aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* - Convert to new options frameworkSofian Brabez2012-10-071-13/+11
| | | | | | | | | - Add LICENSE - Add math/py-numpy build depends - Bump PORTREVISION Notes: svn path=/head/; revision=305443
* Work around a problem on stable/[89] with libotr generating anDoug Barton2012-10-072-4/+9
| | | | | | | | | | | | | | | | | | | "undefined reference to `__stack_chk_fail_local'" error. None of the usual remedies work (such as making sure that gcc is used instead of ld for the linker) so on those releases we simply disable that option. pointyhat logs confirm that pidgin-otr (the only consumer of libotr atm) is failing on 8 and 9 with the same configure error that I am seeing on 8, so this patch should at least allow it to build on those releases. Bump PORTREVISION for libotr to err on the side of caution. While I'm here, remove a now-spurious mod to the pidgin-otr configure. Notes: svn path=/head/; revision=305438
* use libtommath as default math library as it used to be before conversion toBaptiste Daroussin2012-10-071-0/+1
| | | | | | | | | optionsng Repored by: linimon Notes: svn path=/head/; revision=305432
* Convert to OptionsNGEitan Adler2012-10-071-17/+12
| | | | | | | | PR: ports/172426 Submitted by: Michael Gmelin <freebsd@grem.de> Notes: svn path=/head/; revision=305429
* Trim the headers in the ports I maintain.Eitan Adler2012-10-061-5/+0
| | | | Notes: svn path=/head/; revision=305369
* Change headers of all ports maintained by me to new formatRenato Botelho2012-10-057-35/+6
| | | | Notes: svn path=/head/; revision=305298
* - Updated to 1.3.0Greg Larkin2012-10-042-6/+6
| | | | | | | | | | - Removed explicit library version number from gpg-error in LIB_DEPENDS PR: ports/172202 Submitted by: Doug Barton <dougb@freebsd.org> Notes: svn path=/head/; revision=305278
* - Make GMP OPTION'alJason Helfman2012-10-044-13/+68
| | | | | | | | | | - Add upstream patch for test failure when built without GMP PR: 172299 Submitted by: koobs.freebsd@gmail.com Notes: svn path=/head/; revision=305266
* Convert to new options frameworkBaptiste Daroussin2012-10-048-91/+52
| | | | Notes: svn path=/head/; revision=305249
* - fix runtime when devel/subversion and/or devel/pysvn is installed [1]Ruslan Makhmatkhanov2012-10-032-9/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | - bump PORTREVISION As side effect, I completely disabled --update feature. It was done for number of reasons: - subversion relationship starts not only if --update feature is requested by user, but when pysvn or svn is available - we do not installing repository metadata from the source tarball (exactly this breaks the --update option, but it is broken anyway, see below) - aforementioned repository metadata is not compatible with svn 1.7, that is in ports now - development repository moved to github from subversion hosting anyway This is accomplished with replacing the call of getRevisionNumber() with static const, that represents the svn last revision from tarball. while here: - trim Makefile header - remove indefinite article from COMMENT - convert to optionsng Reported by: Fausto Marzi <fausto.marzi at gmail dot com> (by mail) [1] Notes: svn path=/head/; revision=305221
* - correct the range in last entry (le/lt typo)Ruslan Makhmatkhanov2012-10-031-1/+1
| | | | Notes: svn path=/head/; revision=305201
* - update to 2.8.10Ruslan Makhmatkhanov2012-10-031-0/+36
| | | | | | | | | | | | | | - add vuxml entry This release fixes SQL injection vulnerability. PR: 172114 Submitted by: rm (myself) Approved by: ports-secteam (eadler) Security: dee44ba9-08ab-11e2-a044-d0df9acfd7e5 Notes: svn path=/head/; revision=305200
* - Update to 1.8.0Sofian Brabez2012-10-034-16/+11
| | | | Notes: svn path=/head/; revision=305196
* - Update to 20121001 snapshotJulien Laffaye2012-10-033-12/+81
| | | | Notes: svn path=/head/; revision=305190
* - set maintainer to ruby@Jason Helfman2012-10-031-5/+1
| | | | Notes: svn path=/head/; revision=305178
* - Fix typos (LICENSE is correct form inside bsd.licenses.mk).Andrej Zverev2012-10-021-1/+1
| | | | | | | | | | - Removed LICENSE_FILE where is no need in this. Spotted by: zont@ Approved by: portmgr (bapt@) Notes: svn path=/head/; revision=305166
* - Fix header to proper formatBryan Drewery2012-10-012-2/+2
| | | | | | | Reported by: danfe Notes: svn path=/head/; revision=305132
* - pass maintainership to new volonteerRuslan Makhmatkhanov2012-09-302-12/+4
| | | | | | | | | | | | | while here: - trim Makefile header - remove indifenite article from COMMENT - remove deprecated attribution in pkg-descr PR: 172163 Submitted by: Chris Petrik <c.petrik.sosa at gmail dot com> Notes: svn path=/head/; revision=305074
* - Reassign to the heap due to mail bouncesThomas Abthorpe2012-09-301-6/+2
| | | | Notes: svn path=/head/; revision=305061
* - Update to 201237 snapshot [1]Bryan Drewery2012-09-284-31/+43
| | | | | | | | | | | | - Convert to new options framework - Remove ABI versions from LIB_DEPENDS - Update to new header PR: ports/171743 [1] Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer) [1] Notes: svn path=/head/; revision=305007
* - Update to 2.3-beta1 [1]Bryan Drewery2012-09-286-132/+68
| | | | | | | | | | | | | - Add LICENSE [1] - Convert to new options framework - Remove ABI versions from LIB_DEPENDS - Update to new header PR: ports/171738 [1] Submitted by: Eric F Crist <ecrist@secure-computing.net> (maintainer) [1] Notes: svn path=/head/; revision=305006
* Fix type in headedBaptiste Daroussin2012-09-281-1/+1
| | | | | | | Reported by: zi (maintainer) Notes: svn path=/head/; revision=304986
* Mark nvidia-driver-173.14.35_1 as not vulnerable.Alexey Dokuchaev2012-09-271-1/+1
| | | | Notes: svn path=/head/; revision=304967
* Fix the temporary workaround by passing the appropriate flag inWesley Shields2012-09-271-9/+3
| | | | | | | | LDFLAGS. Since I want to ensure those who built it on i386 with this workaround will rebuild it now that it is fixed bump PORTREVISION. Notes: svn path=/head/; revision=304961
* Fix build on i386 by disabling hardening measures. This is a temporaryWesley Shields2012-09-271-2/+10
| | | | | | | fix until I can figure out what is really going on. Notes: svn path=/head/; revision=304944
* Document vulnerabilities in www/chromium < 22.0.1229.79Rene Ladan2012-09-261-0/+96
| | | | | | | Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates Notes: svn path=/head/; revision=304933
* - Chase www/smarty -> www/smarty2 renameGreg Larkin2012-09-261-2/+2
| | | | Notes: svn path=/head/; revision=304930
* - Document remote code execution in ePerl (all versions)Greg Larkin2012-09-261-0/+36
| | | | | | | | | | | | - Deprecate and schedule removal in month - no upstream fix available and no active development since 1998 Security: 73efb1b7-07ec-11e2-a391-000c29033c32 Security: CVE-2001-0733 Security: http://www.shmoo.com/mail/bugtraq/jun01/msg00286.shtml Notes: svn path=/head/; revision=304919
* - Update to 5.72Frederic Culot2012-09-262-8/+7
| | | | | | | | | - Add LICENSE (Artistic 1 & GPL 1) Changes: http://search.cpan.org/dist/Digest-SHA/Changes Notes: svn path=/head/; revision=304909
* Enable the Berkley DB backend by default.Niclas Zeising2012-09-261-2/+2
| | | | | | | | | | | | Bump portrevision. PR: ports/154711 Submitted by: Jason C. Wells <jcw@speakeasy.net> (pr) Robert Simmons <rsimmons0@gmail.com> (patch) Approved by: maintainer timeout (12 weeks), kwm (mentor) Notes: svn path=/head/; revision=304905
* - Update to 2.15Frederic Culot2012-09-262-8/+7
| | | | | | | | | - Add LICENSE (Artistic 1 & GPL 1) Changes: http://search.cpan.org/dist/Crypt-Twofish/Changes Notes: svn path=/head/; revision=304902
* - Update MASTER_SITES and WWW linkFrederic Culot2012-09-262-8/+8
| | | | | | | | | | - Add LICENSE (GPL 2) PR: ports/172054 Submitted by: KATO Tsuguru <tkato432@yahoo.com> Notes: svn path=/head/; revision=304897
* Convert to OptionsNGBaptiste Daroussin2012-09-261-14/+11
| | | | Notes: svn path=/head/; revision=304878
* Update to 1.8.6p3Wesley Shields2012-09-263-3/+8
| | | | | | | | PR: ports/171837 Submitted by: cy@ Notes: svn path=/head/; revision=304871
* - Documented PNG file DoS vulnerability in ImageMagick and GraphicsMagickGreg Larkin2012-09-251-0/+49
| | | | | | | - Added -nox11 suffixes to various ImageMagick entries Notes: svn path=/head/; revision=304862
* - Reassign to the heap at maintainer's requestThomas Abthorpe2012-09-252-12/+4
| | | | Notes: svn path=/head/; revision=304807
* - Update to v12.09.12 releaseAlex Dupre2012-09-247-40/+67
| | | | | | | | - Switch to OptionsNG - Pet portlint Notes: svn path=/head/; revision=304779
* - Adjust "Created by" tag to include more complete submitter's informationAlexey Dokuchaev2012-09-231-3/+3
| | | | | | | | - Mute MKDIRs, remove trailing dot from RESTRICTED, drop leading indefinite article from COMMENT where appropriate Notes: svn path=/head/; revision=304748
* - Fix spelling in docs: normally I'd submit this change upstream, butMatthew Seaman2012-09-235-16/+33
| | | | | | | | | | | | upstream has been completely unresponsive for years. - While here, rebuild patches using current naming conventions - Trim Makefile headers PR: 165312 Submitted by: Anatoly Borodin Notes: svn path=/head/; revision=304744
* Update vuxml to indicate which versions are vulnerable.Eitan Adler2012-09-231-1/+3
| | | | Notes: svn path=/head/; revision=304735
* Deprecate a bunch a ports with no more public distfiles (thanks ehaupt's ↵Baptiste Daroussin2012-09-219-0/+27
| | | | | | | distilator) Notes: svn path=/head/; revision=304618
* Add a sourceforge mirrorBaptiste Daroussin2012-09-211-6/+3
| | | | | | | Approved by: Marko Njezic <mr.max@maxempire.com> (maintainer) Notes: svn path=/head/; revision=304615
* - Update php52 backports patch to 20120911Bryan Drewery2012-09-201-2/+86
| | | | | | | | | | | | | | | | | | | | | | | | - Add and update relevant vuxml entries Changes: - CVE-2011-1398 - The sapi_header_op function in main/SAPI.c in PHP before 5.3.11 does not properly handle %0D sequences - CVE-2012-0789 - Memory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a denial of service (memory consumption) by triggering many strtotime function calls, which are not properly handled by the php_date_parse_tzfile cache. - CVE-2012-3365 - The SQLite functionality in PHP before 5.3.15 allows remote attackers to bypass the open_basedir protection mechanism via unspecified vectors - Timezone database updated to version 2012.5 (2012e) (from 2011.13 (2011m)) - Minor improvements (CVE-2012-2688, compilation issues with old GCC) PR: ports/171583 Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com> Approved by: Alex Keda <admin@lissyara.su> (maintainer) Notes: svn path=/head/; revision=304559
* - CVE-2012-2688 was addressed by php52-5.2.17_10Bryan Drewery2012-09-201-1/+2
| | | | | | | | | | PR: ports/170063 PR: ports/171583 Reported by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com> Security: bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89 Notes: svn path=/head/; revision=304558
* Update to 0.12.6 release.Alex Dupre2012-09-192-8/+3
| | | | Notes: svn path=/head/; revision=304491
* Upgrade to the latest BIND patch level:Doug Barton2012-09-191-0/+47
| | | | | | | | | | | | | | | | | | | | | | Prevents a crash when queried for a record whose RDATA exceeds 65535 bytes. Prevents a crash when validating caused by using "Bad cache" data before it has been initialized. ISC_QUEUE handling for recursive clients was updated to address a race condition that could cause a memory leak. This rarely occurred with UDP clients, but could be a significant problem for a server handling a steady rate of TCP queries. A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process. For more information: https://kb.isc.org/article/AA-00788 Notes: svn path=/head/; revision=304476
* - Add missing dependency on bisonKevin Lo2012-09-181-2/+3
| | | | | | | | | - Bump PORTREVISION Reported by: portmgr (linimon) Notes: svn path=/head/; revision=304434
* Update to 20120917Renato Botelho2012-09-172-3/+3
| | | | Notes: svn path=/head/; revision=304421
* Update to 0.97.6Renato Botelho2012-09-172-4/+3
| | | | Notes: svn path=/head/; revision=304418
* Document Jenkins Security Advisory 2012-09-17Li-Wen Hsu2012-09-171-0/+41
| | | | Notes: svn path=/head/; revision=304415
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-26 11:32:12 +0000