summaryrefslogtreecommitdiff
path: root/security (unfollow)
Commit message (Collapse)AuthorFilesLines
2012-09-14- chase textproc/nltk update (upstream switched to setuptools)Ruslan Makhmatkhanov1-1/+2
Reported by: beat Approved by: portmgr (beat) Notes: svn path=/head/; revision=304266
2012-09-13- Update to 2.16Philippe Audeoud2-3/+3
- Changelog: http://cpansearch.perl.org/src/GBARR/Authen-SASL-2.16/Changes Notes: svn path=/head/; revision=304210
2012-09-13- Update MAINTAINER to my new FreeBSD.org addressJason E. Hale2-2/+2
Approved by: makc (mentor) Notes: svn path=/head/; revision=304177
2012-09-13update security/tor to 0.2.2.39 and security/tor-devel to 0.2.3.22-rcBrendan Fabeny4-6/+6
Security: Tor bugs 6690, 6811 Notes: svn path=/head/; revision=304172
2012-09-13- Update to 0.10.22.6 which fixes two security issuesSteve Wills1-0/+50
- Document security issues in vuxml [1] Reviewed by: bdrewery [1] Security: 178ba4ea-fd40-11e1-b2ae-001fd0af1a4c Notes: svn path=/head/; revision=304170
2012-09-13update lang/sbcl to 1.0.58 and switch to the new options format;Brendan Fabeny1-1/+1
adjust dependent ports Notes: svn path=/head/; revision=304169
2012-09-12Update to 2.0; with some help from rm@Kevin Lo3-201/+250
PR: ports/169690 Submitted by: Paul Dokas <paul at dokas dot name> Notes: svn path=/head/; revision=304137
2012-09-12Update NVIDIA arbitrary memory access vulnerability with CVE-2012-4225.Alexey Dokuchaev1-2/+16
Notes: svn path=/head/; revision=304136
2012-09-11Update Plone to 4.2.1.Ruslan Makhmatkhanov7-23/+14
This update includes: - www/py-plone.outputfilters 1.2 -> 1.6 - www/py-Products.CMFPlone 4.1.5 -> 4.2.1.1 - www/py-plone.app.vocabularies 2.1.6 -> 2.1.7 - www/py-plone.subrequest 1.6.2 -> 1.6.6 - www/py-plone.app.discussion 2.1.5 -> 2.1.7 - www/py-plonetheme.classic 1.1.2 -> 1.2.3 - www/plone 4.1.5 -> 4.2.1 - www/py-plone.i18n 2.0 -> 2.0.1 - www/py-plone.fieldsets 2.0.1 -> 2.0.2 - www/py-plone.app.search 1.0.2 -> 1.0.4 - www/py-plone.app.content 2.0.9 -> 2.0.11 - www/py-plone.app.testing 4.0.2 -> 4.2 - www/py-plone.app.contentrules 2.1.4 -> 2.1.8 - www/py-plone.uuid 1.0.2 -> 1.0.3 - www/py-plone.app.upgrade 1.1.6 -> 1.2.1 - www/py-plone.app.caching 1.0.3 -> 1.1 - www/py-plone.app.linkintegrity 1.4.5 -> 1.4.6 - www/py-plone.app.iterate 2.1.5 -> 2.1.7 - www/py-plone.testing 4.0.3 -> 4.0.4 - www/py-plone.app.contentmenu 2.0.5 -> 2.0.6 - www/py-plone.app.controlpanel 2.2.3 -> 2.2.8 - www/py-plone.portlet.collection 2.0.4 -> 2.1.1 - www/py-plone.resource 1.0b6 -> 1.0.1 - www/py-plone.app.registry 1.0.1 -> 1.1 - www/py-plone.app.workflow 2.0.6 -> 2.0.7 - www/py-plone.app.portlets 2.2.3 -> 2.2.6 - www/py-plone.app.blob 1.5.1 -> 1.5.2 - www/py-Products.TinyMCE 1.2.12 -> 1.2.13 - www/py-plone.app.locales 4.0.11 -> 4.0.15 - www/py-plonetheme.sunburst 1.2.4 -> 1.2.7 - www/py-plone.app.theming 1.0b9 -> 1.0.3 - www/py-plone.app.collection 1.0.1 -> 1.0.5 - www/py-plone.folder 1.0.1 -> 1.0.2 - www/py-plone.app.querystring 1.0.1 -> 1.0.5 - www/py-plone.app.jquerytools 1.3.1 -> 1.3.2 - www/py-plone.app.contentlisting 1.0 -> 1.0.1 - www/py-plone.stringinterp 1.0.5 -> 1.0.7 - www/py-plone.app.layout 2.2.4 -> 2.2.7 - www/py-plone.app.z3cform 0.5.7 -> 0.6.0 - www/py-plone.portlets 2.0.2 -> 2.1 - www/py-plone.app.kss 1.7.0 -> 1.7.1 - www/py-plone.app.redirector 1.1.2 -> 1.1.3 - devel/py-kss-core 1.6.3 -> 1.6.4 - devel/py-Products.ATContentTypes 2.1.7 -> 2.1.8 - devel/py-Products.ResourceRegistries 2.0.6 -> 2.2.1 - devel/py-five.customerize 1.0.2 -> 1.0.3 - devel/py-diazo 1.0rc4 -> 1.0.1 - devel/py-Products.CMFEditions 2.2.2 -> 2.2.5 - devel/py-Products.ExtendedPathIndex 2.9 -> 3.0.1 - devel/py-z3c.formwidget.query 0.7 -> 0.8 - devel/py-Products.Archetypes 1.7.13 -> 1.8.3 - devel/py-Products.CMFPlacefulWorkflow 1.5.6 -> 1.5.7 - devel/py-archetypes.querywidget 1.0.1 -> 1.0.4 - devel/py-Products.PloneLanguageTool 3.2.4 -> 3.2.5 - devel/py-Products.GenericSetup 1.6.6 -> 1.7.2 - devel/py-Products.CMFTestCase 0.9.11 -> 0.9.12 - devel/py-Products.PasswordResetTool 2.0.7 -> 2.0.8 - devel/py-archetypes.kss 1.7.1 -> 1.7.2 - devel/py-collective.z3cform.datetimewidget 1.1.1 -> 1.2.0 - devel/py-Products.PloneTestCase 0.9.13 -> 0.9.15 - devel/py-zope.schema 4.0.1 -> 4.2.0 - devel/py-archetypes.referencebrowserwidget 2.4.11 -> 2.4.12 - security/py-Products.PlonePAS 4.0.12 -> 4.0.13 - security/py-Products.PluggableAuthService 1.7.7 -> 1.8.0 common changes: - strip Makefile header - choose proper value for USE_PYTHON in a cases when I sure that the port is required -2.7 only or may be built/run both 2.x and 3.x - comment off USE_ZOPE - tab -> space in pkg-descr:WWW nuances: - new port www/py-plone.app.jquery added per this plone update requirements - devel/py-zope.schema updated to 4.2.0 because I hadn't got any response from maintainer and because this exact version is required for this plone update feature highlights/release notes: - http://plone.org/products/plone/releases/4.2 - http://plone.org/products/plone/releases/4.2.1 Notes: svn path=/head/; revision=304111
2012-09-11- Update entry for net/freeradius2 to reflect local patch to address ↵Ryan Steinmetz1-1/+2
cve-2012-3547 Notes: svn path=/head/; revision=304088
2012-09-11VuXML: document remote code execution in freeRADIUSEygene Ryabinkin1-0/+47
Notes: svn path=/head/; revision=304085
2012-09-11www/moinmoin: fix CVE-2012-4404, wrong processing of group ACLsEygene Ryabinkin1-1/+2
Using upstream patch from http://hg.moinmo.in/moin/1.9/raw-rev/7b9f39289e16 PR: 171346 QA page: http://codelabs.ru/fbsd/ports/qa/www/moinmoin/1.9.4_1 Approved by: khsing.cn@gmail.com (maintainer) Security: http://www.vuxml.org/freebsd/4f99e2ef-f725-11e1-8bd8-0022156e8794.html Notes: svn path=/head/; revision=304084
2012-09-10- Move libxul 1.9.2 to www/libxul19Beat Gaetzi1-2/+2
- Update www/libxul to 10.0.7 - Update all dependent ports to use www/libxul19 (no functional changes) - Bump PORTREVISION on ports where libxul is a run dependency as the resulting package will change. Submitted by: Jan Beich <jbeich@tormail.org> With hat: gecko Notes: svn path=/head/; revision=304053
2012-09-10Update to 0.14.Roman Bogorodskiy2-3/+3
Notes: svn path=/head/; revision=304041
2012-09-10- Add Emacs 24 to IGNORE listeBeat Gaetzi1-2/+2
Reported by: pointyhat Submitted by: ashish Approved by: maintainer timeout Notes: svn path=/head/; revision=304023
2012-09-09- Use OPTIONSngEmanuel Haupt1-15/+13
- Remove deprecated header information Notes: svn path=/head/; revision=303997
2012-09-09update to 0.2.3.21-rcBrendan Fabeny2-3/+3
Security: Tor bugs 6252, 6690, 6710 Notes: svn path=/head/; revision=303960
2012-09-09Welcome back Chris Petrik <c.petrik.sosa@gmail.com>Eitan Adler1-1/+1
PR: ports/171481 Notes: svn path=/head/; revision=303952
2012-09-09- Update to 0.13Steve Wills3-5/+4
PR: ports/171057 Approved by: maintainer timeout (sethk@meowfishies.com, >2 weeks) Notes: svn path=/head/; revision=303948
2012-09-09- Remove dependency on p5-Devel-MallinfoSteve Wills1-1/+3
Notes: svn path=/head/; revision=303944
2012-09-08- Update to 1.09Steve Wills2-4/+3
PR: ports/170970 Approved by: maintainer timeout (kappa@rambler-co.ru, >2 weeks) Notes: svn path=/head/; revision=303910
2012-09-08Update libotr and pidgin-otr to 4.0.0Doug Barton6-28/+24
The main new features in 4.0.0: * Support v3 of the OTR protocol * The plugin now supports multiple OTR conversations with the same buddy who is logged in at multiple locations. In this case, a new OTR menu will appear, which allows you to select which session an outgoing message is indended for. Note that concurrent SMP authentications with the same buddy who is logged in multiple times is not yet supported (starting a second authentication will end the first). * During a private conversation with a buddy, an incoming unencrypted message will now trigger the regular incoming message notifications. In Pidgin this includes showing the message in the top-right notification area, if it is normally configured to do so. * When a private conversation begins, the plugin will indicate whether Pidgin is configured to log the conversation. * By default, OTR conversations will not be logged by Pidgin. * New translations. * libotr API changes: - instance tags, to support multiple simultaneous logins - support for asynchronous private key generation - the ability to provide an "extra" symmetric key to applications (with forward secrecy) - applications can supply a formation conversion callback if they do not natively use XHTML-style UTF8 markup - error messages formerly provided by libotr are now handled using callbacks to the application, for better i18n support - otrl_message_sending now handles message fragmentation internally Notes: svn path=/head/; revision=303872
2012-09-08Hook security/libotr3 up, and move ports that depend on the old versionDoug Barton4-15/+10
to this new dependency. Notes: svn path=/head/; revision=303871
2012-09-08Mark as broken on sparc64.Mark Linimon1-1/+7
Hat: portmgr Notes: svn path=/head/; revision=303870
2012-09-08Copy libotr to libotr3 so that ports that still rely on the old,Doug Barton4-0/+81
incompatible version can continue uninterrupted until they upgrade. Notes: svn path=/head/; revision=303869
2012-09-08Add vim specific modeline to help users write correct vuxmlEitan Adler1-0/+1
Submitted by: bdrewery Notes: svn path=/head/; revision=303851
2012-09-07Document the vulnerability that led to emacs 24.2Raphael Kubo da Costa1-0/+40
Notes: svn path=/head/; revision=303835
2012-09-07- Update firefox to 15.0.1Florian Smeets2-9/+15
- Sync changes from gecko repository@r995 general - don't specify prefix for libevent when using pkg-config - ia64 and sparc64 use 8k pagesize by default - add visibility hack for clang 3.2 with libc++ - fix build using clang 3.2 (on FreeBSD 10-CURRENT) - rename a few more patches to ease tracking of bugzilla bugs www/seamonkey - unbreak unsetting LDAP and MAILNEWS options after bug 707305 - use compile time debugging WITH_DEBUG security/nss - unbreak install WITH_DEBUG - unbreak powerpc64 devel/nspr - use absolute paths when specifiying srcdir to make gdb(1) happy In collaboration with: andreast, zeising, Jan Beich <jbeich@tormail.org> Notes: svn path=/head/; revision=303831
2012-09-07Add a sanity check to ensure vuxml is actually installed prior to performingEitan Adler1-0/+5
the tidy step in validate. This step actually requires just the dependancies but the full validate requires that vuxml be installed. Reviewed by: simon Approved by: secteam (implicit) Notes: svn path=/head/; revision=303830
2012-09-07- Update to 3.4.2 [1] [2] [3]Steve Wills1-0/+29
- Document security issue [4] PR: ports/171397 [1] PR: ports/171404 [2] PR: ports/171405 [3] Submitted by: Yuan-Chung Hsiao <ychsiao@ychsiao.org> (maintainer) [1] Submitted by: Joe Horn <joehorn@gmail.com> (maintainer) [2] [3] Reviewed by: eadler [4] Security: 30149157-f926-11e1-95cd-001fd0af1a4c Notes: svn path=/head/; revision=303824
2012-09-07Mark as broken on powerpc only on -current. This will unblock gnome,Mark Linimon1-0/+3
kde, and other builds on 8 and 9. Hat: portmgr Notes: svn path=/head/; revision=303822
2012-09-06Update to 20120906Renato Botelho2-3/+3
Notes: svn path=/head/; revision=303783
2012-09-06VuXML: add <modified> tag for Wireshark's entry for CVE-2012-3548Eygene Ryabinkin1-0/+1
Notes: svn path=/head/; revision=303744
2012-09-06- Update to 4.07Ryan Steinmetz2-3/+3
Notes: svn path=/head/; revision=303733
2012-09-06- Update to 1.3.1Ryan Steinmetz2-4/+3
Notes: svn path=/head/; revision=303732
2012-09-06- Add in workaround for compatibility with libhtp >= 0.3Ryan Steinmetz2-0/+12
- Bump PORTREVISION Notes: svn path=/head/; revision=303731
2012-09-05Change the wireshark version for the DRDA fix.Joe Marcus Clarke1-4/+4
Notes: svn path=/head/; revision=303712
2012-09-05Remove useless metadata from ports I created.Dag-Erling Smørgrav1-5/+0
Notes: svn path=/head/; revision=303710
2012-09-05Update 0.13.1 --> 0.15.1Cy Schubert2-4/+3
Notes: svn path=/head/; revision=303708
2012-09-05- Update to 0.23Frederic Culot2-3/+3
Changes: http://search.cpan.org/dist/Authen-TacacsPlus/Changes Notes: svn path=/head/; revision=303701
2012-09-05VuXML: document XSS in MoinMoin before 1.9.4 via RST parserEygene Ryabinkin1-0/+32
Notes: svn path=/head/; revision=303700
2012-09-05VuXML: document wrong group ACL processing in MoinMoinEygene Ryabinkin1-0/+44
Notes: svn path=/head/; revision=303695
2012-09-05PHP 5.x: document header splitting vulnerabilityEygene Ryabinkin1-0/+43
There is a related CVE number (CVE-2012-4388), but there is no current consensus about it: http://article.gmane.org/gmane.comp.security.oss.general/8303 Notes: svn path=/head/; revision=303685
2012-09-04Modify fetchmail vuln' URLs to established site.Matthias Andree1-23/+24
While at it, adjust the two oldest topics to current format, for uniformity, on, for instance, http://www.vuxml.org/freebsd/pkg-fetchmail.html. Notes: svn path=/head/; revision=303672
2012-09-04Chase Emacs updatesAshish SHUKLA2-2/+2
Notes: svn path=/head/; revision=303664
2012-09-04security/squidclamav: fix DoS and XSS vulnerabilitiesEygene Ryabinkin4-1/+198
Apply upstream patches for CVE-2012-3501 and CVE-2012-4667. Security: http://www.vuxml.org/freebsd/ce680f0a-eea6-11e1-8bd8-0022156e8794.html Security: http://www.vuxml.org/freebsd/8defa0f9-ee8a-11e1-8bd8-0022156e8794.html PR: 171022 QA page: http://codelabs.ru/fbsd/ports/qa/security/squidclamav/5.7_1 Approved by: maintainer timeout (1 week) Notes: svn path=/head/; revision=303652
2012-09-04Mark as broken on powerpc and sparc64 (and, presumably, ia64).Mark Linimon2-1/+11
Hat: portmgr Notes: svn path=/head/; revision=303640
2012-09-02- Add patch to fix getsubopt() parsingJohan van Selst2-7/+257
Fixes setting of "realm-kdc" and "server-realm" http://lists.gnu.org/archive/html/help-shishi/2012-08/msg00073.html - Bump PORTREVISION - Reduce Makefile header Submitted by: Mats Erik Andersson <openbsd@gisladisker.se> Notes: svn path=/head/; revision=303539
2012-09-02Inform the community about a recent bitcoin DoS vuln.Eitan Adler1-0/+26
Reviewed by: swills Notes: svn path=/head/; revision=303527
2012-09-01- update bugzilla bugzilla3 and bugzilla42Olli Hauer1-0/+50
- use new bugzilla@ address (members skv@, tota@, ohauer@) - patch russian/japanese/german bugzilla and bugzilla templates so the reflect the security updates in the original templates - patch german/bugzilla42 templates - adopt new Makefile header vuxml: 6ad18fe5-f469-11e1-920d-20cf30e32f6d CVE: CVE-2012-3981 https://bugzilla.mozilla.org/show_bug.cgi?id=785470 https://bugzilla.mozilla.org/show_bug.cgi?id=785522 https://bugzilla.mozilla.org/show_bug.cgi?id=785511 Notes: svn path=/head/; revision=303519
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-06 07:42:16 +0000