Oliver Eikemeier
9d8e1dc1ce
add subversion-perl, subversion-python
2004-07-20 15:48:58 +00:00
Oliver Eikemeier
aa0d0d585f
subversion access control bypass
2004-07-20 10:30:55 +00:00
Oliver Eikemeier
219179b3ae
mod_ssl format string vulnerability
2004-07-18 10:49:58 +00:00
Oliver Eikemeier
618d6d0383
create /var/db/options when it doesn't exist
2004-07-17 15:52:46 +00:00
Oliver Eikemeier
6ab61bf311
- synchronize with recent changes in bsd.port.mk
...
- work in progress: optionsng, cleanroom installation
2004-07-17 14:24:59 +00:00
Volker Stolz
9f09203bcf
Add missing RUN_DEPENDS on devel/newfile
...
PR: ports/59956
Submitted by: Nicola Vitale
Approved by: maintainer timeout
2004-07-16 16:23:17 +00:00
Oliver Eikemeier
8f4bafac8c
Roundup directory traversal
2004-07-16 07:39:24 +00:00
Oliver Eikemeier
2cbfca83a7
wv library datetime field buffer overflow
2004-07-14 06:56:16 +00:00
Oliver Eikemeier
69227d213a
multiple vulnerabilities in Bugzilla
2004-07-13 23:47:33 +00:00
Oliver Eikemeier
76de274928
check for a working tr(1).
2004-07-13 19:36:15 +00:00
Akinori MUSHA
463ee95f1c
Add a patch to read the index file via sort(1) instead of reading
...
directly to avoid core dump.
2004-07-12 16:12:47 +00:00
Oliver Eikemeier
d09272bb2f
correct vulnerable version of linux-png and add a reference
2004-07-11 12:09:03 +00:00
Oliver Eikemeier
53eb6314b5
libpng row buffer overflow
2004-07-11 11:18:58 +00:00
Oliver Eikemeier
070d49a73b
typo in 'make master-sites-all'
2004-07-10 11:54:57 +00:00
Oliver Eikemeier
04ded1874e
add some references
2004-07-09 14:51:16 +00:00
Oliver Eikemeier
4db3287849
FWIIW, enable the use of
...
make DISABLE_SIZE=yes checkdistsites
to check for corrupted files on sites that don't support SIZE
(the files are unfetchable from these sites anyway)
2004-07-08 23:30:04 +00:00
Oliver Eikemeier
5f1e2eed8c
move e5e2883d-ceb9-11d8-8898-000d6111a684 to vuln.xml
2004-07-08 14:24:07 +00:00
Oliver Eikemeier
512239b93f
add targets master-sites-all, master-sites, patch-sites-all, patch-sites
...
which print a sorted list of the respective sites (used e.g. by FreshPorts)
2004-07-07 14:51:17 +00:00
Oliver Eikemeier
e41c0a0867
fix a warning when GeoIP can't find the country for a site
2004-07-07 14:48:44 +00:00
Oliver Eikemeier
ffacc93b14
eliminate some verbatim uses of mktemp and sort
...
PR: 62298
2004-07-07 09:55:56 +00:00
Akinori MUSHA
be40c29b61
Fix a bug with -P when there are more than one binary package file for
...
a package to install or upgrade.
PR: ports/68598
Submitted by: Victor Prylipko <vic@liniya.ru>
Bug traced by: Andrew Bliznak <andrew@ort.lviv.net>
2004-07-06 19:32:53 +00:00
Oliver Eikemeier
83eeebbaf9
add some references
2004-07-06 14:52:44 +00:00
Oliver Eikemeier
193ffbdfe8
Add devel/portmk, a place where bsd.port.mk development can happen.
2004-07-06 12:41:03 +00:00
Oliver Eikemeier
2fd042326d
MySQL versions < 4.1 seem to be unaffected
...
Reported by: Alexander Vasenin <blacksir@number.ru>
2004-07-06 07:17:53 +00:00
Joe Marcus Clarke
2e3ec09d45
Update to today's pkg_install from HEAD.
2004-07-06 00:17:35 +00:00
Oliver Eikemeier
3c0632af2c
add MySQL server authentication bypass / buffer overflow
2004-07-05 19:45:32 +00:00
Oliver Eikemeier
1a7801a6e9
Mark 4aec9d58-ce7b-11d8-858d-000d610a3b12 as a duplicate of the
...
already existing c63936c1-caed-11d8-8898-000d6111a684.
2004-07-05 15:30:35 +00:00
Dag-Erling Smørgrav
80b65796e7
Perform plist substitution for -L.
...
Fix bug in origin determination.
2004-07-05 11:48:35 +00:00
Tom Rhodes
5538ca7e08
Move phpnuke vulnerabilities to VuXML.
2004-07-03 06:48:34 +00:00
Kris Kennaway
b408925a50
Use full path to portsdb instead of assuming ${LOCALBASE}/sbin is in PATH
2004-07-02 08:13:07 +00:00
Akinori MUSHA
46edc73a84
Apply a patch to avoid "undefined method `each' for nil:NilClass"
...
error when such configuration variable as MAKE_ARGS, typically
BEFORE_DEINSTALL is not defined.
Reported by: krion, Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
2004-07-02 04:23:19 +00:00
Oliver Eikemeier
172c204547
move "phpMyAdmin code injection" to vuxml
2004-07-02 00:48:55 +00:00
Oliver Eikemeier
580eeeff30
Test OSVERSION instead of pkg_info -P to enable cross-version builds
...
Requested by: kris
2004-07-02 00:31:18 +00:00
Oliver Eikemeier
6de9071e46
phpMyAdmin code injection
2004-07-01 19:03:36 +00:00
Oliver Eikemeier
2e23771c68
- update to version 0.5
...
*** NOTE ***
The preferences file format has changed, as have the periodic.conf(5) names.
Normally the default settings should be adequate, except when you need to
configure a proxy. Use $PREFIX/etc/portaudit.conf.sample as an example.
- moved portaudit to sbin
- clean up, merging stuff into the portaudit script
- better return codes and errors to stderr
- -f can check stdin now
- dropped ports tree auditing
- merged the periodic(8) scripts into one
- run daily auditing as `nobody'
2004-07-01 10:59:48 +00:00
Akinori MUSHA
8f484b7d54
Update to 20040701. New distfile.
...
portupgrade:
- Make -PP/--use-packages-only work better, just as I originally
intended. Now packages are correctly identified using
pkg_info(1), "LATEST_LINK" files are also properly detected.
Related informational messages have also been improved.
It turned out that the LATEST_LINK/NO_LATEST_LINK detection was
broken long ago and hasn't been working for long.
pkg_fetch(1):
- Properly rename a "latest link" file with a full package name with
version part.
pkgtools.conf(5):
- Improve and unify the method for pattern matching in MAKE_ARGS,
BEFOREBUILD, BEFOREDEINSTALL and AFTERINSTALL variables.
This should fix some cases where it looks like MAKE_ARGS entries
are ignored.
2004-07-01 04:05:16 +00:00
Oliver Eikemeier
9bf7f5a9d0
- SSLtelnet remote format string vulnerability
...
(guys, this is a public list)
- add some references
2004-06-30 23:39:00 +00:00
Oliver Eikemeier
ccceaf623b
update to 20040629: sync with -CURRENT
2004-06-30 10:31:45 +00:00
Oliver Eikemeier
f83bfb08cc
add MIT Kerberos 5 krb5_aname_to_localname() buffer overflow
2004-06-29 10:33:03 +00:00
Oliver Eikemeier
cbfa0839a2
add isakmpd security association deletion vulnerability
2004-06-29 10:21:53 +00:00
Oliver Eikemeier
0f651b2743
add Apache input header folding DoS vulnerability
2004-06-28 22:09:24 +00:00
Oliver Eikemeier
0c0041370a
xine-lib RTSP handling vulnerabilities
2004-06-28 09:55:46 +00:00
Tom Rhodes
4e1d155d33
Move MoinMoin entry to VuXML.
2004-06-28 03:58:47 +00:00
Oliver Eikemeier
8a65d874ab
diversify url conversion
2004-06-28 01:16:35 +00:00
Joe Marcus Clarke
35c8dae828
Update to 2.6.6
...
* Fix a typo in the libtool archive hint [1]
* Check for ports that have a poorly specified CONFLICTS line as well as ports
that conflict with themselves [2]
* Check for proper handling of gconf schemas
* Check for explicit listing of %gconf keys in the plist
Spotted by: lofi [1]
Submitted by: eik [2]
2004-06-27 20:58:47 +00:00
Oliver Eikemeier
9c7b32a018
add portaudit2vuxml.pl to easy the migration of entries to VuXML
2004-06-26 00:40:17 +00:00
Tom Rhodes
2da36a743f
Add an entry for recent isc-dhcp3-server buffer overflows.
...
Remove the one in portaudit.txt.
2004-06-25 20:01:28 +00:00
Tom Rhodes
e28b04324b
Move giFT-FastTrack to VuXML.
2004-06-25 17:18:57 +00:00
Oliver Eikemeier
44285aa4ba
giFT-FastTrack remote DoS
2004-06-25 13:34:38 +00:00
Michael Landin
a9c369d7ef
Add patch with bugfixes.
...
- Fix chmod behavior
- Ignore irrelevant directories
- Index creation speedup
Bump PORTREVISION.
Submitted by: Radim Kolar <hsn@netmag.cz>
2004-06-25 13:11:30 +00:00