- mark apache13 FORBIDDEN (CVE-2011-3368)

* There are no patches from upstream and already existing exploids in the wild. - ru-apache13 ports have long outstanding issues and are far behind last apache13 patches. with hat apache@ Feature safe: yes
svn path=/head/; revision=285803
2024-11-20 00:21:35 +00:00 · 2011-11-14 23:50:40 +00:00 · 2011-11-14 23:50:40 +00:00 · 8b71a26557 · 2021-03-31 03:12:20 +00:00
commit 8b71a26557
parent 407cec236f
7 changed files with 23 additions and 14 deletions
--- a/russian/apache13-modssl/Makefile
+++ b/russian/apache13-modssl/Makefile
@ -7,7 +7,7 @@

 PORTNAME=	apache+mod_ssl
 PORTVERSION=	${VERSION_APACHE}+${VERSION_RA}+${VERSION_MODSSL}
-PORTREVISION?=	1
+PORTREVISION?=	2
 CATEGORIES=	russian www security
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD} \
 		${MASTER_SITES_MODSSL:S/$/:modssl/} \
@ -50,6 +50,7 @@ CONFLICTS=	apache+ipv6-* \
 		publicfile-* \
 		ru-apache-*

+FORBIDDEN=	multiple CVE entries, last is CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2011-11-01

--- a/russian/apache13/Makefile
+++ b/russian/apache13/Makefile
@ -7,7 +7,7 @@

 PORTNAME=	apache
 PORTVERSION=	${APACHE_VERSION}+${RA_VERSION}
-PORTREVISION?=	1
+PORTREVISION?=	2
 CATEGORIES=	russian www
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD}
 DISTNAME=	${PORTNAME}_${APACHE_VERSION}
@ -19,6 +19,7 @@ PATCHFILES=	patches_${APACHE_VERSION}rusPL${RA_VERSION}.tar.gz
 MAINTAINER=	lev@FreeBSD.org
 COMMENT=	The extremely popular Apache http server.  Very fast, very clean

+FORBIDDEN=	multiple CVE entries, last is CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2011-11-01

@ -26,12 +27,12 @@ USE_PERL5=	yes

 # New ports feature: conflicts
 CONFLICTS=	apache+ipv6-* \
-                apache+mod_ssl-* \
-                apache+mod_ssl+ipv6-* \
-                apache+mod_ssl+modsnmp-* \
-                apache+mod_ssl+mod_snmp+ipv6-* \
-                apache+mod_ssl+mod_accel-* \
-                apache+mod_ssl+mod_snmp+mod_accel-* \
+		apache+mod_ssl-* \
+		apache+mod_ssl+ipv6-* \
+		apache+mod_ssl+modsnmp-* \
+		apache+mod_ssl+mod_snmp+ipv6-* \
+		apache+mod_ssl+mod_accel-* \
+		apache+mod_ssl+mod_snmp+mod_accel-* \
 		apache-worker-* \
 		apache-perchild-* \
 		apache-[0-9]* \
--- a/www/apache13+ipv6/Makefile
+++ b/www/apache13+ipv6/Makefile
@ -7,6 +7,7 @@

 PORTNAME=	apache
 PORTVERSION=	1.3.42
+PORTREVISION=	1
 CATEGORIES=	www ipv6
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD}
 PKGNAMESUFFIX=	+ipv6
@ -19,6 +20,7 @@ PATCH_DIST_STRIP=	-p0
 MAINTAINER=	apache@FreeBSD.org
 COMMENT=	The extremely popular Apache http server. Very fast, very clean

+FORBIDDEN=	CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2011-11-01

--- a/www/apache13-modssl+ipv6/Makefile
+++ b/www/apache13-modssl+ipv6/Makefile
@ -9,6 +9,7 @@ CATEGORIES=	www security ipv6
 MAINTAINER=	dinoex@FreeBSD.org
 COMMENT=	The Apache 1.3 webserver with SSL/TLS and IPv6 functionality

+FORBIDDEN=	CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2012-01-01

--- a/www/apache13-modssl/Makefile
+++ b/www/apache13-modssl/Makefile
@ -7,7 +7,7 @@

 PORTNAME=	apache+mod_ssl
 PORTVERSION=	${VERSION_APACHE}+${VERSION_MODSSL}
-PORTREVISION?=	2
+PORTREVISION?=	3
 CATEGORIES?=	www security
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD} \
 		${MASTER_SITES_MODSSL:S/$/:mod_ssl/} \
@ -33,6 +33,7 @@ COMMENT?=	The Apache 1.3 webserver with SSL/TLS functionality
 LIB_DEPENDS=	mm.14:${PORTSDIR}/devel/mm
 PATCH_DEPENDS=	${BUILD_DEPENDS}

+FORBIDDEN=	CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2012-01-01

--- a/www/apache13-ssl/Makefile
+++ b/www/apache13-ssl/Makefile
@ -9,7 +9,7 @@

 PORTNAME=	apache+ssl
 PORTVERSION=	${APACHE_VERSION}.${APACHE_SSL_VERSION}
-PORTREVISION=	1
+PORTREVISION=	2
 CATEGORIES=	www security
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD} \
 		${MASTER_SITES_APACHE_SSL:S/$/:ssl/}
@ -21,6 +21,7 @@ EXTRACT_ONLY=	${DISTNAME}${EXTRACT_SUFX}
 MAINTAINER=	apache@FreeBSD.org
 COMMENT=	Apache secure webserver integrating OpenSSL

+FORBIDDEN=	CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2011-11-01

--- a/www/apache13/Makefile
+++ b/www/apache13/Makefile
@ -7,19 +7,20 @@

 PORTNAME=	apache
 PORTVERSION=	1.3.42
+PORTREVISION=	1
 CATEGORIES=	www
 MASTER_SITES=	${MASTER_SITE_APACHE_HTTPD}
 DISTNAME=	apache_${PORTVERSION}

+MAINTAINER=	apache@FreeBSD.org
+COMMENT=	The extremely popular Apache http server. Very fast, very clean
+
 #PATCH_SITES=	${MASTER_SITE_APACHE_HTTPD}
 #PATCH_SITE_SUBDIR=	patches/apply_to_1.3.41/
 #PATCHFILES=
 #PATCH_DIST_ARGS= -d ${WRKSRC}/src --forward --quiet -E ${PATCH_DIST_STRIP}

-MAINTAINER=	apache@FreeBSD.org
-COMMENT=	The extremely popular Apache http server. Very fast, very clean
-
-MAKE_JOBS_SAFE=  yes
+MAKE_JOBS_SAFE=	yes

 CONFLICTS=	apache+mod_ssl-1.* apache+mod_ssl+ipv6-1.* apache+mod_ssl+modsnmp-1.* \
 		apache+mod_ssl+mod_snmp+ipv6-1.* apache+mod_ssl+mod_accel-1.* \
@ -28,6 +29,7 @@ CONFLICTS=	apache+mod_ssl-1.* apache+mod_ssl+ipv6-1.* apache+mod_ssl+modsnmp-1.*
 		caudium-devel-1.* caudium10-1.* caudium12-1.* \
 		ru-apache+mod_ssl-1.* ru-apache-1.*

+FORBIDDEN=	CVE-2011-3368, no patches against this issue
 DEPRECATED=	apache13 is deprecated, migrate to 2.2.x+ now
 EXPIRATION_DATE=	2012-01-01