- The LUA port option enables Lua support for DHCP lease-change scripts
- DHCPv6 support
- IPv6 Router Advertisement support
Changelog: http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
Feature safe: yes
was to test what happened when we did eventually delete these two
ports, not to delete them immediately.
A subsequent commit will add appropriate deprecation messages.
Hat: portmgr
PR: ports/165457
Feature safe: yes (actually no, however, this is to preserve POLA)
Fix remote code execution which can occur with a specially crafted
audit file. The attacker would need to get the portaudit(1) to
download the bad audit database, e.g. by performing a man in the
middle attack.
Add signature verification of the portaudit database. The public key
is for the database generated for portaudit.FreeBSD.org is included
in the distribution.
(This parts add the portaudit public key missed in initial commit.)
Submitted by: Michael Gmelin <freebsd@grem.de>
Reported by: Michael Gmelin <freebsd@grem.de>, Joerg Scheinert
Security: Remote code execution
Security: http://vuxml.FreeBSD.org/6d329b64-6bbb-11e1-9166-001e4f0fb9b1.html
Feature safe: yes
With hat: so
Fix remote code execution which can occur with a specially crafted
audit file. The attacker would need to get the portaudit(1) to
download the bad audit database, e.g. by performing a man in the
middle attack.
Add signature verification of the portaudit database. The public key
is for the database generated for portaudit.FreeBSD.org is included
in the distribution.
Submitted by: Michael Gmelin <freebsd@grem.de>
Reported by: Michael Gmelin <freebsd@grem.de>, Joerg Scheinert
Security: Remote code execution
Security: http://vuxml.FreeBSD.org/6d329b64-6bbb-11e1-9166-001e4f0fb9b1.html
Feature safe: yes
With hat: so
check for vulnerabilities, but call portaudit instead.
This fixes a remote command execution vulnerability for users who have
portaudit installed.
While changing the code anyway, remove the annoying and very verbose
"Vulnerability check disabled, database not found" warning.
Security: Remote code execution
Security: http://vuxml.FreeBSD.org/6d329b64-6bbb-11e1-9166-001e4f0fb9b1.html
Approved by: portmgr
Feature safe: yes (or at least approved)
With hat: so
- Do not install duplicate sample config files
- Do not bump PORTREVISION
PR: ports/165800 [1]
Submitted by: Michael Scheidell <scheidell@FreeBSD.org> [1]
Feature safe: yes
- Fix postgresql version logic-- now falls back to default version only if
WANT_ isn't set, thus preserving package building for non-default versions
Feature safe: yes
- Add run depends on required p5-version>=0.87. perl-5.10.1 and later
has version.pm, but its version is only 0.77 [1].
PR: ports/164913 [1]
Submitted by: swills [1]
Feature safe: yes
