Oliver Eikemeier
61e848dda0
correct topic of eda0ade6-f281-11d8-81b0-000347a4fa7d
2004-08-20 08:31:09 +00:00
Oliver Eikemeier
e510a55afd
QT 3.x BMP (and possibly other graphics formats) heap-based overflow
2004-08-20 08:28:33 +00:00
Oliver Eikemeier
aeb091ef05
potential security flaws in mod_ssl
2004-08-18 20:01:44 +00:00
Oliver Eikemeier
21e5e83c57
move a800386e-ef7e-11d8-81b0-000347a4fa7d to xml
2004-08-17 07:56:37 +00:00
Oliver Eikemeier
539307be33
ruby CGI::Session insecure file creation
2004-08-16 12:23:39 +00:00
Oliver Eikemeier
01977fcaea
Don't check the base system when PACKAGE_BUILDING
2004-08-16 02:24:06 +00:00
Oliver Eikemeier
ba24268c8f
multiple phpGroupWare vulnerabilities
2004-08-15 23:44:59 +00:00
Oliver Eikemeier
137b94aa13
phpGedView, jftpgw
2004-08-15 17:22:09 +00:00
Oliver Eikemeier
153f0ae562
Remove -a from the default fetch(1) flags, so that the daily security
...
report is not delayed when the distribution site is down.
Submitted by: kuriyama
2004-08-15 12:26:16 +00:00
Oliver Eikemeier
48af6951c8
apply xlist not to the own files
2004-08-13 17:51:46 +00:00
Oliver Eikemeier
40f8b91153
fix man page nits,
...
modify the vulnerability report depending on -q/-v (experimental)
PR: 69935, 68942
Submitted by: Chris Pepper <pepper@reppep.com>, Johan Karlsson <k@numeri.campus.luth.se>
2004-08-13 17:07:05 +00:00
Oliver Eikemeier
9665fd1a09
update to 20040811: fix compilation with GCC 3.4
2004-08-13 17:01:01 +00:00
Oliver Eikemeier
ea84ffa8c6
fix some vuxml duplicates, add sympa unauthorized list creation
2004-08-13 16:48:12 +00:00
Michael Nottebrock
57447419e7
Add another entry for kdelibs3 due to another missed patch.
2004-08-12 21:32:15 +00:00
Michael Nottebrock
3f9cf344ae
Correct entries for recent kde vuln's and add new entry for kdelibs
...
(3.2.3_3 didn't have all patches).
2004-08-12 21:17:31 +00:00
Oliver Eikemeier
a49bbe0700
fix security hole in non-chroot rsync daemon.
...
<http://www.freebsd.org/ports/portaudit/2689f4cb-ec4c-11d8-9440-000347a4fa7d.html >
2004-08-12 10:45:27 +00:00
Oliver Eikemeier
9fcf94529c
9fb5bb32-d6fa-11d8-b479-02e0185c0b53 is a duplicate of 40800696-c3b0-11d8-864c-02e0185c0b53
2004-08-12 00:08:05 +00:00
Oliver Eikemeier
ab808db926
f72ccf7c-e607-11d8-9b0a-000347a4fa7d is a duplicate of 6f955451-ba54-11d8-b88c-000d610a3b12, move references
2004-08-11 22:57:51 +00:00
Michael Nottebrock
461f3c5adb
Factor out all but one of the build switches of the KDE main module ports
...
into separate ports. The OPTIONS will remain as of yet and trigger dependencies
now, for easy transition.
Update KOffice to version 1.3.2.
Add patches to fix a number of issues, including:
- fix kxkb on Xorg
- fix kdemultimedia WITH_MPEGLIB (now mpeglib_artsplug) compilation on gcc 3.4.2
with optimizations greater than -O
Add security related patches and entries to portaudit.txt.
2004-08-11 01:27:37 +00:00
Oliver Eikemeier
0826a8f01d
libine "vcd:" input source buffer overflow
2004-08-10 08:50:27 +00:00
Sergey Matveychuk
99854e3fcc
Update to 0.1.9
...
This version corrects bus faults introduced in ver 0.1.8.
Also corrects two pkg-plist errors.
PR: ports/70239
Submitted by: maintainer
2004-08-10 05:34:34 +00:00
Oliver Eikemeier
9b87366d7a
SpamAssassin DoS & cfengine authentication heap corruption
2004-08-10 00:56:37 +00:00
Sergey Matveychuk
9c2f4f169f
Update to 0.1.8.
...
Fully PREFIX compliant now.
Complete run on CURRENT.
PR: ports/70190
Submitted by: maintainer
2004-08-09 08:23:07 +00:00
Thierry Thomas
577a6350ba
Upgrade to 0.1.7.
...
PR: ports/70136
Submitted by: maintainer.
2004-08-08 15:03:20 +00:00
Thierry Thomas
5127aad1ed
Version 0.5 release.
...
- Bugfix: sometimes the ports version was wrong;
- A default cvs server can be set;
- Port revision is added to port version number.
PR: 70162
Submitted by: maintainer.
2004-08-08 14:15:54 +00:00
Oliver Eikemeier
97a39effba
CVStrac arbitrary remote code execution
2004-08-07 09:09:26 +00:00
Sergei Kolobov
511d523c92
- Update to 0.63 (see NEWS for list of changes)
...
- Make devel/newfile dependency optional under WITH_NEWFILE knob:
"port create" command is only useful to some porttools users, not all
2004-08-06 22:28:42 +00:00
Oliver Eikemeier
4192752964
fold entry 7eded4b8-e6fe-11d8-b12f-0a001f31891a into 2de14f7a-dad9-11d8-b59a-00061bc2ad93
2004-08-06 12:37:01 +00:00
Dirk Meyer
3e4de141f0
putty local command execution
2004-08-06 05:41:01 +00:00
Oliver Eikemeier
e9051fdc9c
move abe47a5a-e23c-11d8-9b0a-000347a4fa7d to vuxml, add mozilla to the list of vulnerable ports
2004-08-05 23:35:33 +00:00
Norikatsu Shigemura
828d4f6cc8
o Security Update to 2.2.10-ja-1.0.
...
o rcNG-ify obtained from net/samba3.
PR: ports/70034
Submitted by: NAKAJI Hiroyuki <nakaji@jp.freebsd.org> (maintainer)
2004-08-05 16:45:52 +00:00
Oliver Eikemeier
6e03db2897
add Opera "location" object write access vulnerability
2004-08-05 15:36:32 +00:00
Oliver Eikemeier
34ec825973
move f9e3e60b-e650-11d8-9b0a-000347a4fa7d to vuxml, add mozilla to the list of vulnerable ports
2004-08-05 14:27:36 +00:00
Dirk Meyer
13fef83a69
back out last commit
2004-08-05 04:33:45 +00:00
Dirk Meyer
3e024e4469
putty local command execution
2004-08-05 04:31:41 +00:00
Oliver Eikemeier
44cc23b9f5
libPNG stack-based buffer overflow and other code concerns
2004-08-04 20:14:27 +00:00
Oliver Eikemeier
d2a2dca401
Acrobat Reader handling of malformed uuencoded pdf files
2004-08-04 11:43:15 +00:00
Oliver Eikemeier
c7b1c1500e
Squid NTLM authentication helper overflow
2004-08-04 11:18:53 +00:00
Oliver Eikemeier
bbf3f18c40
ripMIME attachment extraction bypass
2004-08-04 11:10:43 +00:00
Joe Marcus Clarke
7dc9739e78
Update to a snapshot of CVS from today to fix the build with GCC 3.4.
...
Reported by: pointyhat
Obtained from: FreeBSD CVS
2004-08-02 20:41:15 +00:00
Oliver Eikemeier
85c0ee5920
GnuTLS certificate chain verification DoS
2004-08-02 17:54:10 +00:00
Sergey Matveychuk
3f5ee407b0
Add portmanager 0.1.3, freeBSD port management software.
2004-07-31 17:18:26 +00:00
Oliver Eikemeier
75d727f1ba
phpMyAdmin configuration manipulation and code injection
2004-07-31 15:00:41 +00:00
Thierry Thomas
a7078ee1b7
Register a vulnerability in mail/imp3.
...
This vulnerability only exists when using the Internet Explorer to
access IMP and only when using the inline MIME viewer for HTML messages.
2004-07-30 17:28:06 +00:00
Oliver Eikemeier
28dfde096c
Mozilla Firefox certificate spoofing
2004-07-30 15:28:22 +00:00
Oliver Eikemeier
249e0ee82b
DansGuardian banned extension filter bypass vulnerability
2004-07-30 10:00:44 +00:00
Oliver Eikemeier
0ba870a58c
add a reference to the SoX buffer overflow entry
2004-07-29 08:15:20 +00:00
Oliver Eikemeier
f6e55182ee
SoX buffer overflows when handling .WAV files
2004-07-28 20:33:37 +00:00
Oliver Eikemeier
a62b98fbed
LCDProc buffer overflow/format string vulnerabilities
2004-07-28 09:34:18 +00:00
Oliver Eikemeier
b050b96032
pavuk digest auth buffer overflow
2004-07-27 10:40:29 +00:00