freebsd-ports

History

Olli Hauer 5e7bd302a1 - update to 4.0.5 Vulnerability Details ===================== Class: Cross-Site Request Forgery Versions: 4.0.2 to 4.0.4, 4.1.1 to 4.2rc2 Fixed In: 4.0.5, 4.2 Description: Due to a lack of validation of the enctype form attribute when making POST requests to xmlrpc.cgi, a possible CSRF vulnerability was discovered. If a user visits an HTML page with some malicious HTML code in it, an attacker could make changes to a remote Bugzilla installation on behalf of the victim's account by using the XML-RPC API on a site running mod_perl. Sites running under mod_cgi are not affected. Also the user would have had to be already logged in to the target site for the vulnerability to work. References: https://bugzilla.mozilla.org/show_bug.cgi?id=725663 CVE Number: CVE-2012-0453 Approved by: skv (implicit)		2012-04-10 05:15:47 +00:00
..
acroread8	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
acroread9	- Update to 9.4.7 (English version only)	2012-01-22 09:30:18 +00:00
alt-aspell	- Pass maintainership to office@FreeBSD.org	2011-11-28 16:06:13 +00:00
aspell	- Pass maintainership to office@FreeBSD.org	2011-11-28 16:06:13 +00:00
BBBike	update city count	2011-08-06 22:05:27 +00:00
bsdforen-firefox-searchplugin	- remove MD5	2011-07-03 13:22:24 +00:00
bsdgroup-firefox-searchplugin	- remove MD5	2011-07-03 13:22:24 +00:00
bsdpaste	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
bugzilla	- update to 4.0.5	2012-04-10 05:15:47 +00:00
bugzilla3	- update german bugzilla templates	2012-02-13 21:14:34 +00:00
calligra-l10n	- Update KOffice to 2.3.3.	2011-04-13 07:33:32 +00:00
dict	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
digibux	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
ding	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
dtaus	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
eric4	Update to version 4.5.2.	2012-04-03 12:11:39 +00:00
geonext
gimp-help
hunspell	- Set DIST_SUBDIR: move dist files to DISTDIR/hunspell	2011-08-17 18:03:06 +00:00
hyphen	- Set DIST_SUBDIR: move dist files to DISTDIR/hyphen	2011-08-17 18:03:41 +00:00
ispell	- Pass maintainership to office@FreeBSD.org	2011-11-28 16:06:13 +00:00
ispell-alt	- Pass maintainership to office@FreeBSD.org	2011-11-28 16:06:13 +00:00
ispell-neu	- Pass maintainership to office@FreeBSD.org	2011-11-28 16:06:13 +00:00
jdictionary-eng-ger	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
jdictionary-ger-hun	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
kde3-i18n	Reset maintainership de jure. In fact KDE 3 has not been maintained by our team	2011-07-07 17:21:58 +00:00
kde4-l10n	The KDE/FreeBSD team is pleased to announce KDE SC 4.7.4, which	2012-01-25 10:21:01 +00:00
kheisereg	- Reassign to the heap	2011-07-05 02:51:42 +00:00
koffice-i18n	Reset maintainership de jure. In fact KDE 3 has not been maintained by our team	2011-07-07 17:21:58 +00:00
koffice-kde4-l10n	- Update KOffice to 2.3.3.	2011-04-13 07:33:32 +00:00
ksteak	- Pass maintainership to new volunteer	2011-09-10 06:23:35 +00:00
manpages	- Update to 0.5	2012-02-16 04:39:00 +00:00
mediathek	- Bump PORTREVISION to chase the update of multimedia/libvpx	2012-02-16 15:57:34 +00:00
MT	The vast majority of pkg-descr files had the following format when they	2011-10-24 09:11:38 +00:00
mythes	- Update to 2012.04.08	2012-04-09 16:22:29 +00:00
pecl-konto_check	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
phone	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
php_doc
schwobifyer	Remove more tags from pkg-descr files fo the form:	2011-10-24 04:17:37 +00:00
selfhtml
steak	The vast majority of pkg-descr files had the following format when they	2011-10-24 09:11:38 +00:00
tipp10	Update to 2.1.0.	2011-09-01 10:09:47 +00:00
unix-connect	- Get Rid MD5 support	2011-03-18 17:59:50 +00:00
vtiger
webalizer2
wordpress	- Update to 3.3.1	2012-01-14 03:51:09 +00:00
Makefile	Add some locales thesaurus	2011-07-21 14:33:07 +00:00
Makefile.inc