cpet/freebsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
106,046 Commits 38 Branches 77 Tags 2.5 GiB
8d531acb37
Commit Graph

593 Commits

Author SHA1 Message Date
Oliver Eikemeier
2cbfca83a7 wv library datetime field buffer overflow 2004-07-14 06:56:16 +00:00
Oliver Eikemeier
69227d213a multiple vulnerabilities in Bugzilla 2004-07-13 23:47:33 +00:00
Oliver Eikemeier
76de274928 check for a working tr(1). 2004-07-13 19:36:15 +00:00
Akinori MUSHA
463ee95f1c Add a patch to read the index file via sort(1) instead of reading 
directly to avoid core dump.
 2004-07-12 16:12:47 +00:00
Oliver Eikemeier
d09272bb2f correct vulnerable version of linux-png and add a reference 2004-07-11 12:09:03 +00:00
Oliver Eikemeier
53eb6314b5 libpng row buffer overflow 2004-07-11 11:18:58 +00:00
Oliver Eikemeier
070d49a73b typo in 'make master-sites-all' 2004-07-10 11:54:57 +00:00
Oliver Eikemeier
04ded1874e add some references 2004-07-09 14:51:16 +00:00
Oliver Eikemeier
4db3287849 FWIIW, enable the use of 
make DISABLE_SIZE=yes checkdistsites
to check for corrupted files on sites that don't support SIZE
(the files are unfetchable from these sites anyway)
 2004-07-08 23:30:04 +00:00
Oliver Eikemeier
5f1e2eed8c move e5e2883d-ceb9-11d8-8898-000d6111a684 to vuln.xml 2004-07-08 14:24:07 +00:00
Oliver Eikemeier
512239b93f add targets master-sites-all, master-sites, patch-sites-all, patch-sites 
which print a sorted list of the respective sites (used e.g. by FreshPorts)
 2004-07-07 14:51:17 +00:00
Oliver Eikemeier
e41c0a0867 fix a warning when GeoIP can't find the country for a site 2004-07-07 14:48:44 +00:00
Oliver Eikemeier
ffacc93b14 eliminate some verbatim uses of mktemp and sort 
PR:		62298
 2004-07-07 09:55:56 +00:00
Akinori MUSHA
be40c29b61 Fix a bug with -P when there are more than one binary package file for 
a package to install or upgrade.

PR:		ports/68598
Submitted by:	Victor Prylipko <vic@liniya.ru>
Bug traced by:	Andrew Bliznak <andrew@ort.lviv.net>
 2004-07-06 19:32:53 +00:00
Oliver Eikemeier
83eeebbaf9 add some references 2004-07-06 14:52:44 +00:00
Oliver Eikemeier
193ffbdfe8 Add devel/portmk, a place where bsd.port.mk development can happen. 2004-07-06 12:41:03 +00:00
Oliver Eikemeier
2fd042326d MySQL versions < 4.1 seem to be unaffected 
Reported by:	Alexander Vasenin <blacksir@number.ru>
 2004-07-06 07:17:53 +00:00
Joe Marcus Clarke
2e3ec09d45 Update to today's pkg_install from HEAD. 2004-07-06 00:17:35 +00:00
Oliver Eikemeier
3c0632af2c add MySQL server authentication bypass / buffer overflow 2004-07-05 19:45:32 +00:00
Oliver Eikemeier
1a7801a6e9 Mark 4aec9d58-ce7b-11d8-858d-000d610a3b12 as a duplicate of the 
already existing c63936c1-caed-11d8-8898-000d6111a684.
 2004-07-05 15:30:35 +00:00
Dag-Erling Smørgrav
80b65796e7 Perform plist substitution for -L. 
Fix bug in origin determination.
 2004-07-05 11:48:35 +00:00
Tom Rhodes
5538ca7e08 Move phpnuke vulnerabilities to VuXML. 2004-07-03 06:48:34 +00:00
Kris Kennaway
b408925a50 Use full path to portsdb instead of assuming ${LOCALBASE}/sbin is in PATH 2004-07-02 08:13:07 +00:00
Akinori MUSHA
46edc73a84 Apply a patch to avoid "undefined method `each' for nil:NilClass" 
error when such configuration variable as MAKE_ARGS, typically
BEFORE_DEINSTALL is not defined.

Reported by:	krion, Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
 2004-07-02 04:23:19 +00:00
Oliver Eikemeier
172c204547 move "phpMyAdmin code injection" to vuxml 2004-07-02 00:48:55 +00:00
Oliver Eikemeier
580eeeff30 Test OSVERSION instead of pkg_info -P to enable cross-version builds 
Requested by:	kris
 2004-07-02 00:31:18 +00:00
Oliver Eikemeier
6de9071e46 phpMyAdmin code injection 2004-07-01 19:03:36 +00:00
Oliver Eikemeier
2e23771c68 - update to version 0.5 
*** NOTE ***

The preferences file format has changed, as have the periodic.conf(5) names.
Normally the default settings should be adequate, except when you need to
configure a proxy. Use $PREFIX/etc/portaudit.conf.sample as an example.

- moved portaudit to sbin
- clean up, merging stuff into the portaudit script
- better return codes and errors to stderr
- -f can check stdin now
- dropped ports tree auditing
- merged the periodic(8) scripts into one
- run daily auditing as `nobody'
 2004-07-01 10:59:48 +00:00
Akinori MUSHA
8f484b7d54 Update to 20040701. New distfile. 
portupgrade:
  - Make -PP/--use-packages-only work better, just as I originally
    intended.  Now packages are correctly identified using
    pkg_info(1), "LATEST_LINK" files are also properly detected.
    Related informational messages have also been improved.

    It turned out that the LATEST_LINK/NO_LATEST_LINK detection was
    broken long ago and hasn't been working for long.

pkg_fetch(1):
  - Properly rename a "latest link" file with a full package name with
    version part.

pkgtools.conf(5):
  - Improve and unify the method for pattern matching in MAKE_ARGS,
    BEFOREBUILD, BEFOREDEINSTALL and AFTERINSTALL variables.

    This should fix some cases where it looks like MAKE_ARGS entries
    are ignored.
 2004-07-01 04:05:16 +00:00
Oliver Eikemeier
9bf7f5a9d0 - SSLtelnet remote format string vulnerability 
(guys, this is a public list)

- add some references
 2004-06-30 23:39:00 +00:00
Oliver Eikemeier
ccceaf623b update to 20040629: sync with -CURRENT 2004-06-30 10:31:45 +00:00
Oliver Eikemeier
f83bfb08cc add MIT Kerberos 5 krb5_aname_to_localname() buffer overflow 2004-06-29 10:33:03 +00:00
Oliver Eikemeier
cbfa0839a2 add isakmpd security association deletion vulnerability 2004-06-29 10:21:53 +00:00
Oliver Eikemeier
0f651b2743 add Apache input header folding DoS vulnerability 2004-06-28 22:09:24 +00:00
Oliver Eikemeier
0c0041370a xine-lib RTSP handling vulnerabilities 2004-06-28 09:55:46 +00:00
Tom Rhodes
4e1d155d33 Move MoinMoin entry to VuXML. 2004-06-28 03:58:47 +00:00
Oliver Eikemeier
8a65d874ab diversify url conversion 2004-06-28 01:16:35 +00:00
Joe Marcus Clarke
35c8dae828 Update to 2.6.6 
* Fix a typo in the libtool archive hint [1]
* Check for ports that have a poorly specified CONFLICTS line as well as ports
  that conflict with themselves [2]
* Check for proper handling of gconf schemas
* Check for explicit listing of %gconf keys in the plist

Spotted by:	lofi [1]
Submitted by:	eik [2]
 2004-06-27 20:58:47 +00:00
Oliver Eikemeier
9c7b32a018 add portaudit2vuxml.pl to easy the migration of entries to VuXML 2004-06-26 00:40:17 +00:00
Tom Rhodes
2da36a743f Add an entry for recent isc-dhcp3-server buffer overflows. 
Remove the one in portaudit.txt.
 2004-06-25 20:01:28 +00:00
Tom Rhodes
e28b04324b Move giFT-FastTrack to VuXML. 2004-06-25 17:18:57 +00:00
Oliver Eikemeier
44285aa4ba giFT-FastTrack remote DoS 2004-06-25 13:34:38 +00:00
Michael Landin
a9c369d7ef Add patch with bugfixes. 
- Fix chmod behavior
	- Ignore irrelevant directories
	- Index creation speedup

Bump PORTREVISION.

Submitted by:		Radim Kolar <hsn@netmag.cz>
 2004-06-25 13:11:30 +00:00
Oliver Eikemeier
627e20be53 Update to 0.2.2 
- correct some URLs
 2004-06-25 12:39:35 +00:00
Oliver Eikemeier
a77dbe0db0 correct rlpr version 2004-06-25 12:37:32 +00:00
Oliver Eikemeier
6a45552c43 Pure-FTPd DoS when the max number of connection is reached 2004-06-25 10:31:30 +00:00
Tom Rhodes
974bc49c9d Move the Gallery entry to VuXML. 2004-06-25 01:35:17 +00:00
Oliver Eikemeier
41c24e6c48 update to version 0.4.1 
Use
  portaudit [packagename ...]
to check if package is listed as vulnerable
 2004-06-25 01:21:20 +00:00
Oliver Eikemeier
979289bd12 rlpr local and remote exploitable buffer overflow (CAN-2004-0393, CAN-2004-0454) 2004-06-24 14:52:26 +00:00
Oliver Eikemeier
f78eb5764e CAN-2004-0451: format string vulnerabilities in sup 2004-06-24 11:23:32 +00:00