2007-10-15 16:38:39 +00:00
Oliver Lehmann	4b568f2818	update to 0.60.2	2007-10-14 16:52:07 +00:00
Jun Kuriyama	ec0efcad92	- Add a note "require LDAP" in GPGSM knob for $OPTIONS. This may help to reduce confusion when "WITHOUT_LDAP and WITH_GPGSM selected, but OpenLDAP dependency exists" situcation. PR: ports/116558 Reported by: Jo Rhett <jrhett@netconsonance.com>	2007-10-13 11:10:09 +00:00
Martin Wilke	10c764870c	nagios-plugins -- Long Location Header Buffer Overflow Vulnerability Reviewed by: simon	2007-10-13 09:45:26 +00:00
Alex Dupre	c08b1b7c9d	Update to 1.05 release.	2007-10-13 07:30:17 +00:00
Mark Linimon	a19c7d44c5	Reset delta@lackas.net due to maintainer-timeouts and no response to email. Hat: portmgr	2007-10-11 21:59:47 +00:00
Johan van Selst	d91c0633d7	- Fix compilation with gcc 4.2 - Note: testfile still fails, but does exactly the same with old gcc might be a broken test - leaving this to somebody with ruby-foo	2007-10-11 19:59:57 +00:00
Johan van Selst	c2f042be13	- Fix compilation on FreeBSD 7 (openssl issues) - Fix libnss option - Grab maintainership (and feed patches upstream)	2007-10-11 19:32:20 +00:00
Renato Botelho	3521e70b8b	- Update to 20071011 to reflect 0.92RC2	2007-10-11 18:31:17 +00:00
Martin Wilke	7690f9d607	Document png -- multiple vulnerabilities Reviewed by: simon	2007-10-11 17:28:01 +00:00
Renato Botelho	e8a017c37d	Update WWW	2007-10-11 16:35:05 +00:00
Cy Schubert	bdb7d01307	Fix build under 7.0-CURRENT (gcc 4.2.1 20070719). PR: 112884 Submitted by: Scot Hetzel<swhetzel@gmail.com>	2007-10-10 19:12:46 +00:00
Remko Lodder	279fd2f245	Document ImageMagick - Multiple vulnerabilities Submitted by: Nick Barkas	2007-10-10 12:47:22 +00:00
Remko Lodder	d325269732	Correct mediawiki package names. Spotted by: Nick Barkas	2007-10-10 12:35:43 +00:00
Cheng-Lung Sung	4236f3410c	- Update to 1.10	2007-10-10 09:46:18 +00:00
Martin Wilke	de0d021646	- Update to 0.9.1084 PR: 116859 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:36:58 +00:00
Martin Wilke	92faf13e1e	- Update to 0.9.957 PR: 116860 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:35:36 +00:00
Martin Wilke	d60173b8a8	- Update to 0.9.985 PR: 116858 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:34:53 +00:00
Martin Wilke	a0d840679d	- Update to 0.9.1068 PR: 116863 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:33:49 +00:00
Martin Wilke	d028564739	- Update to 0.9.1068 PR: 116861 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:32:49 +00:00
Martin Wilke	4e7867b2f5	- Update to 0.9.1086 PR: 116862 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:31:43 +00:00
Martin Wilke	801fee5af1	- Mark DEPRECATED (distribution is broken and no longer supported.) PR: 116870 Submitted by: Sergei Vyshenski <svysh@pn.sinp.msu.ru> (maintainer)	2007-10-09 22:30:21 +00:00
Oliver Lehmann	6fc4b47407	update to 0.60.1	2007-10-09 20:03:32 +00:00
David Thiel	71e2b0222a	Update to 0.11.7.	2007-10-09 18:48:35 +00:00
Martin Wilke	85cbee74af	- Dokument jdk/jre -- Applet Caching May Allow Network Access Restrictions to be Circumvented Reviewed by: remko	2007-10-09 07:18:11 +00:00
Cy Schubert	049f43b12b	Update 0.11 --> 0.13.1	2007-10-09 06:18:28 +00:00
Florent Thoumie	19c9068753	Document xfs -- multiple vulnerabilities.	2007-10-08 12:05:08 +00:00
Mark Linimon	37688beae5	Mark as broken on gcc4.2.	2007-10-07 12:42:36 +00:00
Stefan Walter	cca9adb7db	Respect OPENSSLBASE. PR: 116986 [1], 109041 [2] Submitted by: maintainer [1], supraexpress@globaleyes.net [2]	2007-10-07 12:36:46 +00:00
Chin-San Huang	ef978159f3	- Update security/chntpw to 070923. PR: ports/116967 Submmitter: maintainer	2007-10-06 06:36:21 +00:00
Andrew Pantyukhin	12053ed044	- Update to 3.04	2007-10-06 00:06:25 +00:00
Andrew Pantyukhin	123d815215	- Sort category Makefiles Inspired by: Jason Harris <jharris@widomaker.com> Howto: http://twiki.cenkes.org/Cenkes/SortingCategoryMakefiles	2007-10-05 23:33:27 +00:00
Oliver Lehmann	279889d2e3	fix the patch I messed up! sigh	2007-10-05 19:50:19 +00:00
Marcus Alves Grando	6263358d77	- Update gsskex patch to 20070927 - Update HPN patch to hpn12v19 [1] Notified by: ale [1]	2007-10-05 12:41:25 +00:00
Martin Wilke	30f9615ad2	- Document tcl/tk -- buffer overflow in ReadImage function PR: 116881 Submitted by: Nick Barkas <snb@threerings.net> Reviewed by: simon	2007-10-05 09:35:49 +00:00
Alex Dupre	6b7a9b8cd6	Update to 1.04 release.	2007-10-05 06:09:00 +00:00
Cheng-Lung Sung	83da1daa95	- Update to 2.24	2007-10-05 05:13:03 +00:00
Edwin Groothuis	9ab4c6dd21	Remove errornous # DO NOT DELETE lines caused by makedepend(1)	2007-10-05 03:07:12 +00:00
Cheng-Lung Sung	af1fe83651	- update prelude library dependency PR: ports/116111 Submitted by: Robin Gruyters <r dot gruyters_AT_yirdis dot nl>	2007-10-05 01:48:34 +00:00
Cheng-Lung Sung	bdf32af2dd	- update dependency on libprelude PR: ports/116110 Submitted by: maintainer (Robin Gruyters)	2007-10-05 01:47:09 +00:00
Cheng-Lung Sung	a285174426	- Update to 0.9.13 - bump libprelude library Changelog libpreludedb: - Source and Target now use a 16 bits index (required for CorrelationAlert with large number of source/target). CorrelationAlert Alertident now use a 32 bits index (required to link large number of Alert together). - Fix compilation on system without ENOTSUP (fix #227): Include modified patch from Alexandre Anriot <aanriot@atlantilde.com>. - [pgsql] Patch by Pierre Chifflier <chifflier@inl.fr>, that fixes type conversions preventing PostgreSQL to use indexes (fix #225). - [preludedb-admin] Use separate alert / heartbeat command: this is done to have a coherent implementation of the --offset and --count command line options. - [preludedb-admin] Fix --offset with the load command. - [preludedb-admin] Give the delete table a decent size, should speedup the delete command. - [documentation] preludedb-admin manpage (fix #230), by Pierre Chifflier <chifflier@inl.fr>. PR: ports/116109 Submitted by: maintainer (Robin Gruyters)	2007-10-05 01:46:14 +00:00
Cheng-Lung Sung	17114d625b	- Update to 0.9.9.1 - bump libprelude library Changelog prelude-manager: - Fix for new libprelude (0.9.15) runtime warning. - Add documentation for SQLite3 in the template configuration file (S??ç¹astien Tricaud <toady at gscore.org>). PR: ports/116108 Submitted by: maintainer (Robin Gruyters)	2007-10-05 01:45:06 +00:00
Cheng-Lung Sung	1e36b84691	- Update to 0.9.15.2 - Updated patch-Makefile.in - Added Man page Changelog libprelude: - prelude-adduser has been renamed to prelude-admin, and now include command to print or send files containing binary IDMEF data. - Brand new failover implementation, Feature a real 'journaling' log, allowing to restart where we were interupted. Allow multiple process to write to the same failover, and is chroot safe. - prelude-admin manpage, thanks to Frederic Motte <fred at ubixis com>. - Use SHA1 in place of MD5 for Analyzer checksum. - Do not set TCP option on UNIX socket, avoid un-necessary warning. - New measure all over the public interface to protect against bad API usage, when a function is not used correctly, a critical warning is triggered. - [logging]: New PRELUDE_LOG_CRIT logging priority. - [logging]: Correctly map Prelude log level to Syslog priority. - [logging]: Improved logging format (include timestamp, level, process pid). - [logging]: New LIBPRELUDE_ABORT variable, useful if you'd like libprelude to abord on critical assertion. - [logging]: Automatically switch to syslog mode if we detect stdout/stderr closure. - [IDMEF-Criteria]: When we try to match a value against a path that is not part of a message using a 'not' operator, the match should succeed (Example: alert.classification.text != 'stuff' should match if the message has no classification object). - [IDMEF-Criteria]: When matching multiple listed values within the same path using a 'not' operator, return an explicit 'no match' if the provided comparison value was found at least once. - [IDMEF-Path] (fix #251): Fixes NULL pointer dereference when the last element of an IDMEF path to an enumeration is not the enumeration itself (S??ébastien Tricaud <toady at gscore.org> - Fix a possible race condition with the internal libprelude reference to the program idmef_analyzer_t when asynchronous timer were used. - Workaround possible deadlock at exit on OpenBSD, Linux Glibc. - Only configure libltdl if it is required. - Various bug fixes, minor enhancements. - Write the children PID into specified pidfile (fixes #257). - Fix double free on idmef_criterion_value_t cloned regexp object (thanks to Helmut Azbest <helmut.azbest at gmail.com>). - Allow Python thread to run, while entering libprelude C function. - Return PRELUDE_ERROR_ASSERTION when API check fail, in place of PRELUDE_ERROR_GENERIC. - Make prelude_plugin_unsubcribe() work as expected (call the plugin instance destroy function). - Various bug fixes, minor enhancements. PR: ports/116107 Submitted by: maintainer (Robin Gruyters)	2007-10-05 01:44:07 +00:00
Diane Bruce	369baeaa34	- This patch fixes broken install. PR: ports/116875 Reported by: db Submitted by: Maintainer	2007-10-05 01:21:47 +00:00
Edwin Groothuis	c947287940	Remove always true/always false OSVERSION conditions.	2007-10-04 23:08:40 +00:00
Xin LI	d42f9fd9d4	Document firebird multiple remote buffer overflow vulnerabilities	2007-10-04 22:56:29 +00:00
Oliver Lehmann	b3950a7bca	fix build of courier-authlib-vchkpw	2007-10-04 14:57:29 +00:00
Rong-En Fan	2866a78221	Wapiti allows you to audit the security of your web applications. It performs "black-box" scans, i.e. it does not study the source code of the application but will scans the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets this list, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable. WWW: http://wapiti.sourceforge.net/ PR: ports/116873 Submitted by: Philippe Audeoud <jadawin at tuxaco.net>	2007-10-04 13:21:39 +00:00
Edwin Groothuis	678db880d8	remove double bsd.port.mk	2007-10-04 09:21:59 +00:00
Edwin Groothuis	13441eac4b	Remove always-false/true conditions based on OSVERSION 500000	2007-10-04 06:02:06 +00:00
Edwin Groothuis	0d263e77cb	Remove support for OSVERSION < 5	2007-10-04 00:00:38 +00:00
Edwin Groothuis	f1826a6393	[PATCH] security/fwbuilder: cleanup non-supported FreeBSD versions - removed support to 4.X (EOL) - add correct NOPORTDOCS PR: ports/111822 Submitted by: Marcelo Araujo <araujo@bsdmail.org> Approved by: maintainer timeout	2007-10-03 12:19:22 +00:00
Oliver Lehmann	2ec39f47c3	update to 0.60.0	2007-10-03 12:10:07 +00:00
Remko Lodder	f0bb9c6ed8	Update the bugzilla and mediawiki entries to properly match their corrected versions. Prodded by: Nick Barkas (and a few others)	2007-10-02 18:27:37 +00:00
Xin LI	abc5f7d1e6	Update to reflect the fixed version of id3lib.	2007-10-02 02:04:41 +00:00
Xin LI	c28f02d4c5	Document id3lib insecure temporary file creation vulnerability	2007-10-01 21:04:45 +00:00
Mark Linimon	b551476ed8	Mark as broken with gcc4.2 on 64-bits archs.	2007-09-30 11:01:00 +00:00
Mark Linimon	531874040c	Fine-tune broken message.	2007-09-30 10:59:11 +00:00
Mark Linimon	3997490dc6	Mark as broken on gcc4.2.	2007-09-30 10:55:57 +00:00
Mark Linimon	b23621676d	Remove 4.X cruft.	2007-09-30 10:54:00 +00:00
Mark Linimon	0ad7412dc4	Remove cruft.	2007-09-30 10:51:24 +00:00
Mark Linimon	99cb35bd20	Also broken with gcc4.2.	2007-09-30 10:47:51 +00:00
Mark Linimon	b77b407107	Mark as broken with gcc4.2.	2007-09-30 10:43:57 +00:00
Mark Linimon	65d7f39607	Mark as broken with gcc4.2 on 64-bit archs.	2007-09-30 10:39:07 +00:00
Mark Linimon	554c4dc7c4	Mark as broken: fails to install.	2007-09-30 10:35:32 +00:00
Mark Linimon	9bc52272d3	Mark as only for i386-6. Based on: PR: ports/115474 Submitted by: maintainer	2007-09-30 10:33:03 +00:00
Mark Linimon	522be11394	Add USE_PERL5. This will be needed to conditionalize bsd.perl.mk inclusion. Approved by: maintainer	2007-09-30 09:21:42 +00:00
Edwin Groothuis	8754909e19	[update] security/pam-mysql to 7.0RC1 Includes fix for correct use of -lmd to find MD5 functions (see: http://sourceforge.net/tracker/index.php?func=detail&aid=1485390&group_id=5741&atid=105741) Note: Used autoconf 2.61 to prevent problems with the upcoming sweep PR: ports/113882 Submitted by: Angelo Turetta <aturetta@bestunion.it> Approved by: maintainer timeout	2007-09-30 06:14:09 +00:00
Mark Linimon	dc572b07ee	Before bsd.port.pre.mk, set either USE_PERL5 or WANT_PERL, depending on whether the perl dependency is unconditional or conditional. This will be needed for the conditional inclusion of bsd.perl.mk.	2007-09-30 04:55:31 +00:00
Mark Linimon	48420a5ebd	Switch autoconf dependencies from 2.53 or 2.59 to 2.61. PR: ports/116639 Submitted by: aDe	2007-09-30 04:47:36 +00:00
Hiroki Sato	3a4ea6e7e2	Update to 1.2.4.1. Changes include: - "*grabServer" resource bug has been fixed.	2007-09-29 23:19:28 +00:00
Alejandro Pulver	cc6a4eebad	- Make it work on 64-bit systems. - Avoid the build failing when OpenSSL is installed as a port too. PR: ports/94921 Submitted by: Mats Palmgren <mats.palmgren@bredband.net>	2007-09-29 22:12:20 +00:00
Alejandro Pulver	6709dbfa47	- Turn off keyboard grabbing to avoid mouse pointer lock after returning from the screensaver. PR: ports/103395 Submitted by: Vladimir Grebenschikov <vova@fbsd.ru>	2007-09-29 20:39:43 +00:00
Pav Lucistnik	0bc99cad27	- Mark BROKEN everywhere: does not compile Reported by: pointyhat	2007-09-29 12:48:56 +00:00
Thomas Abthorpe	6124fba7a8	- cleanup Makefile - update comment/descripttion to indicate port is a wrapper to Digest::MD5 - pass maintainership to perl@ Approved by: miwi (co-mentor)	2007-09-27 18:40:42 +00:00
Shaun Amott	bb373dcac1	Upgrade to 1.0.1. PR: ports/115589 Submitted by: Rasmus Kaj <kaj@kth.se>	2007-09-27 00:16:01 +00:00
Edwin Groothuis	0578757a74	[UPDATE] security/tor-devel Update to latest release. Suggest all users upgrade as there is a remote code exploit in versions less than 2.0.7 PR: ports/115534 Submitted by: Peter Thoenen <peter.thoenen@yahoo.com>	2007-09-25 12:50:17 +00:00
Edwin Groothuis	ca45b5f7cc	Add missing files from pkg-plist after upgrade to masterport Noticed by: YAPHR PR: ports/115868 (indirect)	2007-09-24 21:38:19 +00:00
Martin Wilke	130c7b4833	- Update to 1.3.1 - Fix using sendmail from Ports (115270) PR: 116587 Submitted by: Petr Rehor <prehor@gmail.com> (maintainer)	2007-09-24 17:23:32 +00:00
Mark Linimon	cd4b80489b	Dominic is a new dad, and will be too busy for a while to work on ports. Congratulations :-)	2007-09-24 07:38:42 +00:00
Edwin Groothuis	bb2e13e258	security/libgcrypt portlint fixes 1. remove quotes from COMMENT 2. INSTALLS_SHLIB -> USE_LDCONFIG PR: ports/115286 Submitted by: David Yeske <dyeske@gmail.com> Approved by: maintainer timeout	2007-09-24 00:35:45 +00:00
Rong-En Fan	bd519e53d3	- In managed mode the script does not return the proper value due to $? is reset by the if command. Therefore, the script does not fail when starts with broken configuration files - While I'm here, use %%RC_SUBR%% instead of /etc/rc.subr PR: ports/110320 Submitted by: Dominic Fandrey <lon_kamikaze at gmx.de> Approved by: maintainer timeout (6 months)	2007-09-23 12:47:55 +00:00
Stefan Walter	03fc0b4b47	Update to 0.7.6.	2007-09-23 12:12:59 +00:00
Martin Wilke	9763e55d65	- Add missing patch - Fix whitspaces Submitted by: Dave Grochowski <malus.x@gmail.com> (maintainer)	2007-09-23 09:14:20 +00:00
Martin Wilke	0d4684e032	- modify mediawiki entry (add missing mediawiki18) Reviewed by: remko	2007-09-23 09:09:33 +00:00
Li-Wen Hsu	566c495359	- Update to 0.9 PR: ports/116554 Submitted by: Peter Johnson <johnson.peter AT gmail.com> (maintainer)	2007-09-23 05:44:25 +00:00
Edwin Groothuis	ef4fc524f8	Update port: security/sfs, fix build with gcc42 The attached patch fixes security/sfs so it builds with gcc42. The only change I made that I am wary of is commenting out the LIBTOOL variable in ${WRKSRC}/sfsrwcd/Makefile. However, this seems to work fine on both 7.0-CURRENT and 6.2-STABLE. In addition, I would not mind maintaining the port. PR: ports/116389 Submitted by: Dave Grochowski <malus.x@gmail.com>	2007-09-23 03:17:21 +00:00
Xin LI	403f96dca0	Some PHP 5.x vulnerabilities is also found in PHP 4.x series, unfortunately it seems that there is no newer PHP release to fix these issue for 4.x series, so mark it as so. While I'm there add a new CVE that was not mentioned in previous revision of entry.	2007-09-23 01:37:06 +00:00
Erwin Lansing	f61dfd43eb	Update to 0.57	2007-09-22 19:23:18 +00:00
Marcus Alves Grando	5a1d1148e1	- Change libevent lib and bump PORTREVISION since devel/libevent are updated.	2007-09-21 20:21:30 +00:00
Remko Lodder	c226087002	Document mediawiki -- cross site scripting vulnerability, our port versions had not been updated yet, 1.8.x is not vulnerable by default unless you are using the $wgEnableAPI = true; statement, in that case please set it to $wgEnableAPI = false; (where possible ofcourse, else upgrade to 1.8.5).	2007-09-21 13:14:29 +00:00
Remko Lodder	0dc1a827d6	Document wordpress -- remote sql injection vulnerability, our versions are already up to date for this vulnerability.	2007-09-21 13:02:53 +00:00
Remko Lodder	860a19c188	samba -- nss_info plugin privilege escalation vulnerability, the FreeBSD port had already been fixed for this.	2007-09-21 12:41:29 +00:00
Remko Lodder	073f037882	Document bugzilla -- multiple vulnerabilities PR: ports/116060 Submitted by: Nick Barkas <snb at threerings dot net>, minor nits from me	2007-09-21 06:49:49 +00:00
Xin LI	3739d27ad1	Document clamav CVE-2007-4510 issue (Remote DoS).	2007-09-21 06:35:53 +00:00
Cy Schubert	cbede968ff	Make the Protocol Helpers advanced settings window aesthetically pleasing once again.	2007-09-20 22:46:23 +00:00
Remko Lodder	e5c43d59a4	Document coppermine -- multiple vulnerabilities, the FreeBSD port is already up to date.	2007-09-20 12:20:27 +00:00
Remko Lodder	97fb53af1d	Document openoffice -- arbitrary command execution vulnerability, all current versions marked vulnerable, everything as of 2.3 is believed to be fixed, but we do not have that yet ( I am also not sure whether the -devel version has the correct fix or not ) so lets be on the safe side till we know what version will be fixed in our repro.	2007-09-20 12:12:53 +00:00
Remko Lodder	aea8d6dfc2	Document bugzilla -- "createmailregexp" security bypass vulnerability, marking all versions as vulnerable till we know what version is the one fixed in our CVS repository.	2007-09-20 12:04:29 +00:00
Beech Rintoul	9776b26859	- Update to 0.26 PR: ports/116429 Submitted by: TAKAHASHI Kaoru <kaoru@kaisei.org> (maintainer) Reviewed by: sat (mentor)	2007-09-19 23:03:16 +00:00
Cy Schubert	a6362a37c0	Add support for Kerberos 5 kshell and Kerberos 4 ekshell using the IP Filter rcmd proxy.	2007-09-19 22:48:24 +00:00
Simon L. B. Nielsen	d455c815f2	Spell Ulf Harnhammar (ASCII version of name) using UTF-8 instead of HTML entities which can't be assumed is available to a paser by default. This fixes a warning from packaudit.	2007-09-19 19:24:45 +00:00

... 3 4 5 6 7 ...

11102 commits