summaryrefslogtreecommitdiff
path: root/security
diff options
context:
space:
mode:
Diffstat (limited to 'security')
-rw-r--r--security/keysmith/distinfo6
-rw-r--r--security/kgpg/distinfo6
-rw-r--r--security/kleopatra/Makefile1
-rw-r--r--security/kleopatra/distinfo18
-rw-r--r--security/kpkpass/distinfo6
-rw-r--r--security/kwalletmanager/distinfo6
-rw-r--r--security/libkleo/Makefile1
-rw-r--r--security/libkleo/distinfo6
-rw-r--r--security/vuxml/vuln/2025.xml84
9 files changed, 108 insertions, 26 deletions
diff --git a/security/keysmith/distinfo b/security/keysmith/distinfo
index 4bd948e4c76e..32a474b7923f 100644
--- a/security/keysmith/distinfo
+++ b/security/keysmith/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1749036945
-SHA256 (KDE/release-service/25.04.2/keysmith-25.04.2.tar.xz) = abda95423d1b66d334a5723a71f25c274088526dc25bd42abfcbdc7ffe8300f2
-SIZE (KDE/release-service/25.04.2/keysmith-25.04.2.tar.xz) = 237388
+TIMESTAMP = 1751381646
+SHA256 (KDE/release-service/25.04.3/keysmith-25.04.3.tar.xz) = 7c823ac8a6f7d70dfb0d2b8a5c4bbca5c0bfa43959671776d0178c4e5969ae90
+SIZE (KDE/release-service/25.04.3/keysmith-25.04.3.tar.xz) = 237392
diff --git a/security/kgpg/distinfo b/security/kgpg/distinfo
index 71ebbc8d276d..d651c8c80ffd 100644
--- a/security/kgpg/distinfo
+++ b/security/kgpg/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1749036948
-SHA256 (KDE/release-service/25.04.2/kgpg-25.04.2.tar.xz) = aad9c322e3f07de55bc9fd5a55c655ba0afdb24cb2500879b7cafc1f1ee03bed
-SIZE (KDE/release-service/25.04.2/kgpg-25.04.2.tar.xz) = 3048980
+TIMESTAMP = 1751381649
+SHA256 (KDE/release-service/25.04.3/kgpg-25.04.3.tar.xz) = 3f2ec6dc5b1221908730066274bd0d2f6efe5c04c2a79b720cb25dce547e0e4e
+SIZE (KDE/release-service/25.04.3/kgpg-25.04.3.tar.xz) = 3048996
diff --git a/security/kleopatra/Makefile b/security/kleopatra/Makefile
index 021af0b579e1..afa65c5857a7 100644
--- a/security/kleopatra/Makefile
+++ b/security/kleopatra/Makefile
@@ -1,6 +1,5 @@
PORTNAME= kleopatra
DISTVERSION= ${KDE_APPLICATIONS_VERSION}
-PORTREVISION= 1
CATEGORIES= security kde kde-applications
PATCH_SITES= https://invent.kde.org/pim/kleopatra/-/commit/
diff --git a/security/kleopatra/distinfo b/security/kleopatra/distinfo
index f1f3b98769a3..3462d27fed3b 100644
--- a/security/kleopatra/distinfo
+++ b/security/kleopatra/distinfo
@@ -1,9 +1,9 @@
-TIMESTAMP = 1750496363
-SHA256 (KDE/release-service/25.04.2/kleopatra-25.04.2.tar.xz) = d155c416103fad173c361ea10f3ea1f6142297cc5be3598e9b062461336a3476
-SIZE (KDE/release-service/25.04.2/kleopatra-25.04.2.tar.xz) = 2851360
-SHA256 (KDE/release-service/25.04.2/10b618703d74618c09b5e2b16e2db9d829aed93b.patch) = 75f5c94d85eadad74dcef21f66c019946217a051a9e8b90803d5eceaadb3fcd4
-SIZE (KDE/release-service/25.04.2/10b618703d74618c09b5e2b16e2db9d829aed93b.patch) = 1241
-SHA256 (KDE/release-service/25.04.2/b1f3736de7ed3c2d4f58aa454064a4cd0f423250.patch) = c2796b58683b07eabeae48a517192460c474a1722d7022e796b94df6553d933d
-SIZE (KDE/release-service/25.04.2/b1f3736de7ed3c2d4f58aa454064a4cd0f423250.patch) = 1585
-SHA256 (KDE/release-service/25.04.2/d4f777ffa137148302ca39d5a2238c01c896605d.patch) = 0120d812f9a57cbd4a5a2718fbbc9acef090841701cb2c6b4f11a596986840e6
-SIZE (KDE/release-service/25.04.2/d4f777ffa137148302ca39d5a2238c01c896605d.patch) = 1573
+TIMESTAMP = 1751381652
+SHA256 (KDE/release-service/25.04.3/kleopatra-25.04.3.tar.xz) = 7c9ad9d10cd368d58cdadd41f78b8a41853b8cd2b15eb55472f3b5ce707ad1c2
+SIZE (KDE/release-service/25.04.3/kleopatra-25.04.3.tar.xz) = 2850224
+SHA256 (KDE/release-service/25.04.3/10b618703d74618c09b5e2b16e2db9d829aed93b.patch) = 75f5c94d85eadad74dcef21f66c019946217a051a9e8b90803d5eceaadb3fcd4
+SIZE (KDE/release-service/25.04.3/10b618703d74618c09b5e2b16e2db9d829aed93b.patch) = 1241
+SHA256 (KDE/release-service/25.04.3/b1f3736de7ed3c2d4f58aa454064a4cd0f423250.patch) = c2796b58683b07eabeae48a517192460c474a1722d7022e796b94df6553d933d
+SIZE (KDE/release-service/25.04.3/b1f3736de7ed3c2d4f58aa454064a4cd0f423250.patch) = 1585
+SHA256 (KDE/release-service/25.04.3/d4f777ffa137148302ca39d5a2238c01c896605d.patch) = 0120d812f9a57cbd4a5a2718fbbc9acef090841701cb2c6b4f11a596986840e6
+SIZE (KDE/release-service/25.04.3/d4f777ffa137148302ca39d5a2238c01c896605d.patch) = 1573
diff --git a/security/kpkpass/distinfo b/security/kpkpass/distinfo
index aedda9c2c49a..0a1d98b0270a 100644
--- a/security/kpkpass/distinfo
+++ b/security/kpkpass/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1749036952
-SHA256 (KDE/release-service/25.04.2/kpkpass-25.04.2.tar.xz) = f317db3bd8c7c34d70727353315c831673a16b0a70da75f075cbb5a9dad2f931
-SIZE (KDE/release-service/25.04.2/kpkpass-25.04.2.tar.xz) = 29692
+TIMESTAMP = 1751381655
+SHA256 (KDE/release-service/25.04.3/kpkpass-25.04.3.tar.xz) = 68a9a069cd2ed7c911b6c4a515feec75a88507a445294d5a5391bbb8030081de
+SIZE (KDE/release-service/25.04.3/kpkpass-25.04.3.tar.xz) = 29684
diff --git a/security/kwalletmanager/distinfo b/security/kwalletmanager/distinfo
index 8b9380d7b9fd..0f541d8d4a38 100644
--- a/security/kwalletmanager/distinfo
+++ b/security/kwalletmanager/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1749036955
-SHA256 (KDE/release-service/25.04.2/kwalletmanager-25.04.2.tar.xz) = 626a240826f551841395bc61742ef45390995df57cd9aecd44a9fdb17b96cf28
-SIZE (KDE/release-service/25.04.2/kwalletmanager-25.04.2.tar.xz) = 1052996
+TIMESTAMP = 1751381657
+SHA256 (KDE/release-service/25.04.3/kwalletmanager-25.04.3.tar.xz) = 25b66d8e3da9548ecb0236fd0cfc50d6e98a385ca2092d6565f75a753f3229ea
+SIZE (KDE/release-service/25.04.3/kwalletmanager-25.04.3.tar.xz) = 1053004
diff --git a/security/libkleo/Makefile b/security/libkleo/Makefile
index 19824ceb7dda..ad3c33e5d9fb 100644
--- a/security/libkleo/Makefile
+++ b/security/libkleo/Makefile
@@ -1,6 +1,5 @@
PORTNAME= libkleo
DISTVERSION= ${KDE_APPLICATIONS_VERSION}
-PORTREVISION= 1
CATEGORIES= security kde kde-applications
MAINTAINER= kde@FreeBSD.org
diff --git a/security/libkleo/distinfo b/security/libkleo/distinfo
index 09e3eb9eb240..7d0f179e2181 100644
--- a/security/libkleo/distinfo
+++ b/security/libkleo/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1749036957
-SHA256 (KDE/release-service/25.04.2/libkleo-25.04.2.tar.xz) = 34feb9871d8a0e6ded0a7baa95f78fdac28c13d7b00ee9296bd1669e0c605f6a
-SIZE (KDE/release-service/25.04.2/libkleo-25.04.2.tar.xz) = 655088
+TIMESTAMP = 1751381660
+SHA256 (KDE/release-service/25.04.3/libkleo-25.04.3.tar.xz) = 7c9b334b226c990d5193b2e66a3ce8de1c5ea6c2afc9175280e6f44d02a7caa8
+SIZE (KDE/release-service/25.04.3/libkleo-25.04.3.tar.xz) = 655108
diff --git a/security/vuxml/vuln/2025.xml b/security/vuxml/vuln/2025.xml
index fbceba5c7d7c..6bc7dd3de85f 100644
--- a/security/vuxml/vuln/2025.xml
+++ b/security/vuxml/vuln/2025.xml
@@ -1,3 +1,87 @@
+ <vuln vid="d607b12c-5821-11f0-ab92-f02f7497ecda">
+ <topic>php -- Multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>php81</name>
+ <range><lt>8.1.33</lt></range>
+ </package>
+ <package>
+ <name>php82</name>
+ <range><lt>8.2.29</lt></range>
+ </package>
+ <package>
+ <name>php83</name>
+ <range><lt>8.3.23</lt></range>
+ </package>
+ <package>
+ <name>php84</name>
+ <range><lt>8.4.10</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>php.net reports:</p>
+ <blockquote cite="https://www.php.net/ChangeLog-8.php">
+ <ul>
+ <li>
+ CVE-2025-1735: pgsql extension does not check for errors during escaping
+ </li>
+ <li>
+ CVE-2025-6491: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
+ </li>
+ <li>
+ CVE-2025-1220: Null byte termination in hostnames
+ </li>
+ </ul>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2025-1735</cvename>
+ <cvename>CVE-2025-6491</cvename>
+ <cvename>CVE-2025-1220</cvename>
+ </references>
+ <dates>
+ <discovery>2025-02-27</discovery>
+ <entry>2025-07-03</entry>
+ </dates>
+ </vuln>
+
+ <vuln vid="bab7386a-582f-11f0-97d0-b42e991fc52e">
+ <topic>Mozilla -- exploitable crash</topic>
+ <affects>
+ <package>
+ <name>firefox</name>
+ <range><lt>140.0,2</lt></range>
+ </package>
+ <package>
+ <name>firefox-esr</name>
+ <range><lt>115.25.0</lt></range>
+ </package>
+ <package>
+ <name>thunderbird</name>
+ <range><lt>140.0</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>security@mozilla.org reports:</p>
+ <blockquote cite="https://bugzilla.mozilla.org/show_bug.cgi?id=1966423">
+ <p>A use-after-free in FontFaceSet resulted in a potentially
+ exploitable crash.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2025-6424</cvename>
+ <url>https://nvd.nist.gov/vuln/detail/CVE-2025-6424</url>
+ </references>
+ <dates>
+ <discovery>2025-06-24</discovery>
+ <entry>2025-07-03</entry>
+ </dates>
+ </vuln>
+
<vuln vid="5c777f88-40ff-4e1e-884b-ad63dfb9bb15">
<topic>chromium -- multiple security fixes</topic>
<affects>
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-04 02:17:14 +0000