mirror/freebsd-ports
1
0
Fork 0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-29 05:38:00 +00:00
Code Issues Releases Activity
165,368 Commits 45 Branches 100 Tags 3.4 GiB
654f115b69
Commit Graph

9658 Commits

Author SHA1 Message Date
Martin Wilke
2e35f6cc6f - Update to 2.2.9 
PR:		ports/105176
Submitted by:	Udo Schweigert <udo.schweigert@siemens.com> (maintainer)
Sponsored by:   FreeBSD Bug-a-thon #2
 2006-11-05 20:38:05 +00:00
Andrew Pantyukhin
33dbf061ea - Update to 2.04 2006-11-05 19:25:41 +00:00
Alejandro Pulver
46dc83529f - Update to version 2.4.5. 
PR:		ports/104730
Submitted by:	Nick Rogness <nick@rogness.net> (maintainer)
 2006-11-05 18:14:06 +00:00
Johan van Selst
5824fd99d6 - Update to 0.4.9.1 2006-11-05 17:31:27 +00:00
Rong-En Fan
b6f2ecac2d - Update to 2.3.0 
PR:		ports/105159
Submitted by:	David Thiel (maintainer)
 2006-11-05 10:11:08 +00:00
Martin Wilke
81c6dbf400 - Update to 0.11.0 
PR:		ports/105018
Submitted by:	chinsan@
Sponsored by:   FreeBSD Bug-a-thon #2
 2006-11-05 08:33:57 +00:00
Sam Lawrance
34f42aea21 Update master site and add WWW. 
PR:		ports/104257
Submitted by:	Josh Paetzel <josh@tcbug.org>
 2006-11-05 07:59:34 +00:00
Sam Lawrance
734bfa5bc4 Update master site and WWW. 
PR:		ports/104256
Submitted by:	Josh Paetzel <josh@tcbug.org>
 2006-11-05 07:58:38 +00:00
Sam Lawrance
e42be0b94a Update master site and WWW. 
PR:		ports/104214
Submitted by:	Josh Paetzel <josh@tcbug.org>
 2006-11-05 07:54:33 +00:00
Alejandro Pulver
44b1e7429c - Add PKGNAMESUFFIX to avoid duplicate LATEST_LINK. 2006-11-05 06:04:20 +00:00
Stanislav Sedov
d3c05bae82 - Document recent vulnerability in the ruby CGI library. 
Reviewed by:	simon
 2006-11-04 21:09:18 +00:00
Tilman Keskinoz
5051597370 Update to 0.4 
Grab maintainership
 2006-11-04 18:29:45 +00:00
Stefan Eßer
66a15c42f8 Fix a syntactically incorrect variable declaration in the middle of 
a function. Seems that only the compiler in 4-stable complains about
this violation of the C standard ...

Reported by:	pointyhat via kris
 2006-11-03 21:34:23 +00:00
Cheng-Lung Sung
17054745bf - Update to 0.6 
PR:		ports/104770
Submitted by:	Joe Horn <joehorn_AT_leobbs dot net>
Approved by:	maintainer (Jui-Nan Lin)
 2006-11-03 16:01:32 +00:00
James E. Housley
66f86ccc3a Fix update_dat so it won't repeatedly fetch the same DAT file 
PR:	105114
 2006-11-03 14:25:24 +00:00
Clement Laforet
47af927410 - Update to 2.3.2 2006-11-03 13:26:32 +00:00
Clement Laforet
68796a33f7 - Update to 0.48.1 2006-11-03 11:15:46 +00:00
Dirk Meyer
9e3d5c3229 - pgp < 3.0 and pgpin does not support OpenPGP format 
no user given symetric key encryption
Submitted by:	dinoex
 2006-11-03 05:27:01 +00:00
Simon L. B. Nielsen
7f62fb4e28 The latest couple of firefox vulnerabilities should be fixed in the 
2.0 release, so mark 2.0 as fixed.

Prodded by:	ahze
 2006-11-02 06:33:00 +00:00
Tom McLaughlin
e40789297d Fix fetch. 2006-11-02 02:12:16 +00:00
Andrew Pantyukhin
934215486d - Update to 20061101 snapshot 2006-11-01 22:16:41 +00:00
Andrew Pantyukhin
be2bd16f64 - Update to 2.03 2006-11-01 14:40:52 +00:00
Alex Dupre
c8ee87de03 Update to 0.9.10 release. 2006-11-01 13:32:38 +00:00
Lev A. Serebryakov
ce9664cb9a ru-apache and ru-apacvhe+mod_ssl were fixed. 2006-11-01 13:15:16 +00:00
Pav Lucistnik
6d4c843eda - Update to 2.7 
PR:		ports/104908
Submitted by:	Yonatan <onatan@gmail.com> (maintainer)
 2006-11-01 08:50:31 +00:00
Cheng-Lung Sung
e295244c59 - Update to 1.2.0 
PR:		ports/104249
Submitted by:	Jo Rhett<jrhett_AT_netconsonance dot com>
Approved by:	maintainer (Petr Rehor)
 2006-11-01 01:44:46 +00:00
Pav Lucistnik
1b7bd576ea - Fix COMMENT 
PR:		ports/104987, ports/104991
Submitted by:	Paul Schmehl <pauls@utdallas.edu> (maintainer)
 2006-10-31 22:08:40 +00:00
Renato Botelho
57373590dc - Update to 2.6.8 2006-10-31 20:53:47 +00:00
Shaun Amott
569933e6cd Replace ONLY_FOR_ARCHS with IA32_BINARY_PORT. 
PR:		ports/104223
Submitted by:	Mykola Dzham <freebsd@levsha.org.ua>
Approved by:	Alexander Demin <support@spectrum.ru> (maintainer)
 2006-10-31 18:36:29 +00:00
Martin Wilke
81434d83ba - Update to 1.4.0 
- Pass maintainership to submitter

PR:		ports/104729
Submitted by:	chinsan@
 2006-10-31 13:33:22 +00:00
Rong-En Fan
818860b02a - Update to 1.1 
PR:		ports/104658
Submitted by:	Michael Ranner <mranner at inode.at> (maintainer)
 2006-10-31 10:38:55 +00:00
Cheng-Lung Sung
fec0601be0 - Update to 5.44 
PR:		ports/104415
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
Approved by:	maintainer (gabor)
 2006-10-31 09:21:03 +00:00
Cheng-Lung Sung
42e5c36c65 - Update to 0.9 
- Reset maintainership to ports@FreeBSD.org

PR:		ports/104334
Submitted by:	Gea-Suan Lin <gslin@gslin.org>
 2006-10-31 09:00:08 +00:00
Cheng-Lung Sung
ac63a10463 - Update to 5.44 
PR:		ports/104414
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
 2006-10-31 08:18:45 +00:00
Cheng-Lung Sung
f4a6dfbc21 - Update to 2.22 
PR:		ports/104957
Submitted by:	Gea-Suan Lin <gslin_AT_gslin dot org>
 2006-10-31 08:13:58 +00:00
Martin Wilke
fca28af774 - Update to 1.3 
PR:		ports/103815
Submitted by:	David Thiel <lx@redundancy.redundancy.org> (maintainer)
 2006-10-31 08:06:26 +00:00
Cheng-Lung Sung
2b89289466 - Update to 0.1.2.3 
PR:		ports/104932
Submitted by:	maintainer (Peter Thoenen)
 2006-10-31 06:33:00 +00:00
Alejandro Pulver
b529c1e197 Sguil is an open source tool to implement Network 
Security Monitoring (NSM).  NSM is the collection,
analysis, and escalation of indications and warnings
to detect and respond to intrusions.  NSM tools are
used more for network audit and specialized
applications than traditional alert-centric "intrusion
detection" systems.

Want to learn more about Network Security Monitoring
(NSM)? Then check out Richard Bejtlich's recently
released book, The Tao of Network Security Monitoring:
Beyond Intrusion Detection. An excerpt reads:

"Network security monitoring (NSM) equips security
staff to deal with the inevitable consequences of too
few resources and too many responsibilities. NSM collects
the data needed to generate better assessment, detection,
and response processes--resulting in decreased impact from
unauthorized activities."

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:		ports/104227
Submitted by:	Paul Schmehl <pauls at utdallas.edu>
 2006-10-31 02:43:25 +00:00
Alejandro Pulver
0e818cfa86 - Make fetchable. 
- Remove BROKEN, DEPRECATED and EXPIRATION_DATE.

PR:		ports/104593
Submitted by:	Alexander Logvinov <ports@logvinov.com>
 2006-10-31 02:22:04 +00:00
Alejandro Pulver
1be969103d - Reformat pkg-descr, add WWW. 
- Take maintainership.

PR:		ports/104235
Submitted by:	Thomas Abthorpe <thomas@goodking.ca>
 2006-10-31 02:15:29 +00:00
Alejandro Pulver
1762f5f1ad - Reformat pkg-descr. 
- Take maintainership.

PR:		ports/104233
Submitted by:	Thomas Abthorpe <thomas@goodking.ca>
 2006-10-31 02:11:25 +00:00
James E. Housley
3065300a3e * Upgrade to version 5.10 
* When package building, don't automatically fetch the newest DAT
 2006-10-31 00:22:39 +00:00
Renato Botelho
16fc551b11 Update to 20061029 to fix vulnerability 
Approved by:	portmgr (erwin)
Security:	http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
 2006-10-30 13:52:36 +00:00
Vasil Dimov
4d81bd32df Add a <modified> tag with the current date to reflect my previous change. 
I knew I should ask someone before committing, however trivial was the change.

Spotted by:	remko
Approved by:	portmgr (implicit)
 2006-10-30 07:34:06 +00:00
Vasil Dimov
c359213b8a Fix typo: "Dmitri Lenev reports reports a privilege ..." 
Approved by:	portmgr (implicit)
 2006-10-30 07:04:38 +00:00
Simon L. B. Nielsen
11ce17521a Document screen -- combined UTF-8 characters vulnerability. 
Approved by:	portmgr (secteam blanket)
 2006-10-29 19:07:08 +00:00
Simon L. B. Nielsen
04ee71b7ac Document two MySQL privilege escalations. 
PR:		ports/104890
Submitted by:	Henrik Brix Andersen <henrik@brixandersen.dk>
Approved by:	portmgr (secteam blanket)
 2006-10-29 13:50:01 +00:00
Martin Wilke
100c045e82 - Add entry for www/serendipity and www/serendipity-devel 
Reviewed by:	markus@
Approved by:	portmgr (implicit VuXML), secteam (Remko (not reviewed yet))
 2006-10-23 13:15:30 +00:00
Markus Brueffer
925b0719f1 Document an integer overflow vulnerability in Qt and kdelibs, based on an 
entry by sat

Approved by:	portmgr (erwin)
 2006-10-23 11:15:11 +00:00
Simon L. B. Nielsen
7af8fd8980 Add reference, which I missed the first time around, from Opera 
Software to opera -- URL parsing heap overflow vulnerability entry,

Approved by:	portmgr (secteam blanket)
 2006-10-20 22:59:39 +00:00
Simon L. B. Nielsen
a889bdb46b Document opera -- URL parsing heap overflow vulnerability. 
Approved by:	portmgr (secteam blanket)
 2006-10-20 22:56:04 +00:00
Simon L. B. Nielsen
8c9c1b0930 Minor correction to last commit; the NVIDIA driver version 1.0.8762 
was also affected, so mark it as such.

Approved by:		portmgr (secteam blanket)
 2006-10-20 22:45:27 +00:00
Simon L. B. Nielsen
83d2fc7202 Update entry for nvidia-driver -- arbitrary root code execution 
vulnerability:

- Add new info about vulnerable versions from NVIDIA.
- Add workaround.
- Add more references.
- Remove suggestion to move to "nv" driver now that we have a simpler
  workaround.

Approved by:		portmgr (secteam blanket)
Parts submitted by:	mnag
 2006-10-20 22:32:30 +00:00
Marcus Alves Grando
e4f21a09c1 - Mark as forbidden 
Approved by:	portmgr (secteam blanket)
Security:	http://www.vuxml.org/freebsd/8012a79d-5d21-11db-bb8d-00123ffe8333.html
 2006-10-20 14:53:54 +00:00
Remko Lodder
7ef185e45c Document asterisk -- remote heap overwrite vulnerability 
Approved by:		portmgr (VuXML blanket)
Submitted by:		Thomas Sandford
Facilitated by:		Snow B.V.
 2006-10-20 08:13:06 +00:00
Remko Lodder
0546f23a3c Some style changes to the plone entry. 
Previous commit was also reviewed by myself.

Approved by:		portmgr (Blanket VuXML)
Facilitated by:		Snow B.V.
 2006-10-20 07:44:01 +00:00
Ion-Mihai Tetcu
2a9d3078c5 Fix plist. 
PR:		ports/104405
Submitted by:	Fabian Keil<fk@fabiankeil.de>
Approved by:	portmgr (erwin), Peter Thoenen (maintainer)
 2006-10-20 07:20:21 +00:00
Martin Wilke
2a7ec3a7c1 - Add a entry for www/plone 
Approved by:	portmgr (erwin)
 2006-10-19 22:47:49 +00:00
Shaun Amott
e54712d17f Document: 
drupal -- HTML attribute injection
  drupal -- cross site request forgeries
  drupal -- multiple XSS vulnerabilities

Submitted by:	brooks
Reviewed by:	remko
Approved by:	portmgr (erwin)
 2006-10-19 13:48:59 +00:00
Shaun Amott
cce7554a1c Document "ingo -- local arbitrary shell command execution" 
Submitted by:	thierry
Reviewed by:	remko
Approved by:	portmgr (erwin)
 2006-10-19 13:19:44 +00:00
Simon L. B. Nielsen
a0a4a2fb88 Update php -- _ecalloc Integer Overflow Vulnerability entry with 
details from Steffan Essers advisory about the implications of this
issue.  The advisory was not public when this issue was initially
fixed.

Approved by:	portmgr (secteam blanket)
 2006-10-17 20:45:55 +00:00
Marcus Alves Grando
3d5fa7b997 - Update HPN patch. Patch are renamed, the only content differences are two rows now enclosed in an "else" block. 
Submitted by:	ale
Approved by:	portmgr (erwin)
 2006-10-17 13:27:18 +00:00
Erwin Lansing
a2eb0bd472 Mark multimedia/win32-codecs as not-vulnerable after the quicktime codecs 
were optional. The quicktime codecs are still vulnerable though, but we
rely on the conditional FORBIDDEN statement in the ports Makefile for this.

Approved by:	portmgr (self), secteam (simon)
 2006-10-17 09:20:59 +00:00
Simon L. B. Nielsen
346b79b908 Document "nvidia-driver -- arbitrary root code execution vulnerability". 
Note that I haven't actually had time to make a test system to reproduce
this on FreeBSD, but due to the nature of this issue and that there is a
PoC exploit in the advisory, I'm adding this entry due to "better safe
than sorry"...

Approved by:	portmgr (secteam blanket)
 2006-10-16 21:54:38 +00:00
Andrew Pantyukhin
a02c9e0237 - Mark php open_basedir fixed 
Reviewed by:	secteam (simon)
Approved by:	portmgr (secteam blanket)
 2006-10-16 17:44:32 +00:00
Marcus Alves Grando
26c48dc2d6 - clamav -- CHM unpacker and PE rebuilding vulnerabilities 
Approved by:	portmgr (mnag with secteam hat)
 2006-10-16 14:32:54 +00:00
Marcus Alves Grando
ec97343ab6 - Update to 0.88.5 
- portlint(1)

Approved by:	portmgr (mnag with secteam hat), garga (maintainer)
Security:	http://lurker.clamav.net/message/20061016.015114.dc6a8930.en.html,
		http://secunia.com/advisories/22370/
 2006-10-16 14:18:52 +00:00
Martin Wilke
72f4c4414b - Add missing depends 
PR:             ports/104362
Submitted by:   Joshua Abraham<jabra@ccs.neu.edu> (maintainer)
Approved by:    portmgr (clement)
 2006-10-16 12:13:03 +00:00
Andrew Pantyukhin
3fc4ea54a0 - Add some references 
Reviewed by:	secteam (simon)
Approved by:	portmgr (secteam blanket)
 2006-10-15 19:43:00 +00:00
Andrew Pantyukhin
4658ca81a7 - Document temporary file symlink privilege escalation in tkdiff 
- Correct Javier's name spelling in an old advisory

Reviewed by:	secteam (simon)
Approved by:	portmgr (secteam blanket)
 2006-10-15 16:04:57 +00:00
Andrew Pantyukhin
a838b78a3b - Document multiple remote file inclusion vulnerabilities in vtiger 
Reviewed by:	secteam (simon)
Approved by:	portmgr (secteam blanket)
 2006-10-15 11:31:33 +00:00
Andrew Pantyukhin
2e6d88f123 - Document heap overflow in the KML engine in google-earth 
Reviewed by:	secteam (simon)
Approved by:	portmgr (implicit)
 2006-10-14 12:32:43 +00:00
Jeremy Messenger
70cd04b258 Simple commandline wrapper around gpg that makes it store its passphrase 
in gnome-keyring.  It is a direct competitor to (the unmaintained)
quintuple-agent.

Submitted by:	ahze
Approved by:	portmgr (kris and marcus)
 2006-10-14 09:10:57 +00:00
Joe Marcus Clarke
29747f458a Chase the GNOME X11BASE to LOCALBASE move, and fix the build with the 
new freetype2 where needed.

Submitted by:	mezz, ahze, pav, and many others
Approved by:	portmgr (implicit, kris)
 2006-10-14 08:54:54 +00:00
Joe Marcus Clarke
f1bb12de8e Presenting GNOME 2.16.1 for FreeBSD. This release represents a massive 
amount of work by the FreeBSD GNOME Team and our testers.

On top of the usual GNOME update, we have taken this opportunity to move
GNOME from X11BASE to LOCALBASE.  This means roughly 600 ports NOT part of
the GNOME Desktop also need to be changed.  The bulk of the move was carried
out by ahze, mezz, and pav, but it would not have been possible without
cooperation from the FreeBSD KDE team who worked with us to make sure
GNOME and KDE can still coexist happily.  We would also like to send a
shout out to kris and pointyhat for putting up with multiple test runs
until we got something that was solid.

Back to GNOME 2.16.  This release brings a huge amount of new functionality
to FreeBSD.  The standard release notes can be read at
http://www.gnome.org/start/2.16/ .  But on top of what you will read there,
jylefort and marcus have completed work on a port of HAL to FreeBSD.  This
will allow FreeBSD to take advantage of closer hardware interaction such
as auto-mounting CD-ROMs, USB drives, and music players; auto-playing
audio CDs; and managing laptop power consumption.

But where would this all be without our loyal testers and contributors?
Therefore, the FreeBSD GNOME team would like to thank the following users:

Phillip Neumann <pneumann@gmail.com>
tmclaugh
mux
Yuri Pankov <yuri.pankov@gmail.com>
chinsan
Thomas <freebsdlists@bsdunix.ch>
Brian Gruber <knightbg@yahoo.com>
Franz Klammer <klammer@webonaut.com>
Dominique Goncalves <dominique.goncalves@gmail.com>
Pascal Hofstee <caelian@gmail.com>
Yasuda Keisuke <kysd@po.harenet.ne.jp>
backyard <backyard1454-bsd@yahoo.com>
Andris Raugulis <endrju@null.lv> <endrju@null.lv>
Eric L. Chen <d9364104@mail.nchu.edu.tw>
Pawel Worach <pawel.worach@gmail.com>
QuiRK on #freebsd-gnome
Shane Bell <decept0@gmail.com>
luigi
sajd on #freebsd-gnome
sat
Chris Coleman <chrisc@vmunix.com>
kaeru on #freebsd-gnome
crsd_ via irc.freenode.org/#FreeBSD-GNOME
Joel Diaz <joeldiaz@mac.com>

Enjoy!

Approved by:	portmgr (implicit, kris)
 2006-10-14 08:35:50 +00:00
Kris Kennaway
1db4e32391 Revert previous commit; it still conflicts but CONFLICTS checking was 
broken at the time.

Approved by:	portmgr (self)
 2006-10-12 03:35:56 +00:00
Shaun Amott
8227c1bcf2 Update distinfo to reflect re-rolled distfile, and unbreak the port. The 
differences between the old and new files were entirely cosmetic. The
full diff is available in the Audit-Trail of the PR below.

PR:		ports/104307
Submitted by:	Frank J. Laszlo <laszlof@vonostingroup.com>
Approved by:	portmgr (marcus)
 2006-10-12 00:36:00 +00:00
Erwin Lansing
0f30452066 devel/cscope was fixed in version 15.6 so use lt instead of le. 
Submitted by:	joerg
Pointyhat to:	erwin
Approved by:	portmgr (self)
 2006-10-11 08:32:04 +00:00
Andrew Pantyukhin
bcb02aab56 - Update to 20061009 fingerprints 2006-10-09 20:36:50 +00:00
Boris Samorodov
800e4e5443 Sguil (pronounced "sgweel") is a graphical interface to snort 
(www.snort.org), an open source intrusion detection system.
The actual interface and GUI server are written in tcl/tk
(www.tcl.tk). Sguil also relies on other open source software
in order to function properly.

The sensor list includes security/barnyard, security/snort,
security/sancp, tcpdump (a part of the OS) and devel/tcltls as
well as lang/tcl84 and lang/tclX.  Care has been taken to ensure
that everything you need to build a working sguil operation is
in the FreeBSD ports system or part of the OS already.

Sguil currently functions as an analysis interface and has
no snort sensor or rule management capabilities.

WWW: http://sguil.sourceforge.net/index.php
pauls@utdallas.edu

PR:		ports/95018
Submitted by:	Paul Schmehl <pauls at utdallas.edu>
 2006-10-09 19:04:38 +00:00
Cheng-Lung Sung
139f582ed9 - Update to 0.1.2.2 
PR:		ports/104211
Submitted by:	maintainer (Peter Thoenen)
 2006-10-09 16:10:58 +00:00
Simon L. B. Nielsen
c89423ae3d Mark zgv as fixed wrt. "zgv, xzgv -- heap overflow vulnerability". 2006-10-09 15:45:02 +00:00
Sergei Kolobov
b6c24fd127 - Add dependency on libtool; we cannot simply add USE_AUTOTOOLS 
as that implies GNU_CONFIGURE which this port does NOT use
- Bump PORTREVISION

Noticed by:	pointyhat via kris
 2006-10-09 15:41:47 +00:00
Martin Wilke
8257f2d5d1 - Update to 0.9.6.1 
PR:		ports/104202
Submitted by:	Robin Gruyters <r.gruyters@yirdis.nl> (maintainer)
 2006-10-09 13:38:02 +00:00
Cheng-Lung Sung
03b4a853af - Update to 0.9.10 
libpreludedb Changelog:
- Fix PostgreSQL schema update version 5.
- Only export symbol starting with preludedb_.
- Verbose error reporting in case of libpreludedb initialization failure.

PR:		ports/104201
Submitted by:	maintainer (Robin Gruyters)
 2006-10-09 09:51:12 +00:00
Andrew Pantyukhin
42ab9bb812 - Require gcc 3.4+ 
Reported by:	pointyhat via kris
 2006-10-09 08:22:19 +00:00
Peter Pentchev
ef0ecb1c36 Fix the problem with unattended deinstallation by not even attempting 
to remove the stunnel user and group at all - just kill the package
deinstall script.

PR:		104028
Reported by:	jan grant <jan.grant@bristol.ac.uk>,
		Stephen Hurd <shurd@sasktel.net> (in private mail a while ago),
		and, I think, many others
 2006-10-08 18:06:54 +00:00
Andrew Pantyukhin
9bfb513347 - Add php-suhosin to edabe438-542f-11db-a5ae-00508d6a62df 
as per original advisory

Discussed with:	ale
 2006-10-08 16:41:50 +00:00
Pav Lucistnik
13c2c88c2e - Remove symlinks created by mtree target from plists 
Pointy hats to:	rafan 6x, droso 2x, pav 2x, alepulve, clsung, glewis, itetcu,
		miwi
 2006-10-08 14:59:46 +00:00
Roman Bogorodskiy
32e98c797b - Update to 1.5.2 
- Add WITHOUT_CXX knob to disable C++ wrapper library
 2006-10-08 13:46:32 +00:00
Alex Dupre
47e5fd8392 Update to 0.9.7 release. 2006-10-08 13:08:03 +00:00
Andrew Pantyukhin
589da59b45 - Fix python package naming in 6afa87d3-764b-11d9-b0e7-0000e249a0a2 
Reported by:	simon
 2006-10-08 07:44:15 +00:00
Simon L. B. Nielsen
e391f0156f Update versions affected by python -- buffer overrun in repr() for 
unicode strings:

- Python 2.5.c2 was already fixed (verified in upstream SVN).
- Python 2.4 port just got the fix.
- I can't find any trace of python23, python22, and python-devel ever
  having existed as package names, so I removed them.
- Add python+ipv6.  I don't really know if it contained the
  problematic unicode code, but better safe than sorry.
 2006-10-08 07:17:50 +00:00
Simon L. B. Nielsen
d093092a60 Fix whitespace in openssh -- multiple vulnerabilities entry, which I 
originally missed.
 2006-10-08 06:51:43 +00:00
Sam Lawrance
4d81089385 Remove obsolete CONFLICTS line for gnomesu. 2006-10-08 06:09:29 +00:00
Tom McLaughlin
4fc075eb0f Update vuxml id 5a39a22e-5478-11db-8f1a-000a48049292 
- Fixed in version 1.1.13.8.1
 2006-10-07 23:01:05 +00:00
Tom McLaughlin
7da7bf385a Remove mono-devel and mono-svn from 5a39a22e-5478-11db-8f1a-000a48049292 
- These are packages from BSD#'s (my project) development repo.  Don't even
  give the impression that FreeBSD is supporting security updates for an
  outside project.
 2006-10-07 22:16:40 +00:00
Marcus Alves Grando
a99bc1ea54 - Add OPTION to enable Kerberos/GSSAPI patch [1] 
- Add OPTION to enable LPK patch (ldap stored public key) [2]

PR:		86384 [1], 103399 [2]
Submitted by:	Garrett Wollman <wollman___khavrinen.csail.mit.edu> [1], Dmitriy Kirhlarov <dkirhlarov___oilspace.com> [2]
 2006-10-07 21:06:55 +00:00
Shaun Amott
8accda0533 Add a note to pkg-message warning users about potential problems 
relating to default syslogd(8) behavior.

PR:		ports/102605
Submitted by:	Jeremie Le Hen <jeremie@le-hen.org>
Approved by:	maintainer timeout (5 weeks)
 2006-10-07 17:03:40 +00:00
Tim Bishop
c2bc3ca8d7 - Update to 20061007. 
- Tidy up pkg-message.
 2006-10-07 16:54:55 +00:00
Andrew Pantyukhin
5566ea1e8c - Remove an empty url (a typo) 2006-10-07 15:22:55 +00:00
Andrew Pantyukhin
c16b6f9b84 - Update to 20061007 fingerprints 2006-10-07 14:58:44 +00:00
Alex Dupre
04a6cc635f Don't depend anymore on openssl from ports. 
(Waiting for a DSO check in bsd.openssl.mk)
 2006-10-07 12:50:47 +00:00
Rong-En Fan
243c063a6a Add p5-openxpki-deployment 0.9.543, perl based enterprise class 
trustcenter software for PKI.

PR:		ports/103949
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:32:19 +00:00
Rong-En Fan
0ffdd411b1 Add p5-openxpki-i18n 0.9.538, perl based trustcenter software for PKI: 
i18n tools.

PR:		ports/103948
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:31:50 +00:00
Rong-En Fan
ab27869dd7 Add p5-openxpki-client-soap-lite 0.9.421, SOAP-Lite toolkit for 
openxpki.

PR:		ports/103947
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:31:24 +00:00
Rong-En Fan
e240e8975b Add p5-openxpki-client-scep 0.9.421, client for SCEP requests to 
openxpki server.

PR:		ports/103946
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:30:55 +00:00
Rong-En Fan
2259b7c0e8 Add p5-openxpki-client-html-mason 0.9.546, web interface for local 
openxpki daemon.

PR:		ports/103945
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:30:21 +00:00
Rong-En Fan
9f6ee59f79 Add p5-openxpki-client-cli 0.9.459, command line interface for local 
openxpki daemon.

PR:		ports/103944
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:29:54 +00:00
Rong-En Fan
84542c0a32 Add p5-openxpki-client 0.9.450, perl based trustcenter software for PKI: 
base class for actual clients.

PR:		ports/103943
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru>
 2006-10-07 12:29:03 +00:00
Rong-En Fan
8d3dc989a5 - Update to 0.548 
- Split openxpki port into 8 separate ports. This reduces maintainer's
  loading and make our automatic porting tools happier. Users need
  not to install all of the 8 ports to make OpenXPKI work. He/She just
  install what he/she needs.  Detail reasons can be found in PR.

PR:		ports/103937
Submitted by:	Sergei Vyshenski <svysh at cryptocom.ru> (maintainer)
 2006-10-07 12:27:25 +00:00
Hajimu UMEMOTO
098bd5bc3a Change the MASTER_SITES entries from 
ftp://ftp.hanse.de/sites/transit/mirror/
to
	http://www.transit.hanse.de/mirror/

Requested by:	Stefan Bethke <stb__at__lassitu.de>
 2006-10-07 10:26:49 +00:00
Andrew Pantyukhin
8ce59c4988 - Document User-Agent XSS Vulnerability in torrentflux 2006-10-07 09:24:29 +00:00
Andrew Pantyukhin
faaec41723 - Document buffer overrun in repr() for unicode strings in python 2006-10-07 09:13:36 +00:00
Alex Dupre
bc198cbb74 Try to fix on 4.X. 2006-10-07 08:02:55 +00:00
Rong-En Fan
00b5e20243 - Update to 2.1 beta 16 
- Build auth-pam module
- Remove patch that got merged upstream

PR:		ports/103994
Submitted by:	Matthias Andree <matthias.andree at gmx.de> (maintainer)
 2006-10-07 07:04:23 +00:00
Shaun Amott
c55391fe1e Update pkg-message[.in] to clarify syslog configuration details. 
PR:		ports/104080
Submitted by:	João Rocha Braga Filho <goffredo@gmail.com>
Approved by:	Dmitry Marakasov <amdmi3@mail.ru> (maintainer)
 2006-10-07 03:44:54 +00:00
Shaun Amott
5a231e1170 When using LDAP as a KDC back-end, allow users to override the 
hard-coded LDAP socket path. By default, we will use the path where
OpenLDAP usually puts its socket.

PR:		ports/72149
Submitted by:	Pawel Wieleba <wielebap@iem.pw.edu.pl>
 2006-10-07 00:42:57 +00:00
Erwin Lansing
f4109520e6 devel/cscope was fixed in version 15.6 
Glanced at by:	remko
 2006-10-06 20:57:09 +00:00
Martin Wilke
cbc4e9a987 - Fix build with gcc41 
- Fix pkg-plist

PR:		ports/103957
Submitted by:	trasz <trasz@pin.if.uz.zgora.pl>
 2006-10-06 19:22:16 +00:00
Pav Lucistnik
2366078d57 - Update to 1.2 2006-10-06 18:23:38 +00:00
Andrew Pantyukhin
0aceca32b6 - Document _ecalloc Integer Overflow Vulnerability in php5 2006-10-06 05:12:29 +00:00
Cheng-Lung Sung
281c4c0d24 Add p5-Crypt-GCrypt 1.15, perl interface to the GNU Cryptographic 
library.

PR:		ports/103767
Submitted by:	TAKAHASHI Kaoru <kaoru at kaisei.org>
 2006-10-06 04:58:39 +00:00
Andrew Pantyukhin
d10279cb28 - Update an old mambo advisory and document its new vulnerabilities 2006-10-05 21:34:25 +00:00
Jose Alonso Cardenas Marquez
6d3e082b49 - Update to 2.3.1 
- See the ChangeLog at http://dazuko.org/CHANGELOG
 2006-10-05 17:04:29 +00:00
Andrew Pantyukhin
0a9b4106e5 - Add linux-curl to a curl advisory and tweak versions a bit 2006-10-05 16:46:38 +00:00
Andrew Pantyukhin
9efda3fdaf - Add ja-lynx* to a lynx advisory 2006-10-05 16:38:28 +00:00
Andrew Pantyukhin
f8cb470c37 - chinese/tin was also vulnerable 2006-10-05 16:32:15 +00:00
Andrew Pantyukhin
2c4621a67e - Document buffer overflow vulnerabilities in tin 2006-10-05 16:30:52 +00:00
Shaun Amott
dc316306ca - Chase shared library version bump in security/heimdal. 
- Remove 4.x-specific BROKEN in net/arla (caused by heimdal).
 2006-10-05 16:20:13 +00:00
Shaun Amott
6fcf4bfc30 - Update to 0.7.2. 
- Improve pkg-descr, etc.
- Take maintainership.
 2006-10-05 16:07:39 +00:00
Andrew Pantyukhin
9a55e76b75 - Use >0 for unpatched vulnerabilities 
Submitted by:	simon
 2006-10-05 14:47:59 +00:00
Andrew Pantyukhin
4afdb5a475 - Document slapd acl selfwrite Security Issue in openldap 2006-10-05 14:31:50 +00:00
Andrew Pantyukhin
16c533b668 - Document "System.CodeDom.Compiler" Insecure Temporary Creation in mono 2006-10-05 14:00:56 +00:00
Peter Pentchev
8d75176018 Fix GnuPG's hidden dependency on cURL - add cURL support to OPTIONS and 
either explicitly depend on it, or disable it in the configure options.

PR:		103427
Silence from:	kuriyama (maintainer)
 2006-10-05 13:37:17 +00:00
Andrew Pantyukhin
a90c170a17 - Document open_basedir Race Condition Vulnerability in php 2006-10-05 05:24:37 +00:00
Alejandro Pulver
a37457ae0e The Metasploit Project 
This is the Metasploit Project. The goal is to provide useful
information to people who perform penetration testing, IDS signature
development, and exploit research. This site was created to fill the
gaps in the information publicly available on various exploitation
techniques and to create a useful resource for exploit developers. The
tools and information on this site are provided for legal penetration
testing and research purposes only.

This port is an in-development version of the upcoming Metasploit Framework.
It is based on Ruby instead of perl, and has a different license.

WWW: http://www.metasploit.org

PR:		ports/101280
Submitted by:	Yonatan <onatan at gmail.com>
 2006-10-05 00:05:52 +00:00
Alex Dupre
b58a9a8c39 Update to 0.9.6 release. 2006-10-04 21:13:11 +00:00
Andrew Pantyukhin
9a84996c58 - Document NULL byte injection vulnerability in phpbb 2006-10-04 17:10:46 +00:00
Marcus Alves Grando
bfdda791c6 - Fix package creation. [1] 
- Update HPN patch and remove IGNORE. [2]
- Bump PORTREVISION

PR:		103961
Submitted by:	Phil Oleson <oz___nixil.net> [1], ale [2]
 2006-10-04 13:53:54 +00:00
Sergey Skvortsov
936408900d Update to 0.06 2006-10-04 13:49:12 +00:00
Sergey Skvortsov
42dfbd9f06 Update to 1.18 
PR:		ports/103668
Submitted by:	Gea-Suan Lin <gslin xx gslin.org>
 2006-10-04 13:42:20 +00:00
Andrew Pantyukhin
73b9a87548 - Add references and use earlier discovery date in fffa9257-3c17-11db-86ab-00123ffe8333 2006-10-04 10:27:16 +00:00
Chin-San Huang
d969fbba79 Change the following ports to my FreeBSD.org email. 
Approved by:	delphij (mentor)

archivers/pecl-bz2/Makefile
archivers/pecl-lzf/Makefile
archivers/pecl-rar/Makefile
audio/fapg/Makefile
audio/pecl-id3/Makefile
chinese/CJKUnifonts/Makefile
chinese/auto-tw-l10n/Makefile
chinese/dfsongsd/Makefile
chinese/fortunetw/Makefile
chinese/gcin/Makefile
chinese/joe/Makefile
chinese/joe2/Makefile
chinese/pcmanx/Makefile
chinese/phpbb-tw/Makefile
chinese/tatter-tools/Makefile
chinese/ve/Makefile
chinese/zhcon/Makefile
devel/pear-Console_Getopt/Makefile
devel/pear-Console_Table/Makefile
devel/pear-PEAR_Info/Makefile
devel/pecl-expect/Makefile
games/p5-Baseball-Sabermetrics/Makefile
graphics/epdfview/Makefile
graphics/p5-Chart-Clicker/Makefile
graphics/p5-GD-Thumbnail/Makefile
graphics/p5-Visio/Makefile
mail/pecl-esmtp/Makefile
math/pecl-stats/Makefile
misc/pear-Services_Weather/Makefile
net/ldapdiff/Makefile
net/p5-RRD-Simple/Makefile
net/pear-Net_CDDB/Makefile
net/pear-Net_SMS/Makefile
net/pecl-cvsclient/Makefile
security/gwee/Makefile
security/p5-GSSAPI/Makefile
security/pam-pgsql/Makefile
security/pecl-ssh2/Makefile
security/pecl-tcpwrap/Makefile
sysutils/p5-BSD-Sysctl/Makefile
sysutils/p5-File-Next/Makefile
textproc/csvdiff/Makefile
textproc/p5-CSS/Makefile
textproc/p5-Pod-XML/Makefile
textproc/p5-SGML-DTDParse/Makefile
textproc/p5-Text-Emoticon-GoogleTalk/Makefile
textproc/p5-XML-Handler-Dtd2DocBook/Makefile
textproc/p5-XML-Handler-Dtd2Html/Makefile
textproc/p5-XML-SAXDriver-CSV/Makefile
textproc/p5-XML-SAXDriver-Excel/Makefile
textproc/p5-ack/Makefile
textproc/pear-XML_DTD/Makefile
textproc/pecl-stem/Makefile
textproc/scim-input-pad/Makefile
textproc/sdcv/Makefile
www/b2evolution/Makefile
www/dokuwiki/Makefile
www/dokuwiki-devel/Makefile
www/lilurl/Makefile
www/p5-HTML-TableParser/Makefile
www/p5-HTML-WikiConverter/Makefile
www/p5-HTML-WikiConverter-DokuWiki/Makefile
www/p5-HTML-WikiConverter-Kwiki/Makefile
www/p5-HTML-WikiConverter-Markdown/Makefile
www/p5-HTML-WikiConverter-MediaWiki/Makefile
www/p5-HTML-WikiConverter-MoinMoin/Makefile
www/p5-HTML-WikiConverter-Oddmuse/Makefile
www/p5-HTML-WikiConverter-PbWiki/Makefile
www/p5-HTML-WikiConverter-PhpWiki/Makefile
www/p5-HTML-WikiConverter-PmWiki/Makefile
www/p5-HTML-WikiConverter-SnipSnap/Makefile
www/p5-HTML-WikiConverter-Socialtext/Makefile
www/p5-HTML-WikiConverter-TikiWiki/Makefile
www/p5-HTML-WikiConverter-UseMod/Makefile
www/p5-HTML-WikiConverter-WakkaWiki/Makefile
www/p5-HTML-WikiConverter-WikkaWiki/Makefile
www/p5-WWW-Baseball-NPB/Makefile
www/p5-WWW-Comic/Makefile
www/p5-WWW-VenusEnvy/Makefile
www/pear-Services_Delicious/Makefile
www/pear-UDDI/Makefile
www/xpi-cssviewer/Makefile
www/xpi-gmail-manager/Makefile
www/xpi-google-notebook/Makefile
www/xpi-mrtech-local-install/Makefile
www/xpi-no-referrer/Makefile
www/xpi-server_switcher/Makefile
www/xpi-unplug/Makefile
www/xpi-videodownloader/Makefile
www/xpi-web_developer/Makefile
x11/xdialog/Makefile
x11-fm/pcmanfm/Makefile
 2006-10-03 15:34:44 +00:00
Stanislav Sedov
a4c3b3b69d - Update to 0.5.3 
- PREFIX safety
- Take maintainership

Approved by:	sem (mentor)
 2006-10-03 13:20:15 +00:00
Andrew Pantyukhin
b535ec7ccd - Add CVE names to 19b17ab4-51e0-11db-a5ae-00508d6a62df 2006-10-03 12:14:21 +00:00
Andrew Pantyukhin
9d8e132d46 - Document admin section SQL injection in postnuke 2006-10-03 12:10:49 +00:00
Stefan Walter
b29ff65765 Fix file permissions to make the program usable again. 
PR:		102896
Noticed by:	George L. Yermunlik <yz@yz.kiev.ua>
Patch by:	maintainer
 2006-10-03 08:55:22 +00:00
Cheng-Lung Sung
537d269de7 - Update to 0.25 
PR:		ports/103922
Submitted by:	maintainer (TAKAHASHI Kaoru)
 2006-10-03 03:03:39 +00:00
Alejandro Pulver
00b24ce00a - Fix build failures that arose from an accidentally omitted -fPIC. 
- Portrevision bumped since the change affects all architectures,
  not just those that were failing.

PR:		ports/103863
Submitted by:	Matthias Andree <matthias.andree@gmx.de> (maintainer)
Reported by:	pointyhat
 2006-10-02 17:47:32 +00:00