pkgsrc/devel/apache-maven
yyamano 5cf299f401 Update apache maven to 3.0.5.
http://maven.apache.org/docs/3.0.5/release-notes.html

Apache Maven 3.0.5 is a maintenance release to fix a security
issue CVE-2013-0253 Apache Maven 3.0.4

http://maven.apache.org/security.html

CVE-2013-0253 Apache Maven 3.0.4

Apache Maven 3.0.4 (with Apache Maven Wagon 2.1) has
introduced a non-secure SSL mode by default. This mode
disables all SSL certificate checking, including: host
name verification , date validity, and certificate chain.
Not validating the certificate introduces the possibility
of a man-in-the-middle attack.

All users are recommended to upgrade to Apache Maven 3.0.5
and Apache Maven Wagon 2.4.
2013-03-03 16:53:42 +00:00
..
patches Update apache maven to 3.0.5. 2013-03-03 16:53:42 +00:00
DESCR Ran pkglint --autofix on the devel/ category. Most of the changes are 2009-06-13 06:46:41 +00:00
distinfo Update apache maven to 3.0.5. 2013-03-03 16:53:42 +00:00
Makefile Update apache maven to 3.0.5. 2013-03-03 16:53:42 +00:00
PLIST Update apache maven to 3.0.5. 2013-03-03 16:53:42 +00:00