mykola/freebsd-ports
1
0
Fork 0
forked from Lainports/freebsd-ports
Code Pull requests Activity
189046 commits 1 branch 0 tags 6.7 GiB
Commit graph

10956 commits

Author SHA1 Message Date
Joe Marcus Clarke
f9ff108d37 Update pidgin to 2.3.1, and chase the shared lib version bump. See 
http://developer.pidgin.im/wiki/ChangeLog for the list of changes.
 2007-12-13 04:20:54 +00:00
Juergen Lock
4eb930d661 Document qemu -- Translation Block Local Denial of Service Vulnerability 2007-12-13 00:36:54 +00:00
Martin Wilke
3c52857ace - Update to 1.3.9 
PR:		118166
Submitted by:	Linh Pham <question+fbsdports@closedsrc.org> (maintainer)
 2007-12-12 18:42:01 +00:00
Remko Lodder
120e3e0e05 Document drupal -- SQL injection vulnerability 
Submitted by:	Nick Hilliard <nick at netability dot ie>
 2007-12-12 15:48:01 +00:00
Remko Lodder
55420bc1fe Document samba -- buffer overflow vulnerability. 2007-12-12 15:29:13 +00:00
Remko Lodder
a5079d699d Remove redundant "A" in the latest entry 2007-12-12 15:11:17 +00:00
Renato Botelho
b480474622 - Update to 20071212 
- Unrar code was removed from clamav source due to license problems, and a patch
  was created. I've added an UNRAR option, Off by default.
- Cosmetic changes
- Fix rc.d/clamav-milter to change socket permissions after startup. It fixes
  proclems when sendmail or postfix cannot connect to this socket. [1]

Submitted by:	Chris St Denis <chris@smartt.com>  by email
 2007-12-12 11:15:27 +00:00
Martin Wilke
cf6d47a08b - Fix previous commit 
- Sorting
   - more referencs
 2007-12-12 08:32:33 +00:00
Beech Rintoul
3bdbad04a9 - Missed a section - smbftpd 
Pointyhat to: Self
 2007-12-12 08:11:07 +00:00
Beech Rintoul
ef56eeec23 - Document smbftpd - format string vulnerability. 
Requested by:	linimon
Approved by:	linimon (mentor)
 2007-12-12 07:55:42 +00:00
Joe Marcus Clarke
7a835e63d0 Update to 2.20.2. 2007-12-12 04:44:20 +00:00
Andrew Pantyukhin
1f457abfd1 - Update to 0.5.3 2007-12-12 01:28:04 +00:00
Johan van Selst
09bd875e57 - Fix build on FreeBSD 8 
Reported by:	pointyhat via pav
 2007-12-11 21:12:17 +00:00
David Thiel
0f45e3e389 Update to 0.18. 2007-12-11 20:18:21 +00:00
Alex Dupre
16eeea61ed Update to 0.9.22 release. 2007-12-11 20:13:40 +00:00
David Thiel
f00f189c12 Update to 2.4.1. Also fix a rather silly uninstall message, reported 
by brd@.
 2007-12-11 20:10:42 +00:00
David Thiel
1694682b5c Update to 1.4. 2007-12-11 20:09:36 +00:00
Jeremy Messenger
98e28c9f66 Fix the build when net/lam installed in system. 
PR:		ports/117623 and ports/114871
Reported by:	Alexander Vasyanin <avasyanin@mail.ru>
		Koji Yokota <yokota@res.otaru-uc.ac.jp>
 2007-12-11 19:27:53 +00:00
Remko Lodder
31c963fff9 Document jetty - multiple vulnerabilities 
PR:		ports/118524
Submitted by:	Nick Barkas <snb at threerings dot net>
		with minor modifications by me
Approved by:	portmgr (secteam blanket)
 2007-12-10 07:00:05 +00:00
Norikatsu Shigemura
35a9136398 Update to 2007.12.07 with fix security issue. 
Security:	VuXML ID: 821afaa2-9e9a-11dc-a7e3-0016360406fa
		CVE-2007-6036
		http://aluigi.altervista.org/adv/live555x-adv.txt
Approved by:	portmgr (erwin)
 2007-12-09 15:47:20 +00:00
Remko Lodder
3e1df12f13 Document liveMedia -- DoS vulnerability 
Submitted by:	Rafae«l Careé <funm at videolan dot org>
		with modifications by me
Approved by:	portmgr (secteam blanket)
 2007-12-08 23:26:34 +00:00
Xin LI
992be0dfcf Update to reflect the squid issue has been assigned 
CVE-2007-6239.

Approved by:	portmgr (ports-security blanket)
 2007-12-07 10:25:05 +00:00
Martin Wilke
07ce45bc66 - Update gnu-finger entry 
* Fix cvename handling

Approved by:	portmgr (ports-security blanket)
 2007-12-05 07:49:40 +00:00
Mark Linimon
c1f6c82617 http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-1165: gnu-finger is old, 
creaky, and not for use in production environments.

Submitted by:	tabthorpe
Approved by:	portmgr (self)
 2007-12-05 07:26:59 +00:00
Xin LI
be144111fc Update to reflect an updated www/squid30 version which is no 
longer vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-12-05 00:28:14 +00:00
Pav Lucistnik
64a425ae65 - Chase rubygem-activerecord update 
Missed by:	miwi
Reported by:	pointyhat
Approved by:	portmgr (hat)
 2007-12-04 23:21:23 +00:00
Xin LI
f2f038bbc6 Update to reflect an updated www/squid version which is no 
longer vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-12-04 19:49:48 +00:00
Xin LI
c1f761805b Document squid denial of service vulnerability. This can be 
triggered from trusted squid client only.

Approved by:	portmgr (ports-security blanket)
 2007-12-04 19:20:45 +00:00
Cy Schubert
820eecfb41 PORTREVISION bump in support of pkg-plist revision 1.5. 
Approved by:	portsmgr (ewin)
 2007-12-03 17:25:05 +00:00
Cy Schubert
6873fbe267 Correct chmod location. 
Approved by:	portmgr (linimon)
 2007-12-02 07:02:37 +00:00
Xin LI
536ef4952b Remove the rsync entry for now. Better way of handling 
this is still under discussion, as the vendor patch does
not automatically resolve problem for customized
configuration that have chroot = no.

Requested by:	pav
Approved by:	portmgr (ports-security blanket)
 2007-12-02 00:15:27 +00:00
Xin LI
b3db6b6ffb Document rsync security bypass vulnerability. 
Approved by:	portmgr (ports-security blanket)
 2007-12-01 20:23:43 +00:00
Simon L. B. Nielsen
f199be9d03 Make the rubygem-rails -- JSON XSS vulnerability entry valid UTF-8 (at 
least the special chars doesn't look like UTF-8 as per emacs or
freshports).

Reported by:	freshports via dvl
Approved by:	portmgr (secteam blanket)
 2007-12-01 14:25:28 +00:00
Li-Wen Hsu
32ddc12372 - Update to 0.10 
- Unbreak on HEAD/7 (re-add a needed patch)

PR:		ports/118066
Submitted by:	Peter Johnson <johnson.peter AT gmail.com> (maintainer)
Reported by:	pointyhat (pav)
Approved by:	portmgr (linimon)
 2007-11-30 21:11:04 +00:00
Xin LI
79cc8b9cc2 Also cover rubygem-activesupport which is part of rails and is 
affected by CVE-2007-3227 as well.

Approved by:	portmgr (ports-security blanket)
 2007-11-28 00:26:56 +00:00
Xin LI
afa8c55f49 Document recent Ruby On Rails vulnerabilities. 
Approved by:	portmgr (ports-security blanket)
 2007-11-28 00:19:08 +00:00
Henrik Brix Andersen
b703078233 Document ikiwiki improper symlink verification vulnerability. 
Reviewed by:	remko
Approved by:	portmgr (erwin), erwin (mentor)
 2007-11-27 21:57:02 +00:00
Xin LI
636d490c9b Document firefox multiple unspecified memory corruption vulnerabilities. 
Approved by:	portmgr (ports-security blanket)
 2007-11-27 21:35:54 +00:00
Ade Lovett
ccd0fca5ec Unbreak pthread-related issues on 5.x 
Approved by:	portmgr
 2007-11-26 17:45:55 +00:00
Mark Linimon
022234ed2a Mark as broken on 5.x: fails to find pthread.h. 
Something in the infrastructure changed in the late July timeframe that
actually caused this problem.  The only major thing at that time was the
autoconf/libtool change, but I can't see how that could have caused this
failure mode.  It only happens on 5.x; 6.x and 7.x are fine.

Approved by:	portmgr (self)
 2007-11-25 01:24:13 +00:00
Mark Linimon
8c1c9234be Mark as broken: fails to install. 
Approved by:	portmgr (self)
 2007-11-24 23:14:35 +00:00
Mark Linimon
67f4ea5edd Add sfsrwcd: clients cannot make connections without it. 
Part of:	ports/116966
Submitted by:	maintainer, private email
Approved by:	portmgr (self)
 2007-11-23 01:22:51 +00:00
Martin Wilke
b170922337 - Document phpmyadmin -- Cross Site Scripting 
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket
 2007-11-21 18:58:28 +00:00
Martin Wilke
088cb609f7 - Update last Samba entry, 
* Add reference to the samba advisories
	* Fix the PORTVERSION/PORTEPOCH

Reviewed by:	simon
Approved by:	portmgr (ports-security blanket)
 2007-11-21 09:02:57 +00:00
Martin Wilke
b2589226b2 Document samba - multiple vulnerabilities 
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket)
 2007-11-21 07:40:49 +00:00
Mark Linimon
e8101ce2d5 Unmark broken; the missing Objective C header with gcc 4.2 has now been 
fixed.

PR:		ports/117967
Submitted by:	maintainer
Approved by:	portmgr (self)
 2007-11-20 02:21:27 +00:00
Xin LI
1efb5213dd postnuke 0.763 is not vulnerable to 35f2679f-52d7-11db-8f1a-000a48049292 
so mark it as not vulnerable.

Approved by:	portmgr (ports-security blanket)
 2007-11-18 00:47:43 +00:00
Xin LI
2e6ae504e7 Improve JDK version coverage. We should consider PORTEPOCH'ed version 
separately, so restruct the range.

Approved by:	portmgr (ports-security blanket)
 2007-11-17 07:07:41 +00:00
Xin LI
9f91025e2e Document PHP multiple vulnerabilities that are fixed by php 5.2.5. 
Approved by:	portmgr (ports-security blanket)
 2007-11-16 19:53:06 +00:00
Martin Wilke
e54c6135f9 - Fix c93e4d41-75c5-11dc-b903-0016179b2dd5 entry 
Submitted by:	glewis
Reviewed by:	remko
Approved by:	portmgr (ports-security blanket)
 2007-11-16 08:05:48 +00:00