cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
166,499 Commits 1 Branch 0 Tags 544 MiB
f4d30a730a
Commit Graph

7495 Commits

Author SHA1 Message Date
sthen
bea7c07730 update to ClamAV-0.105.0, this now requires rust. The standard upstream 
build fails on big-endian systems - there's support for generating "fuzzy
hash subsignatures" used to detect "images known to be used in phishing
campaigns or otherwise used when distributing malware" - openexr support
in the library used for this is currently little-endian only, so I've
patched to disable openexr in this.
 2022-05-26 13:25:39 +00:00
ajacoutot
a78f378ee3 Use daemon_execdir. 2022-05-26 11:27:55 +00:00
jeremy
6f0652dda0 Update to bcrypt gem 3.1.18 2022-05-25 20:02:45 +00:00
ajacoutot
2d19a6a7c9 /usr/local -> TRUEPREFIX 2022-05-24 18:41:36 +00:00
gsoares
4c07a9b0fd update to stunnel-5.64 2022-05-24 13:00:25 +00:00
sthen
8e00ba9c5b update to pecl-mcrypt-1.0.5 2022-05-24 12:36:16 +00:00
kmos
e14bede6b9 Perform the usual C99 dance when using base-gcc 
Fixes the build on sparc64
 2022-05-23 20:23:02 +00:00
ajacoutot
3d184e0dca Fix and extend unveil rules for chromium, iridium and firefox. 
prodded by Joel Carnat
ok rsadowski@ (maintainer)
 2022-05-23 09:39:01 +00:00
sthen
ea47ac578a update to sqlmap-1.6.5, from portno12 a protonmail.com 2022-05-22 11:16:33 +00:00
ajacoutot
6fdb2943f8 No need for handcrafted rc_start(), use daemon_flags. 2022-05-21 11:48:36 +00:00
ajacoutot
4043dab9cc Remove manually crafted rc_start and use daemon_flags for the same effect. 2022-05-21 11:16:52 +00:00
ajacoutot
9e45440fb2 Use the rc_exec function instead of ${rcexec}. 2022-05-21 10:50:49 +00:00
ajacoutot
b78afa8b59 Missing BDEP on security/cyrus-sasl2. 2022-05-19 09:16:13 +00:00
bket
e4e91dd5bb +cyrus-sasl-xoauth2 2022-05-18 16:44:20 +00:00
bket
3a0658e875 Import cyrus-sasl-xoauth2 
cyrus-sasl-xoauth2 is a plugin implementation of XOAUTH2 for cyrus-sasl.

OK sthen@
 2022-05-18 16:39:59 +00:00
jmatthew
240cec0a64 Update to pivy 0.9.0, which is based on current LibreSSL and OpenSSH so 
we can drop some patches and remove BROKEN.
 2022-05-18 04:16:41 +00:00
sthen
657832fffa update to py3-paramiko-2.11.0 2022-05-17 08:35:10 +00:00
tb
96b24d7bf2 security/suricata: avoid hidden dependency on textproc/hyperscan by 
making sure it's not picked up by configure. Regen patches.

ok gonzalo
 2022-05-16 20:12:15 +00:00
op
7cce72959d update security/passphraseme to 0.1.5 
diff from maintainer George Rosamond, thanks!

Upstream doesn't seem to provide a changelog: looking at the diff the
changes are '-' used as word separator by default now, the usage of
eff_short_wordlist_1.txt by default instead of eff_large_wordlist.txt
and the addition of -l/--large to select the eff large wordlist.
 2022-05-15 17:43:21 +00:00
tb
ffef650eba Update to tlsfuzzer 20220512 2022-05-14 17:53:57 +00:00
sthen
e04091d691 mark vaultwarden BROKEN-i386 
raw-cpuid-10.2.0/src/lib.rs:80:37 "could not find `arch` in `self`"
 2022-05-14 14:12:30 +00:00
sthen
2034188a5b update to libretls-3.5.2 2022-05-14 13:56:36 +00:00
sthen
a5fba9605a update to pcsc-lite-1.9.6 2022-05-14 13:51:28 +00:00
sthen
9871a39a16 update to pgpdump-0.35, enable tests 2022-05-14 13:50:25 +00:00
ajacoutot
5b40f975c7 Update to gnutls-3.7.5. 2022-05-13 23:34:48 +00:00
sthen
ed5f85ec44 update to xmlsec-1.2.34 2022-05-12 21:19:06 +00:00
tb
fc94d6a93b Update to py-tlsfuzzer 20220511 2022-05-11 22:57:38 +00:00
denis
85c0a5246f _vaultwarden userid is 879 not 878 2022-05-11 18:19:17 +00:00
sthen
1085a386a4 link vaultwarden flavours to the build 2022-05-11 15:16:24 +00:00
denis
4b69e2dc44 + www/vaultwarden-web 
+ security/vaultwarden

Also add user _vaultwarden
 2022-05-11 12:13:09 +00:00
denis
132a0f021c import security/vaultwarden v1.24.0, OK abieber@, denis@ 
Unofficial Bitwarden compatible server written in Rust and compatible
with upstream Bitwarden clients.
Full implementation of Bitwarden API is provided including:
- Organizations support
- Attachments
- Vault API support
- Serving the static files for Vault interface
- Website icons API
- Authenticator and U2F support
- YubiKey and Duo support
 2022-05-11 11:05:40 +00:00
tb
141c47f561 Update to py-tlsfuzzer 20220510 2022-05-10 19:29:03 +00:00
jeremy
1026c9569a Bump ports after switching default ruby version to 3.1 
OK sthen@, tb@
 2022-05-05 15:41:56 +00:00
sthen
eb20b9aa41 update to clamav-0.104.3 
CVE-2022-20803: Fixed a possible double-free vulnerability in the OLE2 file parser.
Issue affects versions 0.104.0 through 0.104.2.

CVE-2022-20770: Fixed a possible infinite loop vulnerability in the CHM file parser.
Issue affects versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions.

CVE-2022-20796: Fixed a possible NULL-pointer dereference crash in the scan verdict cache check.
Issue affects versions 0.103.4, 0.103.5, 0.104.1, and 0.104.2.

CVE-2022-20771: Fixed a possible infinite loop vulnerability in the TIFF file parser.
Issue affects versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions.

CVE-2022-20785: Fixed a possible memory leak in the HTML file parser / Javascript normalizer.
Issue affects versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions.

CVE-2022-20792: Fixed a possible multi-byte heap buffer overflow write vulnerability in the
signature database load module.
Issue affects versions 0.104.0 through 0.104.2 and LTS version 0.103.5 and prior versions.
 2022-05-05 10:57:55 +00:00
tb
678cbcf4a0 OpenSSL 3.0: missed minor bump due to addition of OPENSSL_str{,n}casecmp() 2022-05-03 15:45:56 +00:00
tb
6c8dd7382a OpenSSL 1.1: bump to be ahead of -stable 2022-05-03 15:28:19 +00:00
tb
4713b8f617 OpenSSL 3.0: bump to be ahead of -stable 2022-05-03 15:27:52 +00:00
tb
fec1a00167 sslscan: bump after openssl 1.1.1 update (static linking) 2022-05-03 15:15:11 +00:00
tb
5d93a521de Update to OpenSSL 1.1.1o 
c_rehash command injection
https://www.openssl.org/news/secadv/20220503.txt
 2022-05-03 15:14:28 +00:00
tb
b35a7fb04e Update to openssl 3.0.3 
c_rehash command injection, OCSP basic verify, and a few low severity
issues.

https://www.openssl.org/news/secadv/20220503.txt
 2022-05-03 15:13:11 +00:00
landry
fe2614a465 security/nss: update to 3.78 
see https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_78.html
 2022-05-03 13:33:11 +00:00
sthen
ea4f79d360 update to py3-cryptography-37.0.1 2022-05-03 07:59:09 +00:00
sthen
abb59a481b update to py3-bcrypt-3.2.2 2022-05-03 07:57:42 +00:00
jca
72301992d8 Update to gnupg-2.2.35 
ChangeLog: https://dev.gnupg.org/T5928

Tests & ok bket@ gnezdo@

Since the question came up: we're staying on the 2.2 LTS branch as long
as there is no adamant reason to switch to the public testing 2.3
release, and as long as 2.4 hasn't been published.  For more information
about the release scheme please refer to the gnupg-2.3.0 announcement:

  https://lists.gnupg.org/pipermail/gnupg-announce/2021q2/000458.html
 2022-04-30 10:14:19 +00:00
rsadowski
06fc471d91 Update keepassxc to 2.7.1 2022-04-30 10:12:21 +00:00
pvk
345483cf06 Update vault 1.10.1 -> 1.10.2 
Changelog: https://github.com/hashicorp/vault/blob/main/CHANGELOG.md#1102
 2022-04-30 00:50:14 +00:00
sthen
3129dea696 update to py3-cryptography-37.0.0 2022-04-28 17:32:57 +00:00
benoit
1bc6aed185 Update to py-paramiko-2.10.4, drop maintainership. 2022-04-28 07:42:46 +00:00
pvk
cd426c2a54 Update vault 1.10.0 -> 1.10.1 
Changelog: https://github.com/hashicorp/vault/blob/main/CHANGELOG.md#1101
 2022-04-26 21:45:23 +00:00
jeremy
5f319fbf6d Stop building ruby27 ports by default 
Ruby 2.7 is now in security maintenance mode, so per our Ruby support
policy, we will no longer build ruby27 packages by default.
 2022-04-22 21:00:59 +00:00