freebsd-ports

History

Bryan Drewery 8f93c11473 Disable function importing from the environment by default. This can be enabled by using --import-functions or enabling the IMPORTFUNCTIONS option. This removes the risk of further parser bugs leading to code execution, as well as the risk to setuid scripts and poorly written applications that do not cleanse their environment [1][2]. Also note that there is an unofficial 4.3.26 floating around that has not yet been officially released. r369261 covers the change in 4.3.26. See also: http://seclists.org/oss-sec/2014/q3/747 [1] http://seclists.org/oss-sec/2014/q3/746 [2] http://seclists.org/oss-sec/2014/q3/755 [3] Obtained from: NetBSD (based on) [3] PR: 193932 Reviewed by: Eric Vangyzen With hat: portmgr		2014-09-26 20:33:23 +00:00
..
files	Disable function importing from the environment by default. This can be	2014-09-26 20:33:23 +00:00
distinfo	- Update to patch level 25 (4.3.25)	2014-09-24 17:05:47 +00:00
Makefile	Disable function importing from the environment by default. This can be	2014-09-26 20:33:23 +00:00
pkg-descr
pkg-message	bash does NOT require procfs mounted.	2014-04-22 17:09:54 +00:00
pkg-plist	- Update to 4.3.24	2014-08-19 19:31:35 +00:00