cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
133,857 Commits 1 Branch 0 Tags
Commit Graph

693 Commits

Author SHA1 Message Date
jca
f5d177f05b Remove insecure nxssh and obsolete opennx 
nxssh is based on an old copy of OpenSSH 4.7.  Upstream stopped
supporting it and it hasn't been updated since import, so it's likely
affected by all the issues listed on
https://www.openssh.com/security.html since 2008.

opennx is a graphical client that uses nxssh under the hood.  It is dead
upstream, hasn't been updated since 2009 and won't build with wxWidgets3.

ok kn@
 2018-12-17 01:01:24 +00:00
danj
453877888b Update to haproxy-1.8.15 
2 CVEs are fixed with this update
 2018-12-15 20:25:54 +00:00
danj
4947645f4b Add sqlite3 in my $cve 
ok espie@
 2018-12-15 15:37:28 +00:00
danj
15be97aaf7 Register sickbeard removal 2018-12-14 15:33:06 +00:00
sthen
c773e6f025 more quirks for PHP pecl ports; 
- obsolete_reason for 5.6-only ports,
- update old "rename pecl-foo -> pecl56-foo" entries to use pecl71-foo
- add new "rename pecl56/70-foo -> pecl71-foo" entries to make sure
extensions that were installed standalone rather than as a dependency
of another port get updated
 2018-12-12 23:44:32 +00:00
kn
a53a82bb59 register p5-Archive-Zip CVE 2018-12-11 21:50:02 +00:00
sthen
305fd3d250 drop ports/flavours requiring php 5.6 which is about to stop receiving 
security fixes.
 2018-12-11 12:07:47 +00:00
sthen
fb7af62aa0 quirk for php-librdf 2018-12-10 13:23:12 +00:00
ajacoutot
1510e716a8 Register owncloud removal. 2018-12-09 13:49:48 +00:00
ajacoutot
feb2b9b5fa Register phantomjs and casperjs removal. 2018-12-09 13:36:19 +00:00
semarie
0fbcf96bc2 remove the removal of tryton, trytond 
ok ajacoutot@
 2018-12-08 19:16:22 +00:00
jca
cafc9360c8 Retire net/dysnomia 
Probably useful in 2007 but the port hasn't been updated since.  Deezer
has likely changed its public facing API, and the software now crashes
whenever a search is started.  Time to take it behind the barn.

ok fcambus@ solene@ ajacoutot@
 2018-12-08 18:15:26 +00:00
bket
75cbce8233 Register mbedtls CVE 2018-12-07 13:15:32 +00:00
ajacoutot
983b1d7e77 Register libepc removal. 2018-12-06 08:54:28 +00:00
danj
0981d95b1c Register pgsql 10.6 as it fixes CVE-2018-16850 
It is still broken on i386 but there won't be any bulk until it's fixed
 2018-12-03 20:32:50 +00:00
pvk
2c1742dd90 Remove sysutils/x-pack: not used since ELK 6.3 
ok sthen@
 2018-12-03 18:27:31 +00:00
martijn
26883e430b Remove directoryassistant. It doesn't seem to work with either the old 
py-ldap or the new py-ldap 3.1.0. Upstream also appears dead.

OK sthen@
 2018-12-01 12:59:20 +00:00
sthen
b10fd9f804 add an $obsolete_reason for p5-Math-Pari and dependent ports, 
reminded by naddy
 2018-11-27 15:24:15 +00:00
danj
c05a1b9e6f py-libmagic has been superseded by py-magic 
ok sthen@ semarie@
 2018-11-27 13:54:15 +00:00
jca
6a0046aa47 Remove py-czmq 
Broken since the move to czmq-4.0.0, no longer maintained upstream.
ok sthen@
 2018-11-27 08:30:15 +00:00
danj
f61d3f24d5 Register py-pafy pkgname change 2018-11-25 20:35:18 +00:00
jca
94109167ea Register icecast CVE 2018-11-20 17:35:16 +00:00
juanfra
b5180b8110 hg-git doesn't work with mercurial 4.8. 2018-11-17 21:00:18 +00:00
danj
ea49dbfdac Register ansible 2.7.1 as it solves a security issue. 2018-11-14 17:01:23 +00:00
bentley
10caa924a3 Fix misnamed package: apertium-es-ast_NO-PN -> apertium-es-ast. 2018-11-13 05:15:55 +00:00
kn
c4b4795ef8 Register libgit2 CVEs 2018-11-10 19:43:12 +00:00
landry
722413b52e add quirk for nginx cvs 2018-11-10 12:36:05 +00:00
jeremy
a4ea42e298 Add CVE entry for ruby-rack 
Reminded by and OK rsadowski@
 2018-11-09 21:22:17 +00:00
naddy
0364fc06ee update net/curl entry in CVE table 2018-11-07 20:37:10 +00:00
sthen
7fc711d6b5 add powerdns-<4.1.5 to cve table 2018-11-06 22:53:50 +00:00
danj
c160baed91 Register py-keyczar removal 2018-11-04 21:39:46 +00:00
danj
9c15ba1763 Register py-requests update 
ok sthen@
 2018-11-02 14:29:35 +00:00
juanfra
503aadb5c1 Delete hgnested. It doesn't work with mercurial 4.5 or 4.8, and 
nothing depends on it. Newer tagged releases are still broken with 4.5
or 4.8.
 2018-11-01 16:59:18 +00:00
juanfra
6fb6ec3327 py-hgsubversion is broken with mercurial 4.5 and 4.8. The latest 
version available upstream doesn't work with mercurial 4.8.
 2018-11-01 15:14:10 +00:00
juanfra
bf783c19e8 Adding the correct packages. I'm stupid. 2018-10-31 23:01:55 +00:00
juanfra
7690f29707 Remove hgtools. The project is defunct. OK benoit@ (MAINTAINER). 2018-10-31 22:59:05 +00:00
jeremy
be0577d34c Mark ruby23-* ports as obsolete 2018-10-29 14:43:06 +00:00
bentley
f7b3edf8e9 Rename valyriatear package to lowercase. 
The package name used to be lowercase, but inadvertently gained
capitals with the 1.0.0 update.

ok bcallah@ (MAINTAINER)
 2018-10-27 07:22:47 +00:00
sthen
07bca3ff89 cve_quirks for cabextract, libmspack, roundcube 2018-10-26 20:58:32 +00:00
sthen
11bc213e3b quirk to mention dovecot-antispam removal 2018-10-24 19:49:12 +00:00
jasper
4fce7d75a1 register py-raet removal 2018-10-23 18:58:56 +00:00
naddy
e6b8da349b Remove sysutils/memtest86+. 
It would require work to adapt to lld, but it doesn't even work on
many recent-ish systems and "being able to build this from OpenBSD
doesn't seem particularly useful".
ok kn@ sthen@
 2018-10-22 20:27:44 +00:00
jeremy
421cf5190e Add CVE entries for ruby 2.3, 2.4, 2.5 
Reminded by espie@
 2018-10-22 15:18:56 +00:00
danj
9ea2b4cdae Register py-dtopt removal 
From Elias Mariani
 2018-10-18 23:37:14 +00:00
espie
780865564e update to 7.60 
tweak plist according to update-plist improvements
(DRUPAL-SA-CONTRIB-2018-006)
 2018-10-18 10:28:36 +00:00
rsadowski
e737b1be6d register tinc 1.0.35 
CVE-2018-16737, CVE-2018-16738, CVE-2018-16758

Tweak and OK sthen@, ok jca@
 2018-10-09 20:34:40 +00:00
danj
06182b8b9d Register git 2.19.1 as it solves a security issue. 
Tweak and ok jca@, ok naddy@
 2018-10-09 15:31:50 +00:00
espie
0efd31a768 compact form of cve for multi-packages 
okay sthen@
 2018-10-08 12:08:08 +00:00
sthen
23ed3bfa23 add quirk for the clamav update. 
get rid of the separate blocks for multipackage things and merge into one big
block and sort the whole lot, new entries for the same port need to replace old
ones so make it easier to find them.

remove the entries for dead (already removed) ports.
 2018-10-04 09:25:19 +00:00
juanfra
d6bc41db1c Add the mercurial update to quirks. 2018-10-02 14:08:30 +00:00