kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
187512 commits 42 branches 80 tags 2.7 GiB
Commit graph

10895 commits

Author SHA1 Message Date
Andrew Pantyukhin
1f457abfd1 - Update to 0.5.3 2007-12-12 01:28:04 +00:00
Johan van Selst
09bd875e57 - Fix build on FreeBSD 8 
Reported by:	pointyhat via pav
 2007-12-11 21:12:17 +00:00
David Thiel
0f45e3e389 Update to 0.18. 2007-12-11 20:18:21 +00:00
Alex Dupre
16eeea61ed Update to 0.9.22 release. 2007-12-11 20:13:40 +00:00
David Thiel
f00f189c12 Update to 2.4.1. Also fix a rather silly uninstall message, reported 
by brd@.
 2007-12-11 20:10:42 +00:00
David Thiel
1694682b5c Update to 1.4. 2007-12-11 20:09:36 +00:00
Jeremy Messenger
98e28c9f66 Fix the build when net/lam installed in system. 
PR:		ports/117623 and ports/114871
Reported by:	Alexander Vasyanin <avasyanin@mail.ru>
		Koji Yokota <yokota@res.otaru-uc.ac.jp>
 2007-12-11 19:27:53 +00:00
Remko Lodder
31c963fff9 Document jetty - multiple vulnerabilities 
PR:		ports/118524
Submitted by:	Nick Barkas <snb at threerings dot net>
		with minor modifications by me
Approved by:	portmgr (secteam blanket)
 2007-12-10 07:00:05 +00:00
Norikatsu Shigemura
35a9136398 Update to 2007.12.07 with fix security issue. 
Security:	VuXML ID: 821afaa2-9e9a-11dc-a7e3-0016360406fa
		CVE-2007-6036
		http://aluigi.altervista.org/adv/live555x-adv.txt
Approved by:	portmgr (erwin)
 2007-12-09 15:47:20 +00:00
Remko Lodder
3e1df12f13 Document liveMedia -- DoS vulnerability 
Submitted by:	Rafae«l Careé <funm at videolan dot org>
		with modifications by me
Approved by:	portmgr (secteam blanket)
 2007-12-08 23:26:34 +00:00
Xin LI
992be0dfcf Update to reflect the squid issue has been assigned 
CVE-2007-6239.

Approved by:	portmgr (ports-security blanket)
 2007-12-07 10:25:05 +00:00
Martin Wilke
07ce45bc66 - Update gnu-finger entry 
* Fix cvename handling

Approved by:	portmgr (ports-security blanket)
 2007-12-05 07:49:40 +00:00
Mark Linimon
c1f6c82617 http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165: gnu-finger is old, 
creaky, and not for use in production environments.

Submitted by:	tabthorpe
Approved by:	portmgr (self)
 2007-12-05 07:26:59 +00:00
Xin LI
be144111fc Update to reflect an updated www/squid30 version which is no 
longer vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-12-05 00:28:14 +00:00
Pav Lucistnik
64a425ae65 - Chase rubygem-activerecord update 
Missed by:	miwi
Reported by:	pointyhat
Approved by:	portmgr (hat)
 2007-12-04 23:21:23 +00:00
Xin LI
f2f038bbc6 Update to reflect an updated www/squid version which is no 
longer vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-12-04 19:49:48 +00:00
Xin LI
c1f761805b Document squid denial of service vulnerability. This can be 
triggered from trusted squid client only.

Approved by:	portmgr (ports-security blanket)
 2007-12-04 19:20:45 +00:00
Cy Schubert
820eecfb41 PORTREVISION bump in support of pkg-plist revision 1.5. 
Approved by:	portsmgr (ewin)
 2007-12-03 17:25:05 +00:00
Cy Schubert
6873fbe267 Correct chmod location. 
Approved by:	portmgr (linimon)
 2007-12-02 07:02:37 +00:00
Xin LI
536ef4952b Remove the rsync entry for now. Better way of handling 
this is still under discussion, as the vendor patch does
not automatically resolve problem for customized
configuration that have chroot = no.

Requested by:	pav
Approved by:	portmgr (ports-security blanket)
 2007-12-02 00:15:27 +00:00
Xin LI
b3db6b6ffb Document rsync security bypass vulnerability. 
Approved by:	portmgr (ports-security blanket)
 2007-12-01 20:23:43 +00:00
Simon L. B. Nielsen
f199be9d03 Make the rubygem-rails -- JSON XSS vulnerability entry valid UTF-8 (at 
least the special chars doesn't look like UTF-8 as per emacs or
freshports).

Reported by:	freshports via dvl
Approved by:	portmgr (secteam blanket)
 2007-12-01 14:25:28 +00:00
Li-Wen Hsu
32ddc12372 - Update to 0.10 
- Unbreak on HEAD/7 (re-add a needed patch)

PR:		ports/118066
Submitted by:	Peter Johnson <johnson.peter AT gmail.com> (maintainer)
Reported by:	pointyhat (pav)
Approved by:	portmgr (linimon)
 2007-11-30 21:11:04 +00:00
Xin LI
79cc8b9cc2 Also cover rubygem-activesupport which is part of rails and is 
affected by CVE-2007-3227 as well.

Approved by:	portmgr (ports-security blanket)
 2007-11-28 00:26:56 +00:00
Xin LI
afa8c55f49 Document recent Ruby On Rails vulnerabilities. 
Approved by:	portmgr (ports-security blanket)
 2007-11-28 00:19:08 +00:00
Henrik Brix Andersen
b703078233 Document ikiwiki improper symlink verification vulnerability. 
Reviewed by:	remko
Approved by:	portmgr (erwin), erwin (mentor)
 2007-11-27 21:57:02 +00:00
Xin LI
636d490c9b Document firefox multiple unspecified memory corruption vulnerabilities. 
Approved by:	portmgr (ports-security blanket)
 2007-11-27 21:35:54 +00:00
Ade Lovett
ccd0fca5ec Unbreak pthread-related issues on 5.x 
Approved by:	portmgr
 2007-11-26 17:45:55 +00:00
Mark Linimon
022234ed2a Mark as broken on 5.x: fails to find pthread.h. 
Something in the infrastructure changed in the late July timeframe that
actually caused this problem.  The only major thing at that time was the
autoconf/libtool change, but I can't see how that could have caused this
failure mode.  It only happens on 5.x; 6.x and 7.x are fine.

Approved by:	portmgr (self)
 2007-11-25 01:24:13 +00:00
Mark Linimon
8c1c9234be Mark as broken: fails to install. 
Approved by:	portmgr (self)
 2007-11-24 23:14:35 +00:00
Mark Linimon
67f4ea5edd Add sfsrwcd: clients cannot make connections without it. 
Part of:	ports/116966
Submitted by:	maintainer, private email
Approved by:	portmgr (self)
 2007-11-23 01:22:51 +00:00
Martin Wilke
b170922337 - Document phpmyadmin -- Cross Site Scripting 
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket
 2007-11-21 18:58:28 +00:00
Martin Wilke
088cb609f7 - Update last Samba entry, 
* Add reference to the samba advisories
	* Fix the PORTVERSION/PORTEPOCH

Reviewed by:	simon
Approved by:	portmgr (ports-security blanket)
 2007-11-21 09:02:57 +00:00
Martin Wilke
b2589226b2 Document samba - multiple vulnerabilities 
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket)
 2007-11-21 07:40:49 +00:00
Mark Linimon
e8101ce2d5 Unmark broken; the missing Objective C header with gcc 4.2 has now been 
fixed.

PR:		ports/117967
Submitted by:	maintainer
Approved by:	portmgr (self)
 2007-11-20 02:21:27 +00:00
Xin LI
1efb5213dd postnuke 0.763 is not vulnerable to 35f2679f-52d7-11db-8f1a-000a48049292 
so mark it as not vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-11-18 00:47:43 +00:00
Xin LI
2e6ae504e7 Improve JDK version coverage. We should consider PORTEPOCH'ed version 
separately, so restruct the range.

Approved by:	portmgr (ports-security blanket)
 2007-11-17 07:07:41 +00:00
Xin LI
9f91025e2e Document PHP multiple vulnerabilities that are fixed by php 5.2.5. 
Approved by:	portmgr (ports-security blanket)
 2007-11-16 19:53:06 +00:00
Martin Wilke
e54c6135f9 - Fix c93e4d41-75c5-11dc-b903-0016179b2dd5 entry 
Submitted by:	glewis
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket)
 2007-11-16 08:05:48 +00:00
Erwin Lansing
eedba319e8 print/cups-base is vulnerable for all previous versions to 
1.3.3_2, not all coming ones.

Submitted by:	Andrew Daugherity <ADaugherity@vprmail.tamu.edu>
Approved by:	portmgr (self)
 2007-11-14 22:19:06 +00:00
Johan van Selst
f51c28d0ef - Fix build on FreeBSD 7 
Reported by:	pointyhead (via pav)
Approved by:	portmgr (pav)
 2007-11-14 18:38:40 +00:00
Remko Lodder
843e669bf0 Document mt-daapd -- denial of service vulnerability, also 
correct the previous entry style wise.

Submitted by:	Mark D. Foster <mark at foster dot cc> with minor
		modifications by me.

Approved by:	portmgr (secteam blanket)
 2007-11-14 14:23:32 +00:00
Martin Wilke
fc2b3e1dc1 - Update xpdf -- multiple remote Stream.CC vulnerabilities 
* Mark cups-base as safe

Approved by:	portmgr (ports-security blanket)
 2007-11-14 09:23:51 +00:00
Jun Kuriyama
c81bd82f43 o Add a patch for CVE-2007-5846, and add an entry for vuxml. 
Approved by:  portmgr (marcus)
 2007-11-14 05:45:24 +00:00
Martin Wilke
96cc343b74 - Document flac -- media file processing integer overflow vulnerabilities 
Reviewed by:	simon
Approved by:	portsmgr (ports-security blanket)
Thanks to:	naddy
 2007-11-13 15:41:57 +00:00
Peter Pentchev
50fa8f3e41 Add an official fix for the chroot mode resolving bug. 
Approved by:	portmgr (pav)
 2007-11-13 10:09:51 +00:00
Simon L. B. Nielsen
58cf5e4c31 Unbreak file by closing </li> tag. 
Approved by:	portmgr (secteam blanket)
 2007-11-13 06:46:43 +00:00
Xin LI
8393f841e2 Document xpdf arbitrary code execution vulnerability, as documented in 
CVE-2007-4352, CVE-2007-5392, CVE-2007-5393.

Approved by:	portmgr (ports-security blanket)
 2007-11-13 01:14:50 +00:00
Pav Lucistnik
74a84673b8 - Attempt to fix plist on 7.0 
Reported by:	pointyhat
Approved by:	portmgr (hat)
 2007-11-13 00:40:27 +00:00
Pav Lucistnik
e731f00f9e - hcrypto library is only installed on FreeBSD < 7.0 
Reported by:	pointyhat
Approved by:	portmgr (hat)
 2007-11-12 23:27:08 +00:00