several vulnerabilities which allows code execution.
On the mozilla page with known vulnerabilities [1] they state:
Firefox 1.0 is no longer supported and the last update,
Firefox 1.0.8, is affected by several vulnerabilities fixed in
newer versions of the program. All users are urged to upgrade
to the newest version of Firefox.
[1] http://www.mozilla.org/projects/security/known-vulnerabilities.html
With hat: security-officer
In the code, the author uses two level hash, and IPC::Shareable
will create a share memory for those anonymouse object (the second
level hash). Those share memory will not be removed when sshit exists
or when the rule is removed. Running sshit for a period of time,
the number of share memory and semaphore will reach the limit for
one process, then sshit.pl can not get more share memory, thus it
quits. The only solution is to manually remove all share memory and
semaphore.
This is somehow the limitation of using IPC::Shareable. To workaround
this problem. The patch will removes associated firewall rules when
syslogd closes the fd [1], and use IPC::Shareable->clean_up
to remove all shm/sem created by this process. I also set 'destroy'
to 1 so the shm tied to %list can be removed.
The second hunk is to fix a typo for ipfw2. Due to this typo,
ip in ipfw2's table cat not be removed. That means once blocked,
the client is blocked until reboot or admin cleanup the table.
[1] if any log files are rotated, newsyslog sends a HUP to syslogd,
syslogd will close *all* current open fd and reopen them. At
that time, the sshit.pl's stdin will be closed, thus the main
program will exit.
PR: ports/100726
Submitted by: Alex Samorukov <samm at os2.kiev.ua>
Approved by: Jui-Nan Eric Lin <jnlin at csie.NCTU.edu.tw> (maintainer)
Obtained from: rafan
development mailing list has been dead for some time too. Furthermore local
pacthes have been needed since python 2.4 was added to the ports tree.
Schedule for removal in 2 months.
PR: 100910
Submitted by: Christian Laursen <xi@borderworlds.dk> (maintainer)
- Port now installs some extra documentation into ${DOCSDIR}.
- Added pkg-message and pkg-plist to port.
PR: ports/100897
Submitted by: maintainer (andrew_AT_arda dot homeunix)
Changes in this release:
- Make bad password-IDs in /var/dcc/flod a serious error that is reported even
when tracing is off.
- Fix missing ';;' in libexec/logger.
- Restore `start-dccm -c` that was removed from version 1.3.39 with the
mistaken idea that -c was not in use.
- Fix bug counting clients of public DCC servers introduced in 1.3.39.
- Adding -d to DCCD_ARGS or GREY_DCCD_ARGS causes dccd to say how it determines
the size of available memory.
- Deal with sysctl(HW_PHYSMEM) on amd64 FreeBSD 6.* need for an 8-byte value
without breaking sysctl(HW_PHYSMEM) on FreeBSD 5.* that demands a 4-byte value.
- Allow databases larger than 3 GBytes on 64-bit systems.
PR: ports/100880
Submitted by: Dean Hollister (maintainer)
- Add entry about viewcvs->viewvc
- Fix last entry. s|ports/sysutils/e17-module|sysutils/e17-module| [1]
Pointy hat to: itectu [1]
* devel/viewcvs
- Remove port
* net-mgmt/rancid
- Change to devel/viewvc in pkg-message
used by the Apache web server (see http://httpd.apache.org for
details). This allows you to build applications which can be easily
managed by experienced Apache admins. Also, by using this module,
you'll benefit from the support for nested blocks with built-in
parameter inheritance. This can greatly reduce the amount or repeated
information in your configuration files.
A good reference to the Apache configuration file format can be found
here:
http://httpd.apache.org/docs-2.0/configuring.html
WWW: http://search.cpan.org/~samtregar/Config-ApacheFormat-1.2/
PR: ports/100885
Submitted by: Martin Tournoij <carpetsmoker at gmail.com>
