aboutsummaryrefslogtreecommitdiff
path: root/security
Commit message (Collapse)AuthorAgeFilesLines
* *: Clean up some thingsTobias Kortkamp2021-06-191-1/+1
| | | | | | | - Clean up commented PORTREVISION - Add missing USES Reported by: portscan
* security/openssl-quictls: Update to 3.0.0-beta1Bernard Spil2021-06-193-13/+4754
|
* security/openssl-devel: Upadate to 3.0.0-beta1Bernard Spil2021-06-193-9/+4720
|
* security/openvpn: update to v2.5.3Matthias Andree2021-06-183-16/+5
| | | | | | | | | | | | | | | | | | Changelog: https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst FreeBSD relevant changes: Bugfixes * disable connect-retry backoff for p2p (--secret) instances (Trac #1010, #1384) * fix build with mbedtls w/o SSL renegotiation support * fix small memory leak in free_key_ctx for auth_token * Fix SIGSEGV (NULL deref) receiving push "echo" (Trac #1409) - -> in FreeBSD ports, already fixed in 2.5.2_2 (PORTREVISION 2). User-visible Changes * update copyright messages in files and --version output New features * add --auth-token-user option (for --auth-token deployments without --auth-user-pass in client config)
* security/acme.sh: ensure sed -i works in examples/acme.sh/dnsapi/dns_nsd.shDan Langille2021-06-181-0/+4
| | | | | PR: 256664 Reported by: Freddy DISSAUX <dsx@bsdsx.fr>
* security/vuxml: Add www/chromium < 91.0.4472.114Rene Ladan2021-06-181-0/+39
| | | | Obtained from: https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop_17.html
* security/gvm: Update to 21.4.0Jose Alonso Cardenas Marquez2021-06-1831-219/+334
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The following ports part of security gvm were updated security/gvmd: Update to 21.4.0 security/gvm-libs: Update to 21.4.0 security/openvas: Update to 21.4.0 security/py-ospd-openvas: Update to 21.4.0 security/py-ospd: Update to 21.4.0 security/greenbone-security-assistant: Update to 21.4.0 security/py-python-gvm: Update to 21.5.2 security/py-gvm-tools: Update to 21.6.0 Notable Changes in this Release - All components and the feed support CVSSv3/CVSSv3.1 - GSA contains a new calculator for these CVSS versions - Rework of the login page in GSA to have a better entry point into our software - Dropped support for Internet Explorer - Dropped support for Microsoft Edge <= 18 - Removed auto false positive feature - Removed GMP scanner support - Dropped dynamic severity classes - Removed support for Python 3.5 and lower PR: 254630 254632 Reported by: Eirik Oeverby <ltning-freebsd at anduin.net>
* security/isal-kmod: Update to a version that uses crypto_cursor_segment().John Baldwin2021-06-162-8/+9
| | | | | | | | This API was added to src in beb817edfe22cdea91e19a60c42caabd9404da48. Reviewed by: jrm, gallatin Sponsored by: Netflix Differential Revision: https://reviews.freebsd.org/D30538
* x11/plasma5-plasma: Update KDE Plasma Desktop to 5.22.1Tobias C. Berner2021-06-163-9/+9
| | | | | | | | | | | | | | | | | | | Tuesday, 15 June 2021. Today KDE releases a bugfix update to KDE Plasma 5, versioned 5.22.1. Plasma 5.22 was released in June 2021 with many feature refinements and new modules to complete the desktop experience. This release adds a week's worth of new translations and fixes from KDE's contributors. The bugfixes are typically small but important and include: * KWin: Platforms/drm: support NVidia as secondary GPU with CPU copy. * Weather applet: Point bbcukmet to new location API. * Wallpapers: Add milky way. View full changelog at https://kde.org/announcements/changelogs/plasma/5/5.22.0-5.22.1
* security/tailscale: Update to 1.8.7Mikael Urankar2021-06-162-6/+6
|
* security/gnupg1: fix build on powerpcPiotr Kubaj2021-06-161-0/+2
|
* security/fizz: Update 2021.06.07.00 -> 2021.06.14.00Yuri Victorovich2021-06-152-4/+4
|
* security/krb5-devel: Broken on FreeBSD-11, OpenSSL 1.0.2 not supportedCy Schubert2021-06-151-0/+2
| | | | | | | | security/krb5-devel fails to build on FreeBSD-11 due to: main.c:1593:5: error: implicit declaration of function 'OPENSSL_clear_free' is invalid in C99 [-Werror,-Wimplicit-function-declaration] OPENSSL_clear_free(buffer, buffer_len);
* security/py-fail2ban: Create required start dirFlorian Koczan2021-06-152-0/+10
| | | | | | | | | | | | | Reported at https://github.com/fail2ban/fail2ban/issues/2634 fail2ban should check and, if necessary create, the required directory. It is still up to the user to ensure that configuration in fail2ban's conf files and FreeBSD's /etc/rc.conf are in sync and that both, pidfile and socket reside in the same directory. PR: 244092 Approved by: maintainer MFH: 2021Q2
* security/vuxml: Document CVE-2021-29376 for irc/ircIIKevin Bowling2021-06-151-0/+27
| | | | | PR: 255492 Reported by: Andrew Gierth <andrew@tao11.riddles.org.uk>
* security/suricata: Fix plist issuesFranco Fichtner2021-06-152-1/+7
| | | | | | | | | | suricata-update is failing to find certain python modules when trying to update rules. PR: 255397 Reported by: Ian Dickens <ian@south-border.com> Approved by: maintainer MFH: 2021Q2
* security/suricata: Mark option PRELUDE as brokenFranco Fichtner2021-06-151-0/+2
| | | | | | | | | https://redmine.openinfosecfoundation.org/issues/4065 PR: 255370 Reported by: Ryan Lawrence <bug@ryan-l.com> Approved by: maintainer timeout MFH: 2021Q2
* security/softether: enable on armv7 and powerpcPiotr Kubaj2021-06-151-1/+1
|
* cleanup: Remove empty files.Mathieu Arnold2021-06-151-0/+0
| | | | | Those were all patches that were emptied, and which removal was forgotten.
* security/sshguard: Upgrade to 2.4.2Rodrigo Osorio2021-06-143-9/+9
| | | | | | | | | | | | | | | Major changes: * Recognize rejections from Postfix's postscreen daemon * The parser can now be changed using the PARSER and POST_PARSER options * Remove some false positive attack signatures for SSH and Cyrus * Adjust log verbosity of some log messages * The firewalld backend now uses firewall-cmd instead of iptables to flush block lists Full changelog : https://bitbucket.org/sshguard/sshguard/src/v2.4.2/CHANGELOG.rst PR: 256575 Reported by: <sirdice@gmail.com> Approved by: Kevin Zheng <kevinz5000@gmail.com> (maintainer)
* security/tor: Update 0.4.5.8 -> 0.4.6.5Yuri Victorovich2021-06-142-4/+4
| | | | | | | | Release contains major bugfixes and minor features. Changelog: https://gitweb.torproject.org/tor.git/tree/ChangeLog?h=tor-0.4.6.5 Reported by: upstream notification
* security/nss: update to 3.67Jan Beich2021-06-142-4/+4
| | | | | Changes: https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.67_release_notes Changes: https://hg.mozilla.org/projects/nss/shortlog/NSS_3_67_RTM
* security/py-google-auth: Update to 1.30.2Po-Chuan Hsieh2021-06-142-5/+6
| | | | | Changes: https://github.com/googleapis/google-auth-library-python/releases https://github.com/googleapis/google-auth-library-python/blob/master/CHANGELOG.md
* security/py-authlib: Update to 0.15.4Po-Chuan Hsieh2021-06-142-4/+4
| | | | Changes: https://github.com/lepture/authlib/releases
* security/snoopy: Convert REINPLACE_CMD to patch filesPo-Chuan Hsieh2021-06-1410-16/+124
|
* security/nettle: Update to 3.7.3Po-Chuan Hsieh2021-06-145-11/+10
| | | | | | - Update header of patch files Changes: https://git.lysator.liu.se/nettle/nettle/-/blob/release-3.7-fixes/NEWS
* security/py-tls-parser: Add py-tls-parser 1.2.2Po-Chuan Hsieh2021-06-144-0/+27
| | | | | | tls_parser is a small library to parse TLS records used by SSLyze. WWW: https://github.com/nabla-c0d3/tls_parser
* security/krb5-devel: update to the latest MIT/KRB5 github commitCy Schubert2021-06-142-5/+5
|
* securty/sudo: Update to 1.9.7p1Cy Schubert2021-06-143-29/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Major changes between sudo 1.9.7p1 and 1.9.7 * Fixed an SELinux sudoedit bug when the edited temporary file could not be opened. The sesh helper would still be run even when there are no temporary files available to install. * Fixed a compilation problem on FreeBSD. * The sudo_noexec.so file is now built as a module on all systems other than macOS. This makes it possible to use other libtool implementations such as slibtool. On macOS shared libraries and modules are not interchangeable and the version of libtool shipped with sudo must be used. * Fixed a few bugs in the getgrouplist() emulation on Solaris when reading from the local group file. * Fixed a bug in sudo_logsrvd that prevented periodic relay server connection retries from occurring in "store_first" mode. * Disabled the nss_search()-based getgrouplist() emulation on HP-UX due to a crash when the group source is set to "compat" in /etc/nsswitch.conf. This is probably due to a mismatch between include/compat/nss_dbdefs.h and what HP-UX uses internally. On HP-UX we now just cycle through groups the slow way using getgrent(). Bug #978. PR: 256561 Submitted by: cy Reported by: cy Approved by: garga (maintainer) MFH: 2020Q2
* security/wpa_supplicant-devel: Update to latest GH commitCy Schubert2021-06-142-6/+5
| | | | Update to the latest w1.fi commit, proxied through my GH account.
* */*: Sync hostapd* and wpa_supplicant* with base ce276fe26d92010776Cy Schubert2021-06-144-6/+37
| | | | | | | | | | | | Use IFM_IEEE80211_ADHOC for now on FreeBSD for IBSS operation. Base commit by adrian@ on Nov 26, 2015. This commit syncs ports with base. PR: 203086 Submitted by: avos MFH: 2020Q2
* security/wpa_supplicant-devel: Make use of fdatasync(2)Cy Schubert2021-06-141-0/+14
| | | | | FreeBSD has supported fdatasync(2) since FreeBSD 11.1. Prepare for future use when syncing to planned updates to base.
* security/hashcat: update to version 6.2.2Stefan Eßer2021-06-143-5/+151
|
* security/gpg-tui: update to version 0.5.0Stefan Eßer2021-06-142-13/+25
|
* security/vuxml: Document Apache httpd vulnsBernard Spil2021-06-141-0/+48
|
* security/softether-devel: fix distinfo corruptionKoichiro Iwao2021-06-141-3/+3
|
* security/1password-client: update to 1.10.2Larry Rosenman2021-06-142-7/+7
| | | | | | | | | | | | | Changelog: - 1.9.0: https://app-updates.agilebits.com/product_history/CLI#v1090002 - 1.9.1: https://app-updates.agilebits.com/product_history/CLI#v1090102 - 1.9.2: https://app-updates.agilebits.com/product_history/CLI#v1090201 - 1.10.0: https://app-updates.agilebits.com/product_history/CLI#v1100001 - 1.10.1: https://app-updates.agilebits.com/product_history/CLI#v1100101 - 1.10.2: https://app-updates.agilebits.com/product_history/CLI#v1100201 PR: 256585 Reported by: gogolok@gmail.com
* security/p11-kit: remove obsolete patch from distinfoRoman Bogorodskiy2021-06-131-2/+0
| | | | Reported by: sunpoet
* security/softether5: backport one more patch from upstreamKoichiro Iwao2021-06-132-3/+5
| | | | Obtained from: https://github.com/SoftEtherVPN/SoftEtherVPN/pull/1367
* x11/plasma5-plasma: Update KDE Plasma Desktop to 5.22Tobias C. Berner2021-06-134-10/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Plasma 5.22 is here, and it is more reliable and stable than ever. By cleaning up and refactoring code in the background, the Plasma desktop gives you greater responsiveness and performance, helping you become even more productive without hiccups or surprises. Enjoy a smoother experience with KDE’s Plasma 5.22 desktop. Plasma 5.22 has become more pleasurable to use through improvements to the design and greater smoothness and consistency in transparencies, blurs, icons, and animations. Moving things to accessible locations, offering hints and visual cues, and creating new settings allows you to customize your work environment to make it fit perfectly to your needs. Following the true KDE spirit, the push for a more stable and attractive desktop does not mean you have to renounce control over how you want it to look or behave. Plasma 5.22, as always, packs all the flexibility and tools for customization you have come to expect and love, and some more to boot. Meanwhile, the push to move Plasma in its entirety to Wayland (the display protocol of the future) continues in full swing. So much so that popular distros are starting to ship Plasma with Wayland by default. By using Wayland behind the scenes, Plasma is able to include features and bug fixes not possible to implement on X11, offering you a better experience and more stability. Full announcement and changelog: https://kde.org/announcements/plasma/5/5.22.0/
* */*: Zpdate KDE Gear to 21.04.2Tobias C. Berner2021-06-139-15/+47
| | | | | | | | | | Thursday, 10 June 2021 Over 120 individual programs plus dozens of programmer libraries and feature plugins are released simultaneously as part of KDE Gear. The full changelog can be found here: https://kde.org/announcements/changelogs/gear/21.04.2/
* security/p11-kit: update to 0.24.0Daniel Engberg2021-06-122-8/+4
| | | | PR: 256523
* security/snort: Update to 2.9.17.1Bill Meeks2021-06-112-4/+4
| | | | | | | | Cherry-pick 018217c from pfsense/FreeBSD-ports: Update Snort binary to latest 2.9.17.1 version from upstream. Approved by: dvl (maintainer) Sponsored by: Rubicon Communications, LLC ("Netgate")
* security/snort: Pull in patches from pfsense/FreeBSD-ports to improve armv6/v7Brad Davis2021-06-111-0/+32
| | | | | | | | - avoid unaligned access to packet memory - disable compiler optimization Approved by: dvl (maintainer) Sponsored by: Rubicon Communications, LLC ("Netgate")
* security/gpg-tui: updat eto version 0.4.1Stefan Eßer2021-06-112-4/+7
|
* security/vuxml: document CVE-2021-33564 for rubygem-dragonflyDmitry Marakasov2021-06-111-0/+35
|
* security/solana: Update 1.7.0 -> 1.7.1Yuri Victorovich2021-06-112-68/+58
| | | | Reported by: portscout
* security/py-flask-saml: Fix build with Python 3.9+Po-Chuan Hsieh2021-06-101-1/+2
| | | | | | | | - Change RUN_DEPENDS from py-pysaml2 to py-pysaml26 - Bump PORTREVISION for dependency change PR: 256232 Reported by: John W. O'Brien <john@saltant.com>
* security/py-certifi: Update to 2021.5.30Po-Chuan Hsieh2021-06-103-5/+5
| | | | | | - Update WWW Changes: https://github.com/certifi/python-certifi/commits/master
* security/p5-Yahoo-BBAuth: Cosmetic changePo-Chuan Hsieh2021-06-101-2/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-27 18:50:41 +0000