aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* Mk: Cleanup after moving apply-slist earlier.Mathieu Arnold2021-04-142-2/+2
|
* security/zeek: Unbreak armv7 build and fix testport issueCraig Leres2021-04-143-7/+12
| | | | | | | | | | | | | | | | | | | Add a patch from upstream to fix building on armv7 (used by pfsense): https://github.com/zeek/zeek/issues/1496 Thanks to @garga for the pointer. Fix a testport "left over" file @adridg reported. When zeek is run as part of package installation, it copies some config files to spool/installed-scripts-do-not-touch/site and local.zeek.sample hitches a ride and needs to be removed on uninstall. But it is not really a @sample candidate. While we're here fix some minor portlint (env -> ${SETENV}) and clean up some commented out directives. Reported by: garga adridg
* security/gvmd: fix plistAdriaan de Groot2021-04-131-0/+1
| | | | Missing @dir /var/lib makes testport complain.
* security/boringssl: fix plistAdriaan de Groot2021-04-132-0/+2
| | | | One missing header file. Bump PORTREVISION for including that one.
* security/gvmd: fix shebangsAdriaan de Groot2021-04-131-1/+8
| | | | | Build fails with `poudriere -t` because of bad shebangs in some of the alert scripts (that use Python or bash).
* security/courier-authlib: Update to 0.71.3Guido Falsi2021-04-132-4/+4
|
* security/vuxml: Document xorg-server vulnEmmanuel Vadot2021-04-131-0/+36
|
* security/py-yubikey-manager: update 4.0.0 to 4.0.2Vinícius Zavam2021-04-132-4/+4
| | | | | | | - https://github.com/Yubico/yubikey-manager/blob/4.0.2/NEWS PR: 254580 Reported by: nwhitehorn@
* security/openssl-devel: Build fixesBernard Spil2021-04-132-4/+4
| | | | | * fix CRYPTODEV issues on < 13 * fix MAN3 issues when disabled
* security/openssl-quictls: Update to 3.0.0alpha14Bernard Spil2021-04-133-12/+26
| | | | | | * Merge cryptodev fixes from openssl-devel * Improve cryptodev fixes * Fix building without MAN3
* kpmenu: update to 1.3.0Baptiste Daroussin2021-04-133-50/+36
|
* REVIVE: security/apg, Automated Password Generator written in GoVinícius Zavam2021-04-134-0/+34
| | | | | | | | | | | | apg-go is a simple APG-like password generator written in Go. It tries to replicate the functionality of the "Automated Password Generator", which hasn't been maintained since 2003. Since FIPS-181 (pronouncable passwords) has been withdrawn in 2015, I didn't see any use in replicating that feature. Therfore apg-go does not support pronouncable passwords. WWW: https://github.com/wneessen/apg-go
* security/libcryptui: accept current gnupg 2.3 in configureAdriaan de Groot2021-04-132-8/+5
| | | | | | | | | | | Massage our crummy REINPLACE to also accept the current version of gnupg that is in ports, so this can build agani. While here, fix the pkg-descr which was still a copy of seahorse (from which this package was split several years ago). Upstream has marked this as "likely to be deprecated", and there has been no release in 4 years. There *has* been an upstream commit doing what our REINPLACE does, up to gnupg 2.2.
* security/fizz: Update 2021.04.05.00 -> 2021.04.12.00Yuri Victorovich2021-04-122-4/+4
|
* security/wazuh-agent: Update to 4.1.4 and fix dirsKevin Bowling2021-04-123-33/+36
| | | | | | | | Fixes dirs and permissions so the agent can start after install. PR: 248656 Reported by: Felipe Zipitria <fzipitria@perceptyx.com> Approved by: Michael Muenz <m.muenz@gmail.com> (maintainer)
* security/netpgp: Remove from treeKevin Bowling2021-04-125-61/+0
| | | | | | | | Marked broken on 12+ over 2 years ago without anyone fixing it Upstream project seems inactive PR: 254938 Reported by: daniel.engberg.lists@pyret.net
* security/libassuan: Update to 2.5.5Jason E. Hale2021-04-123-5/+5
|
* security/vuxml: Add entry for gitea < 1.14.0Adam Weinberger2021-04-121-0/+28
| | | | | PR: 254976 Submitted by: Stefan Bethke
* security/wpa_supplicant-devel: Add PASN optionCy Schubert2021-04-122-2/+18
| | | | | | | | PASN (Pre association Security Negotiation), defined in 802.11az_D1.5, is the mechanism that allows for security association and allow Management Frame Protection (MFP) prior to association. See https://www.spinics.net/lists/hostap/msg06752.html.
* security/wpa_supplicant-devel: Update to latest GH commitCy Schubert2021-04-122-5/+5
| | | | Update to the latest w1.fi commit, proxied through my GH account.
* security/krb5-devel: update to the latest MIT/KRB5 github commit.Cy Schubert2021-04-122-5/+5
|
* security/step-cli: Update to 0.15.14Neel Chauhan2021-04-122-55/+91
| | | | | PR: 255003 Submitted by: Markus Wipp <mw AT wipp DOT bayern> (maintainer)
* security/step-certificates: Update to 0.15.11Neel Chauhan2021-04-122-10/+10
| | | | | PR: 255004 Submitted by: Markus Wipp <mw AT wipp DOT bayern> (maintainer)
* security/trezord: update to 2.0.31 release.Alex Dupre2021-04-122-4/+4
|
* security/vuxml: Document syncthing issueSteve Wills2021-04-121-0/+29
|
* security/sops: Update to 3.7.1Dmitri Goutnik2021-04-112-6/+6
| | | | Changes: https://github.com/mozilla/sops/releases/tag/v3.7.1
* security/py-[acme|certbot]: Update to 1.14.0Danilo G. Baio2021-04-1019-55/+55
| | | | | | | | Changelog: https://github.com/certbot/certbot/blob/v1.14.0/certbot/CHANGELOG.md PR: 254843 Submitted by: Yasuhiro KIMURA <yasu@utahime.org> Approved by: python (with hat)
* security/vuxml: Document information disclosure vulnerability in python.Thomas Zander2021-04-101-0/+36
| | | | | | PR: 254780 Reported by: yasu@utahime.org Security: CVE-2021-3426
* security/vuxml: Document 2 vulnerabilities in ftp/curlThomas Zander2021-04-101-0/+87
| | | | | | | | Security: CVE-2021-22876 CVE-2021-22890 PR: 254772 Reported by: yasu@utahime.org
* security/vuxml: Add entry for gitea < 1.13.7Adam Weinberger2021-04-091-0/+29
| | | | | PR: 254930 Submitted by: Stefan Bethke
* Regenerate all distfiles using gitlab as source.Matthias Fechner2021-04-096-16/+16
| | | | | | | | | | | | This regeneration is required as the new gitlab version changed the address and the directory the source files can be downloaded. This commit also applies some small fixes to make sure all ports using gitlab are buildable. Reviewed by: mat Approved by: portmgr Differential Revision: https://reviews.freebsd.org/D29628
* security/xray-core: Update to 1.4.2Neel Chauhan2021-04-092-52/+55
| | | | Changes: https://github.com/XTLS/Xray-core/releases/tag/v1.4.2
* security/openssl-devel: Update to 3.0.0-alpha14Bernard Spil2021-04-093-6/+17
| | | | | | | | * and fix cryptodev on < 13 PR: 254643 Reported by: <cryx-freebsd h3q com> Reviewed by: wollman
* security/openvas: fix plist issueAdriaan de Groot2021-04-091-0/+1
| | | | | | | | | poudriere -t (testport) complains about orphans Error: Orphaned: @dir /var/lib even though the underlying directories **are** listed in the plist. Add this directory as indicated. Not bumping PORTREVISION because the package itself doesn't change.
* devel/icu: update to 69.1Jan Beich2021-04-081-1/+1
| | | | | Changes: https://github.com/unicode-org/icu/releases/tag/release-69-1 Reported by: GitHub (watch releases)
* security/py-keyring: update to 23.0.1Piotr Kubaj2021-04-082-4/+4
| | | | | PR: 254895 Approved by: douglas@douglasthrift.net (maintainer)
* security/fwknop: Fix compilation on FreeBSD 13+Kevin Bowling2021-04-082-4/+20
| | | | | | PR: 254570 Reported by: Jens Grassel <freebsd-ports@jan0sch.de> Approved by: Sean Greven <sean.greven@gmail.com> (maintainer)
* security/gnupg: Update to 2.3.0Adam Weinberger2021-04-088-93/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes: * A new experimental key database daemon is provided. To enable it put "use-keyboxd" into gpg.conf and gpgsm.conf. Keys are stored in a SQLite database and make key lookup much faster. * New tool gpg-card as a flexible frontend for all types of supported smartcards. * New option --chuid for gpg, gpgsm, gpgconf, gpg-card, and gpg-connect-agent. * The gpg-wks-client tool is now installed under bin; a wrapper for its old location at libexec is also installed. * tpm2d: New daemon to physically bind keys to the local machine. See https://gnupg.org/blog/20210315-using-tpm-with-gnupg-2.3.html * gpg: Switch to ed25519/cv25519 as default public key algorithms. * gpg: Verification results now depend on the --sender option and the signer's UID subpacket. [#4735] * gpg: Do not use any 64-bit block size cipher algorithm for encryption. Use AES as last resort cipher preference instead of 3DES. This can be reverted using --allow-old-cipher-algos. * gpg: Support AEAD encryption mode using OCB or EAX. * gpg: Support v5 keys and signatures. * gpg: Support curve X448 (ed448, cv448). * gpg: Allow use of group names in key listings. [e825aea2ba] * gpg: New option --full-timestrings to print date and time. * gpg: New option --force-sign-key. [#4584] * gpg: New option --no-auto-trust-new-key. * gpg: The legacy key discovery method PKA is no longer supported. The command --print-pka-records and the PKA related import and export options have been removed. * gpg: Support export of Ed448 Secure Shell keys. * gpgsm: Add basic ECC support. * gpgsm: Support creation of EdDSA certificates. [#4888] * agent: Allow the use of "Label:" in a key file to customize the pinentry prompt. [5388537806] * agent: Support ssh-agent extensions for environment variables. With a patched version of OpenSSH this avoids the need for the "updatestartuptty" kludge. [224e26cf7b] * scd: Improve support for multiple card readers and tokens. * scd: Support PIV cards. * scd: Support for Rohde&Schwarz Cybersecurity cards. * scd: Support Telesec Signature Cards v2.0 * scd: Support multiple application on certain smartcard. * scd: New option --application-priority. * scd: New option --pcsc-shared; see man page for important notes. * dirmngr: Support a gpgNtds parameter in LDAP keyserver URLs. * The symcryptrun tool, a wrapper for the now obsolete external Chiasmus tool, has been removed. * Full Unicode support under Windows for the command line. [#4398] Release-info: https://dev.gnupg.org/T5343
* security/p5-Net-SinFP: update to 2.10Sofian Brabez2021-04-082-27/+11
| | | | | | Simplify makefile, cleanups, remove the db fetch, regenerate distinfo. Reported by: portscout
* - Update security/py-scramp to 1.4.0Wen Heping2021-04-082-4/+4
|
* security/logcheck: Update to 1.3.23Neel Chauhan2021-04-082-4/+4
| | | | | | | Changes: https://tracker.debian.org/news/1237718/accepted-logcheck-1323-source-into-unstable/ PR: 254700 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org> (maintainer)
* security/clamav: Update to 0.103.2Neel Chauhan2021-04-083-27/+28
| | | | | | | Changes: https://blog.clamav.net/2021/04/clamav-01032-security-patch-release.html PR: 254862 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org> (maintainer)
* Document multiple vulnerabilities in security/clamavNeel Chauhan2021-04-081-0/+35
| | | | | PR: 254861 Submitted by: Yasuhiro Kimura <yasu AT utahime DOT org>
* Document Jenkins Security Advisory 2021-04-07Li-Wen Hsu2021-04-081-0/+33
| | | | Sponsored by: The FreeBSD Foundation
* Remove useless Created by: headers mentioning meDmitry Marakasov2021-04-073-6/+0
|
* security/pidentd: Remove portJuraj Lutter2021-04-077-258/+0
| | | | | | | | pidentd is broken on recent FreeBSD versions and abandoned upstream. Remove port, disconnect from category Makefile. PR: 254748 Reported by: daniel.engberg.lists@pyret.net
* security/vuxml: document Node.js April 2021 Security ReleasesBradley T. Hughes2021-04-071-0/+47
| | | | https://nodejs.org/en/blog/vulnerability/april-2021-security-releases/
* Remove expired ports:Rene Ladan2021-04-0723-715/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 2021-04-01 ftp/wzdftpd: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 astro/roadmap: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cosmo: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/bomberinstinct: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/drm: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/bygfoot: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cre: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 irc/hybserv: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 irc/xaric: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 mail/elmo: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 misc/cave: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/bugs: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/dmitry: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 security/doorman: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 shells/esh: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 sysutils/cpu: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 textproc/libcrm114: No known users, dead upstream 2021-04-01 x11/wmmatrix: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/wmxss: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/tycoon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xgrab: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xbanner: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/bricons: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 x11/xmon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 games/cavezofphear: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 astro/saoimage: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/ksmp3play: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/jamin: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/musicbox-tag-editor: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/nspmod: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/cdplay: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/gimmix: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/ghostess: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/wmrecord: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/toolame: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 audio/shout: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/grappa: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/phylip: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 biology/lagan: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 cad/varkon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 cad/transcalc: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 comms/seyon: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 comms/efax: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 converters/vda2fbd: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 converters/shftool: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/openzz: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/sourcenav: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 devel/gb: Unmaintained and dead upstream 2021-04-01 dns/checkdns: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 dns/inadyn-mt: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 editors/gate: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 editors/thoteditor: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/cinc: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/e-uae: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 emulators/dtcyber: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 ftp/jftpgw: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-01 ftp/pureadmin: Unmaintained and dead upstream, does not build with -fno-common (llvm 11) 2021-04-02 textproc/hs-pandoc-citeproc: Integrated into textproc/hs-pandoc
* security/vuxml: Document upnp stack overflow vulnerabilityLewis Cook2021-04-071-0/+30
| | | | | Approved by: fernape (mentor) Differential Revision: https://reviews.freebsd.org/D29618
* security/vuxml: add FreeBSD SA-21:10.jail_mountPhilip Paeps2021-04-071-0/+32
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-24 23:05:16 +0000