CVS log for ports/security/vuxml/vuln.xml
![[BACK]](/gifs/back.gif){kind=small}
Up to [FreeBSD] / ports / security / vuxml
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
Revision 1.2999: download - view: text, markup, annotated - select for diffs
Sun Apr 7 12:23:38 2013 UTC (6 weeks, 6 days ago) by svnexp
Branches: MAIN
CVS tags: HEAD
Diff to: previous 1.2998: preferred, colored
Changes since revision 1.2998: +1393 -806 lines
HACK: manual copy of vuxml data from svn to cvs
Revision 1.2998: download - view: text, markup, annotated - select for diffs
Tue Mar 19 13:53:26 2013 UTC (2 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2997: preferred, colored
Changes since revision 1.2997: +38 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314596 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2997: download - view: text, markup, annotated - select for diffs
Tue Mar 19 08:49:28 2013 UTC (2 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2996: preferred, colored
Changes since revision 1.2996: +38 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314559 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2996: download - view: text, markup, annotated - select for diffs
Sun Mar 17 07:23:08 2013 UTC (2 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2995: preferred, colored
Changes since revision 1.2995: +3 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314388 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2995: download - view: text, markup, annotated - select for diffs
Sat Mar 16 15:41:42 2013 UTC (2 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2994: preferred, colored
Changes since revision 1.2994: +7 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314303 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2994: download - view: text, markup, annotated - select for diffs
Thu Mar 14 13:48:09 2013 UTC (2 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2993: preferred, colored
Changes since revision 1.2993: +36 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314141 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2993: download - view: text, markup, annotated - select for diffs
Wed Mar 13 05:25:31 2013 UTC (2 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2992: preferred, colored
Changes since revision 1.2992: +30 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314021 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2992: download - view: text, markup, annotated - select for diffs
Wed Mar 13 05:07:11 2013 UTC (2 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2991: preferred, colored
Changes since revision 1.2991: +159 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/314019 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2991: download - view: text, markup, annotated - select for diffs
Mon Mar 11 12:57:10 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2990: preferred, colored
Changes since revision 1.2990: +41 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313838 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2990: download - view: text, markup, annotated - select for diffs
Sun Mar 10 15:26:56 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2989: preferred, colored
Changes since revision 1.2989: +11 -7 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313798 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2989: download - view: text, markup, annotated - select for diffs
Sun Mar 10 14:32:07 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2988: preferred, colored
Changes since revision 1.2988: +36 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313784 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2988: download - view: text, markup, annotated - select for diffs
Sat Mar 9 10:28:59 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2987: preferred, colored
Changes since revision 1.2987: +50 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313676 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2987: download - view: text, markup, annotated - select for diffs
Fri Mar 8 19:33:11 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2986: preferred, colored
Changes since revision 1.2986: +28 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313628 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2986: download - view: text, markup, annotated - select for diffs
Wed Mar 6 16:09:44 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2985: preferred, colored
Changes since revision 1.2985: +43 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313525 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2985: download - view: text, markup, annotated - select for diffs
Wed Mar 6 14:01:26 2013 UTC (2 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2984: preferred, colored
Changes since revision 1.2984: +57 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313485 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2984: download - view: text, markup, annotated - select for diffs
Mon Mar 4 14:42:48 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2983: preferred, colored
Changes since revision 1.2983: +36 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313375 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2983: download - view: text, markup, annotated - select for diffs
Sun Mar 3 00:59:18 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2982: preferred, colored
Changes since revision 1.2982: +68 -22 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313292 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2982: download - view: text, markup, annotated - select for diffs
Fri Mar 1 02:51:03 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2981: preferred, colored
Changes since revision 1.2981: +62 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313132 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2981: download - view: text, markup, annotated - select for diffs
Thu Feb 28 02:04:42 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2980: preferred, colored
Changes since revision 1.2980: +32 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313076 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2980: download - view: text, markup, annotated - select for diffs
Wed Feb 27 13:53:39 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2979: preferred, colored
Changes since revision 1.2979: +29 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313052 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2979: download - view: text, markup, annotated - select for diffs
Tue Feb 26 18:10:50 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2978: preferred, colored
Changes since revision 1.2978: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/313001 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2978: download - view: text, markup, annotated - select for diffs
Tue Feb 26 01:47:53 2013 UTC (2 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2977: preferred, colored
Changes since revision 1.2977: +103 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312948 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2977: download - view: text, markup, annotated - select for diffs
Sun Feb 24 18:56:16 2013 UTC (2 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2976: preferred, colored
Changes since revision 1.2976: +34 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312887 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2976: download - view: text, markup, annotated - select for diffs
Sun Feb 24 18:49:58 2013 UTC (2 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2975: preferred, colored
Changes since revision 1.2975: +28 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312886 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2975: download - view: text, markup, annotated - select for diffs
Sun Feb 24 14:51:41 2013 UTC (2 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2974: preferred, colored
Changes since revision 1.2974: +71 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312867 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2974: download - view: text, markup, annotated - select for diffs
Sat Feb 23 00:47:56 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2973: preferred, colored
Changes since revision 1.2973: +95 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312793 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2973: download - view: text, markup, annotated - select for diffs
Fri Feb 22 20:47:14 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2972: preferred, colored
Changes since revision 1.2972: +27 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312789 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2972: download - view: text, markup, annotated - select for diffs
Fri Feb 22 08:49:51 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2971: preferred, colored
Changes since revision 1.2971: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312753 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2971: download - view: text, markup, annotated - select for diffs
Thu Feb 21 22:11:31 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2970: preferred, colored
Changes since revision 1.2970: +59 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312742 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2970: download - view: text, markup, annotated - select for diffs
Thu Feb 21 07:48:55 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2969: preferred, colored
Changes since revision 1.2969: +31 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312707 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2969: download - view: text, markup, annotated - select for diffs
Wed Feb 20 14:43:15 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2968: preferred, colored
Changes since revision 1.2968: +30 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312626 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2968: download - view: text, markup, annotated - select for diffs
Wed Feb 20 07:41:54 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2967: preferred, colored
Changes since revision 1.2967: +3 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312612 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2967: download - view: text, markup, annotated - select for diffs
Wed Feb 20 06:41:38 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2966: preferred, colored
Changes since revision 1.2966: +46 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312611 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2966: download - view: text, markup, annotated - select for diffs
Wed Feb 20 00:52:21 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2965: preferred, colored
Changes since revision 1.2965: +77 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312608 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2965: download - view: text, markup, annotated - select for diffs
Tue Feb 19 00:47:26 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2964: preferred, colored
Changes since revision 1.2964: +3 -3 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312537 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2964: download - view: text, markup, annotated - select for diffs
Sun Feb 17 20:16:34 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2963: preferred, colored
Changes since revision 1.2963: +3 -5 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312441 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2963: download - view: text, markup, annotated - select for diffs
Sun Feb 17 17:27:20 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2962: preferred, colored
Changes since revision 1.2962: +33 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312428 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2962: download - view: text, markup, annotated - select for diffs
Sun Feb 17 17:21:16 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2961: preferred, colored
Changes since revision 1.2961: +37 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312426 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2961: download - view: text, markup, annotated - select for diffs
Sun Feb 17 11:00:16 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2960: preferred, colored
Changes since revision 1.2960: +42 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312408 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2960: download - view: text, markup, annotated - select for diffs
Sat Feb 16 18:03:39 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2959: preferred, colored
Changes since revision 1.2959: +27 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312377 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2959: download - view: text, markup, annotated - select for diffs
Sat Feb 16 15:50:02 2013 UTC (3 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2958: preferred, colored
Changes since revision 1.2958: +50 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312355 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2958: download - view: text, markup, annotated - select for diffs
Sat Feb 16 04:43:59 2013 UTC (3 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2957: preferred, colored
Changes since revision 1.2957: +41 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/312323 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2957: download - view: text, markup, annotated - select for diffs
Fri Feb 8 19:51:44 2013 UTC (3 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2956: preferred, colored
Changes since revision 1.2956: +29 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311950 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2956: download - view: text, markup, annotated - select for diffs
Fri Feb 8 11:57:31 2013 UTC (3 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2955: preferred, colored
Changes since revision 1.2955: +33 -34 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311921 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2955: download - view: text, markup, annotated - select for diffs
Thu Feb 7 02:49:01 2013 UTC (3 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2954: preferred, colored
Changes since revision 1.2954: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311808 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2954: download - view: text, markup, annotated - select for diffs
Wed Feb 6 23:48:42 2013 UTC (3 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2953: preferred, colored
Changes since revision 1.2953: +33 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311791 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2953: download - view: text, markup, annotated - select for diffs
Fri Feb 1 23:43:51 2013 UTC (3 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2952: preferred, colored
Changes since revision 1.2952: +46 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311404 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2952: download - view: text, markup, annotated - select for diffs
Fri Feb 1 09:43:41 2013 UTC (3 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2951: preferred, colored
Changes since revision 1.2951: +33 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311359 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2951: download - view: text, markup, annotated - select for diffs
Wed Jan 30 18:41:49 2013 UTC (3 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2950: preferred, colored
Changes since revision 1.2950: +49 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311253 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2950: download - view: text, markup, annotated - select for diffs
Tue Jan 29 20:41:53 2013 UTC (3 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2949: preferred, colored
Changes since revision 1.2949: +52 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/311185 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2949: download - view: text, markup, annotated - select for diffs
Fri Jan 25 09:59:30 2013 UTC (3 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2948: preferred, colored
Changes since revision 1.2948: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310972 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2948: download - view: text, markup, annotated - select for diffs
Fri Jan 25 02:41:53 2013 UTC (3 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2947: preferred, colored
Changes since revision 1.2947: +7 -7 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310957 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2947: download - view: text, markup, annotated - select for diffs
Fri Jan 25 01:44:00 2013 UTC (3 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2946: preferred, colored
Changes since revision 1.2946: +31 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310956 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2946: download - view: text, markup, annotated - select for diffs
Wed Jan 23 13:41:53 2013 UTC (4 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2945: preferred, colored
Changes since revision 1.2945: +38 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310862 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2945: download - view: text, markup, annotated - select for diffs
Sun Jan 20 21:41:53 2013 UTC (4 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2944: preferred, colored
Changes since revision 1.2944: +32 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310718 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2944: download - view: text, markup, annotated - select for diffs
Wed Jan 16 19:56:49 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2943: preferred, colored
Changes since revision 1.2943: +2 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310514 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2943: download - view: text, markup, annotated - select for diffs
Wed Jan 16 19:53:30 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2942: preferred, colored
Changes since revision 1.2942: +33 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310513 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2942: download - view: text, markup, annotated - select for diffs
Wed Jan 16 19:50:09 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2941: preferred, colored
Changes since revision 1.2941: +92 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310512 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2941: download - view: text, markup, annotated - select for diffs
Wed Jan 16 07:41:37 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2940: preferred, colored
Changes since revision 1.2940: +3 -3 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310476 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2940: download - view: text, markup, annotated - select for diffs
Tue Jan 15 22:47:03 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2939: preferred, colored
Changes since revision 1.2939: +4 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310468 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
Revision 1.2939: download - view: text, markup, annotated - select for diffs
Fri Jan 11 15:13:26 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2938: preferred, colored
Changes since revision 1.2938: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310235 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310235 | zi | 2013-01-11 14:11:27 +0000 (Fri, 11 Jan 2013) | 2 lines ## SVN ## ## SVN ## - Fix discovery date on nagios vulnerability (CVE-2012-6096) ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2938: download - view: text, markup, annotated - select for diffs
Fri Jan 11 10:13:20 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2937: preferred, colored
Changes since revision 1.2937: +5 -4 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310225 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310225 | rea | 2013-01-11 09:53:41 +0000 (Fri, 11 Jan 2013) | 19 lines ## SVN ## ## SVN ## www/squid3x: upgrade to 3.1.23 and 3.2.6 ## SVN ## ## SVN ## Squid 3.1.23 is effectively Squid 3.1.22_2 with the final fix for ## SVN ## CVE-2012-5643 applied. ## SVN ## ## SVN ## Squid 3.2.6 also received that abovementioned fix, but in comparison ## SVN ## with 3.2.5 from ports it has another change that fixes handling the ## SVN ## "tcp_outgoing_tos" directive for BSD-like systems, including FreeBSD, ## SVN ## http://bugs.squid-cache.org/show_bug.cgi?id=3731 ## SVN ## ## SVN ## VuXML entry for SQUID:2012-1 (aka CVE-2012-5643) was also updated to ## SVN ## reflect the proper version specifications from the updated advisory, ## SVN ## http://www.squid-cache.org/Advisories/SQUID-2012_1.txt ## SVN ## ## SVN ## Approved by: Thomas-Martin Seck <tmseck@web.de> ## SVN ## Security: http://portaudit.freebsd.org/c37de843-488e-11e2-a5c9-0019996bc1f7.html ## SVN ## QA page: http://codelabs.ru/fbsd/ports/qa/www/squid31/3.1.23 ## SVN ## QA page: http://codelabs.ru/fbsd/ports/qa/www/squid32/3.2.6 ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2937: download - view: text, markup, annotated - select for diffs
Fri Jan 11 02:04:37 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2936: preferred, colored
Changes since revision 1.2936: +29 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310216 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310216 | zi | 2013-01-11 01:16:14 +0000 (Fri, 11 Jan 2013) | 2 lines ## SVN ## ## SVN ## - Document vulnerability in net-mgmt/nagios (CVE-2012-6096) ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2936: download - view: text, markup, annotated - select for diffs
Fri Jan 11 01:02:17 2013 UTC (4 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2935: preferred, colored
Changes since revision 1.2935: +101 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310212 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310212 | rene | 2013-01-11 00:32:48 +0000 (Fri, 11 Jan 2013) | 4 lines ## SVN ## ## SVN ## Document vulnerabilities in www/chromium < 24.0.1312.52 ## SVN ## ## SVN ## Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2935: download - view: text, markup, annotated - select for diffs
Wed Jan 9 23:56:34 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2934: preferred, colored
Changes since revision 1.2934: +131 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310165 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310165 | flo | 2013-01-09 23:28:19 +0000 (Wed, 09 Jan 2013) | 6 lines ## SVN ## ## SVN ## - update firefox, thunderbird, linux-firefox and linux-thunderbird to 17.0.2 ## SVN ## - update firefox-esr, thunderbird-esr and libxul to 10.0.12 ## SVN ## - update linux-seamonkey to 2.15 ## SVN ## ## SVN ## Security: http://www.vuxml.org/freebsd/a4ed6632-5aa9-11e2-8fcb-c8600054b392.html ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2934: download - view: text, markup, annotated - select for diffs
Wed Jan 9 16:33:28 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2933: preferred, colored
Changes since revision 1.2933: +15 -15 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310149 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310149 | sem | 2013-01-09 15:03:01 +0000 (Wed, 09 Jan 2013) | 2 lines ## SVN ## ## SVN ## Fix <topic> style: common dash style, remove softvare versions ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2933: download - view: text, markup, annotated - select for diffs
Wed Jan 9 04:43:46 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2932: preferred, colored
Changes since revision 1.2932: +92 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310121 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310121 | swills | 2013-01-09 03:53:15 +0000 (Wed, 09 Jan 2013) | 7 lines ## SVN ## ## SVN ## - Update rubygem-rails to 3.2.11 ## SVN ## - Update ports require by rubygem-rails ## SVN ## - Add vuxml entry for rails security issues ## SVN ## ## SVN ## Security: ca5d3272-59e3-11e2-853b-00262d5ed8ee ## SVN ## Security: b4051b52-58fa-11e2-853b-00262d5ed8ee ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2932: download - view: text, markup, annotated - select for diffs
Tue Jan 8 05:50:29 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2931: preferred, colored
Changes since revision 1.2931: +40 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310068 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310068 | lwhsu | 2013-01-08 05:18:14 +0000 (Tue, 08 Jan 2013) | 2 lines ## SVN ## ## SVN ## Document Jenkins 2013-01-04 Security Advisory ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2931: download - view: text, markup, annotated - select for diffs
Sun Jan 6 21:33:31 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2930: preferred, colored
Changes since revision 1.2930: +31 -12 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310013 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310013 | rea | 2013-01-06 20:37:24 +0000 (Sun, 06 Jan 2013) | 5 lines ## SVN ## ## SVN ## VuXML: extend entry for MoinMoin vulnerabilities fixed in 1.9.6 ## SVN ## ## SVN ## Use more verbose descriptions from CVE entries and trim citation ## SVN ## from CHANGES to the relevant parts. ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2930: download - view: text, markup, annotated - select for diffs
Sun Jan 6 19:41:58 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2929: preferred, colored
Changes since revision 1.2929: +75 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/310004 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r310004 | lwhsu | 2013-01-06 18:14:23 +0000 (Sun, 06 Jan 2013) | 2 lines ## SVN ## ## SVN ## Document Django 2012-12-10 vulnerabilty ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2929: download - view: text, markup, annotated - select for diffs
Sun Jan 6 14:26:35 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2928: preferred, colored
Changes since revision 1.2928: +4 -4 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309984 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309984 | rea | 2013-01-06 13:24:39 +0000 (Sun, 06 Jan 2013) | 6 lines ## SVN ## ## SVN ## VuXML: fix r309982 ## SVN ## ## SVN ## Use proper tags for CVE identifiers. I should run 'make validate' ## SVN ## _every_ time before committing. ## SVN ## Pointyhat to: rea ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2928: download - view: text, markup, annotated - select for diffs
Sun Jan 6 13:54:57 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2927: preferred, colored
Changes since revision 1.2927: +5 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309982 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309982 | rea | 2013-01-06 13:10:10 +0000 (Sun, 06 Jan 2013) | 2 lines ## SVN ## ## SVN ## VuXML for MoinMoin issues: add CVE references ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2927: download - view: text, markup, annotated - select for diffs
Sat Jan 5 13:43:45 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2926: preferred, colored
Changes since revision 1.2926: +3 -23 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309958 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309958 | crees | 2013-01-05 12:54:28 +0000 (Sat, 05 Jan 2013) | 6 lines ## SVN ## ## SVN ## Freetype 2.4.8 vulnerabilities were already documented. ## SVN ## ## SVN ## While here, correct pkgname ## SVN ## ## SVN ## Noticed by: kwm ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2926: download - view: text, markup, annotated - select for diffs
Sat Jan 5 11:47:22 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2925: preferred, colored
Changes since revision 1.2925: +84 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309954 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309954 | crees | 2013-01-05 11:29:00 +0000 (Sat, 05 Jan 2013) | 8 lines ## SVN ## ## SVN ## Mark moinmoin vulnerable ## SVN ## ## SVN ## Security: http://www.debian.org/security/2012/dsa-2593 ## SVN ## ## SVN ## document freetype vulnerabilities ## SVN ## ## SVN ## Security: CVE-2012-(1126-1144) ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2925: download - view: text, markup, annotated - select for diffs
Fri Jan 4 07:44:33 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2924: preferred, colored
Changes since revision 1.2924: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309917 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309917 | erwin | 2013-01-04 07:30:09 +0000 (Fri, 04 Jan 2013) | 2 lines ## SVN ## ## SVN ## Bump copyright to 2013. ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2924: download - view: text, markup, annotated - select for diffs
Thu Jan 3 19:49:38 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2923: preferred, colored
Changes since revision 1.2923: +3 -3 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309904 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309904 | flo | 2013-01-03 19:46:51 +0000 (Thu, 03 Jan 2013) | 4 lines ## SVN ## ## SVN ## Add correct version numbers to the recent asterisk entry ## SVN ## ## SVN ## Pointy hat to: flo ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2923: download - view: text, markup, annotated - select for diffs
Thu Jan 3 19:47:07 2013 UTC (4 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2922: preferred, colored
Changes since revision 1.2922: +39 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309903 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309903 | flo | 2013-01-03 19:41:30 +0000 (Thu, 03 Jan 2013) | 7 lines ## SVN ## ## SVN ## - update net/asterisk to 1.8.19.1 ## SVN ## - update net/asterisk10 to 10.11.1 ## SVN ## - update net/asterisk11 to 10.1.2 ## SVN ## - add vuln.xml entry ## SVN ## ## SVN ## Security: f7c87a8a-55d5-11e2-a255-c8600054b392 ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2922: download - view: text, markup, annotated - select for diffs
Wed Jan 2 12:52:17 2013 UTC (4 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2921: preferred, colored
Changes since revision 1.2921: +33 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309813 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309813 | crees | 2013-01-02 12:28:47 +0000 (Wed, 02 Jan 2013) | 5 lines ## SVN ## ## SVN ## Note charybdis and ircd-ratbox vulnerabilities ## SVN ## ## SVN ## PR: ports/174878 ## SVN ## Security: http://www.ratbox.org/ASA-2012-12-31.txt ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2921: download - view: text, markup, annotated - select for diffs
Mon Dec 31 12:43:27 2012 UTC (4 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2920: preferred, colored
Changes since revision 1.2920: +36 -3 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309700 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309700 | anders | 2012-12-30 23:13:04 +0000 (Sun, 30 Dec 2012) | 2 lines ## SVN ## ## SVN ## Separate entries for Puppet 2.6 and 2.7. ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2920: download - view: text, markup, annotated - select for diffs
Mon Dec 31 07:29:37 2012 UTC (4 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2919: preferred, colored
Changes since revision 1.2919: +92 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309688 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309688 | cs | 2012-12-30 20:10:42 +0000 (Sun, 30 Dec 2012) | 2 lines ## SVN ## ## SVN ## Add OTRS vulnerabilities ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2919: download - view: text, markup, annotated - select for diffs
Sun Dec 30 00:27:20 2012 UTC (4 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2918: preferred, colored
Changes since revision 1.2918: +74 -16 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309629 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309629 | rea | 2012-12-29 19:53:46 +0000 (Sat, 29 Dec 2012) | 7 lines ## SVN ## ## SVN ## VuXML entries for Tomcat: split into three distinct ones ## SVN ## ## SVN ## They affect different Tomcat versions from 7.x branch, so don't let ## SVN ## users of VuXML be fooled on the affected software for each vulnerability. ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2918: download - view: text, markup, annotated - select for diffs
Fri Dec 28 18:32:14 2012 UTC (4 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2917: preferred, colored
Changes since revision 1.2917: +36 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309576 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309576 | rea | 2012-12-28 18:17:22 +0000 (Fri, 28 Dec 2012) | 5 lines ## SVN ## ## SVN ## VuXML: add entry for DoS in Squid's cachemgr.cgi ## SVN ## ## SVN ## Feature safe: yes ## SVN ## Submitted by: Thomas-Martin Seck <tmseck@web.de> ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2917: download - view: text, markup, annotated - select for diffs
Tue Dec 18 16:40:39 2012 UTC (5 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2916: preferred, colored
Changes since revision 1.2916: +1 -23 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309196 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309196 | bdrewery | 2012-12-18 16:34:14 +0000 (Tue, 18 Dec 2012) | 2 lines ## SVN ## ## SVN ## Remove invalid entry ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2916: download - view: text, markup, annotated - select for diffs
Tue Dec 18 16:35:59 2012 UTC (5 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2915: preferred, colored
Changes since revision 1.2915: +57 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/309195 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r309195 | dinoex | 2012-12-18 16:28:56 +0000 (Tue, 18 Dec 2012) | 2 lines ## SVN ## ## SVN ## - add entry for opera 12.11 ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2915: download - view: text, markup, annotated - select for diffs
Fri Dec 14 09:14:45 2012 UTC (5 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2914: preferred, colored
Changes since revision 1.2914: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308891 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308891 | delphij | 2012-12-14 09:09:16 +0000 (Fri, 14 Dec 2012) | 4 lines ## SVN ## ## SVN ## Fix typo. ## SVN ## ## SVN ## Noticed by: mandree ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2914: download - view: text, markup, annotated - select for diffs
Fri Dec 14 03:57:14 2012 UTC (5 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2913: preferred, colored
Changes since revision 1.2913: +2 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308880 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308880 | jgh | 2012-12-14 03:51:07 +0000 (Fri, 14 Dec 2012) | 2 lines ## SVN ## ## SVN ## - add url block in references for 1657a3e6-4585-11e2-a396-10bf48230856 ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2913: download - view: text, markup, annotated - select for diffs
Fri Dec 14 00:46:10 2012 UTC (5 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2912: preferred, colored
Changes since revision 1.2912: +29 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308874 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308874 | delphij | 2012-12-14 00:41:42 +0000 (Fri, 14 Dec 2012) | 6 lines ## SVN ## ## SVN ## Update linux-f10-flashpulgin11 to 11.2r202.258 to address multiple ## SVN ## vulnerabilities that could cause a crash and potentially allow an ## SVN ## attacker to take control of the affected system. ## SVN ## ## SVN ## Submitted by: Tsurutani Naoki <turutani scphys kyoto-u ac jp> ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2912: download - view: text, markup, annotated - select for diffs
Wed Dec 12 11:35:45 2012 UTC (5 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2911: preferred, colored
Changes since revision 1.2911: +44 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308757 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308757 | rene | 2012-12-12 11:33:16 +0000 (Wed, 12 Dec 2012) | 4 lines ## SVN ## ## SVN ## Document vulnerabilities in www/chromium < 23.0.1271.97 ## SVN ## ## SVN ## Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2911: download - view: text, markup, annotated - select for diffs
Wed Dec 5 23:55:45 2012 UTC (5 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2910: preferred, colored
Changes since revision 1.2910: +2 -2 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308355 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308355 | zi | 2012-12-05 23:52:35 +0000 (Wed, 05 Dec 2012) | 5 lines ## SVN ## ## SVN ## - Fix recent vulnerability entry for www/tomcat[67] ## SVN ## ## SVN ## Reported by: Victor Balada Diaz <victor@bsdes.net> ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2910: download - view: text, markup, annotated - select for diffs
Wed Dec 5 18:49:45 2012 UTC (5 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2909: preferred, colored
Changes since revision 1.2909: +44 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308343 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308343 | zi | 2012-12-05 18:47:24 +0000 (Wed, 05 Dec 2012) | 5 lines ## SVN ## ## SVN ## - Document recent vulnerabilities in www/tomcat6 and www/tomcat7 ## SVN ## ## SVN ## Requested by: Victor Balada Diaz <victor@bsdes.net> ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2909: download - view: text, markup, annotated - select for diffs
Wed Dec 5 07:49:44 2012 UTC (5 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2908: preferred, colored
Changes since revision 1.2908: +43 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308317 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308317 | erwin | 2012-12-05 07:46:03 +0000 (Wed, 05 Dec 2012) | 13 lines ## SVN ## ## SVN ## Update to the latest patch level from ISC: ## SVN ## ## SVN ## BIND 9 nameservers using the DNS64 IPv6 transition mechanism are ## SVN ## vulnerable to a software defect that allows a crafted query to ## SVN ## crash the server with a REQUIRE assertion failure. Remote ## SVN ## exploitation of this defect can be achieved without extensive ## SVN ## effort, resulting in a denial-of-service (DoS) vector against ## SVN ## affected servers. ## SVN ## ## SVN ## Security: 2892a8e2-3d68-11e2-8e01-0800273fe665 ## SVN ## CVE-2012-5688 ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2908: download - view: text, markup, annotated - select for diffs
Mon Dec 3 22:52:38 2012 UTC (5 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2907: preferred, colored
Changes since revision 1.2907: +2 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308178 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308178 | mandree | 2012-12-03 22:49:42 +0000 (Mon, 03 Dec 2012) | 5 lines ## SVN ## ## SVN ## Add URL for recent bogofilter heap vuln', CVE-2012-5468, aka. vuln vid= ## SVN ## f524d8e0-3d83-11e2-807a-080027ef73ec ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2907: download - view: text, markup, annotated - select for diffs
Mon Dec 3 20:19:07 2012 UTC (5 months, 2 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2906: preferred, colored
Changes since revision 1.2906: +26 -1 lines
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308171 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308171 | mandree | 2012-12-03 20:16:21 +0000 (Mon, 03 Dec 2012) | 8 lines ## SVN ## ## SVN ## Update bogofilter to new upstream release 1.2.3. ## SVN ## Security update to fix a heap corruption bug with invalid base64 input, ## SVN ## reported and fixed by Julius Plenz, FU Berlin, Germany. ## SVN ## ## SVN ## Feature safe: yes ## SVN ## Security: CVE-2012-5468 ## SVN ## Security: f524d8e0-3d83-11e2-807a-080027ef73ec ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2906: download - view: text, markup, annotated - select for diffs
Fri Nov 30 09:15:47 2012 UTC (5 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2905: preferred, colored
Changes since revision 1.2905: +31 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/308000 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r308000 | rene | 2012-11-30 09:13:32 +0000 (Fri, 30 Nov 2012) | 5 lines ## SVN ## ## SVN ## Document vulnerabilities in www/chromium < 23.0.1271.95 ## SVN ## ## SVN ## Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2905: download - view: text, markup, annotated - select for diffs
Thu Nov 29 20:35:45 2012 UTC (5 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2904: preferred, colored
Changes since revision 1.2904: +3 -3 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/307978 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307978 | ohauer | 2012-11-29 20:33:19 +0000 (Thu, 29 Nov 2012) | 10 lines ## SVN ## ## SVN ## www/yahoo-ui ## SVN ## - fix CVE-2012-5881 ## SVN ## ## SVN ## security/vuxml ## SVN ## - adjust version (we have only 2.8.2 in the tree) ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## Approved by: glarkin (maintainer) explicit ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2904: download - view: text, markup, annotated - select for diffs
Wed Nov 28 14:39:18 2012 UTC (5 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2903: preferred, colored
Changes since revision 1.2903: +3 -2 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/307907 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307907 | wxs | 2012-11-28 14:37:24 +0000 (Wed, 28 Nov 2012) | 5 lines ## SVN ## ## SVN ## Fix date in yahoo-ui entry. ## SVN ## ## SVN ## Noticed by: dvl@ ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2903: download - view: text, markup, annotated - select for diffs
Wed Nov 28 00:08:29 2012 UTC (5 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2902: preferred, colored
Changes since revision 1.2902: +39 -2 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307861 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307861 | ohauer | 2012-11-27 20:09:34 +0000 (Tue, 27 Nov 2012) | 13 lines ## SVN ## ## SVN ## - document www/yahoo-ui security issue and mark port forbidden [1] ## SVN ## pet portlint (maintainer is already notified) ## SVN ## ## SVN ## - adjust CVE entries for bugzilla (CVE-2012-5475 was rejected) [2] ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## Security: CVE-2012-5881 [1][2] ## SVN ## CVE-2012-5882 [1][2] ## SVN ## CVE-2012-5883 [2] ## SVN ## ## SVN ## Approved by: glarkin (implicit) [1] ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2902: download - view: text, markup, annotated - select for diffs
Tue Nov 27 10:12:49 2012 UTC (5 months, 3 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2901: preferred, colored
Changes since revision 1.2901: +43 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307828 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307828 | rene | 2012-11-27 10:02:25 +0000 (Tue, 27 Nov 2012) | 5 lines ## SVN ## ## SVN ## Describe new vulnerabilities in www/chromium < 23.0.1271.91 ## SVN ## ## SVN ## Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2901: download - view: text, markup, annotated - select for diffs
Sun Nov 25 15:54:12 2012 UTC (5 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2900: preferred, colored
Changes since revision 1.2900: +3 -8 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307747 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307747 | flo | 2012-11-25 15:42:22 +0000 (Sun, 25 Nov 2012) | 27 lines ## SVN ## ## SVN ## - Update backports patch to 20121114 ## SVN ## - Bump PORTREVISION ## SVN ## ## SVN ## Changes: ## SVN ## - CVE-2006-7243 ## SVN ## PHP before 5.3.4 accepts the \0 character in a pathname, which might allow ## SVN ## context-dependent attackers to bypass intended access restrictions by placing a ## SVN ## safe file extension after this character, as demonstrated by .php\0.jpg at the ## SVN ## end of the argument to the file_exists function ## SVN ## ## SVN ## Secuity 3761df02-0f9c-11e0-becc-0022156e8794 fixed by check in fopen functions ## SVN ## for strlen(filename) != filename_len ## SVN ## ## SVN ## - CVE-2012-4388 ## SVN ## The sapi_header_op function in main/SAPI.c does not properly determine a pointer ## SVN ## during checks for %0D sequences (aka carriage return characters), which allows ## SVN ## remote attackers to bypass an HTTP response-splitting protection mechanism via a ## SVN ## crafted URL, this vulnerability exists because of an incorrect fix for ## SVN ## CVE-2011-1398. ## SVN ## ## SVN ## - Timezone database updated to version 2012.9 (2012i) ## SVN ## ## SVN ## PR: ports/173685 ## SVN ## Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com> ## SVN ## Approved by: maintainer ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2900: download - view: text, markup, annotated - select for diffs
Sun Nov 25 04:12:00 2012 UTC (5 months, 4 weeks ago) by svnexp
Branches: MAIN
Diff to: previous 1.2899: preferred, colored
Changes since revision 1.2899: +92 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307733 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307733 | wxs | 2012-11-25 04:02:28 +0000 (Sun, 25 Nov 2012) | 8 lines ## SVN ## ## SVN ## Add entries for the following advisories: ## SVN ## ## SVN ## FreeBSD-SA-12:08.linux ## SVN ## FreeBSD-SA-12:07.hostapd ## SVN ## FreeBSD-SA-12:06.bind ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2899: download - view: text, markup, annotated - select for diffs
Thu Nov 22 20:29:56 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2898: preferred, colored
Changes since revision 1.2898: +35 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307666 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307666 | dinoex | 2012-11-22 20:27:45 +0000 (Thu, 22 Nov 2012) | 3 lines ## SVN ## ## SVN ## - opera -- execution of arbitrary code ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2898: download - view: text, markup, annotated - select for diffs
Wed Nov 21 14:37:28 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2897: preferred, colored
Changes since revision 1.2897: +33 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307616 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307616 | mm | 2012-11-21 14:35:31 +0000 (Wed, 21 Nov 2012) | 4 lines ## SVN ## ## SVN ## Document new vulnerability in www/lighttpd 1.4.31 ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2897: download - view: text, markup, annotated - select for diffs
Tue Nov 20 23:18:35 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2896: preferred, colored
Changes since revision 1.2896: +120 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307606 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307606 | flo | 2012-11-20 23:01:15 +0000 (Tue, 20 Nov 2012) | 14 lines ## SVN ## ## SVN ## - Update firefox and thunderbird to 17.0 ## SVN ## - Update seamonkey to 2.14 ## SVN ## - Update ESR ports and libxul to 10.0.11 ## SVN ## - support more h264 codecs when using GSTREAMER with YouTube ## SVN ## - Unbreak firefox-esr, thunderbird-esr and libxul on head >= 1000024 [1] ## SVN ## - Buildsystem is not python 3 aware, use python up to 2.7 [2] ## SVN ## ## SVN ## PR: ports/173679 [1] ## SVN ## Submitted by: swills [1], demon [2] ## SVN ## In collaboration with: Jan Beich <jbeich@tormail.org> ## SVN ## Security: d23119df-335d-11e2-b64c-c8600054b392 ## SVN ## Approved by: portmgr (beat) ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2896: download - view: text, markup, annotated - select for diffs
Sun Nov 18 12:54:05 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2895: preferred, colored
Changes since revision 1.2895: +3 -2 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307535 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307535 | jase | 2012-11-18 12:51:26 +0000 (Sun, 18 Nov 2012) | 5 lines ## SVN ## ## SVN ## - Fix copy and paste error in latest weechat entry ## SVN ## (81826d12-317a-11e2-9186-406186f3d89d) ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2895: download - view: text, markup, annotated - select for diffs
Sun Nov 18 12:52:05 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2894: preferred, colored
Changes since revision 1.2894: +34 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307534 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307534 | jase | 2012-11-18 12:46:39 +0000 (Sun, 18 Nov 2012) | 4 lines ## SVN ## ## SVN ## - Document new vulnerability in irc/weechat and irc/weechat-devel ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2894: download - view: text, markup, annotated - select for diffs
Sat Nov 17 21:27:18 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2893: preferred, colored
Changes since revision 1.2893: +58 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307425 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307425 | ohauer | 2012-11-14 19:29:42 +0000 (Wed, 14 Nov 2012) | 43 lines ## SVN ## ## SVN ## - bugzilla security updates to version(s) ## SVN ## 3.6.11, 4.0.8, 4.2.4 ## SVN ## ## SVN ## Summary ## SVN ## ======= ## SVN ## ## SVN ## The following security issues have been discovered in Bugzilla: ## SVN ## ## SVN ## * Confidential product and component names can be disclosed to ## SVN ## unauthorized users if they are used to control the visibility of ## SVN ## a custom field. ## SVN ## ## SVN ## * When calling the 'User.get' WebService method with a 'groups' ## SVN ## argument, it is possible to check if the given group names exist ## SVN ## or not. ## SVN ## ## SVN ## * Due to incorrectly filtered field values in tabular reports, it is ## SVN ## possible to inject code which can lead to XSS. ## SVN ## ## SVN ## * When trying to mark an attachment in a bug you cannot see as ## SVN ## obsolete, the description of the attachment is disclosed in the ## SVN ## error message. ## SVN ## ## SVN ## * A vulnerability in swfstore.swf from YUI2 can lead to XSS. ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## Security: CVE-2012-4199 ## SVN ## https://bugzilla.mozilla.org/show_bug.cgi?id=731178 ## SVN ## ## SVN ## CVE-2012-4198 ## SVN ## https://bugzilla.mozilla.org/show_bug.cgi?id=781850 ## SVN ## ## SVN ## CVE-2012-4189 ## SVN ## https://bugzilla.mozilla.org/show_bug.cgi?id=790296 ## SVN ## ## SVN ## CVE-2012-4197 ## SVN ## https://bugzilla.mozilla.org/show_bug.cgi?id=802204 ## SVN ## ## SVN ## CVE-2012-5475 ## SVN ## https://bugzilla.mozilla.org/show_bug.cgi?id=808845 ## SVN ## http://yuilibrary.com/support/20121030-vulnerability/ ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2893: download - view: text, markup, annotated - select for diffs
Sat Nov 17 18:54:49 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2892: preferred, colored
Changes since revision 1.2892: +5 -2 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307387 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307387 | jase | 2012-11-13 18:17:13 +0000 (Tue, 13 Nov 2012) | 7 lines ## SVN ## ## SVN ## - Update recent weechat entry (e02c572f-2af0-11e2-bb44-003067b2972c) ## SVN ## ## SVN ## - Document assigned CVE Identifier ## SVN ## - Document workaround for vulnerable versions ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2892: download - view: text, markup, annotated - select for diffs
Sat Nov 17 16:01:16 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2891: preferred, colored
Changes since revision 1.2891: +39 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307348 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307348 | rene | 2012-11-12 21:47:27 +0000 (Mon, 12 Nov 2012) | 5 lines ## SVN ## ## SVN ## Document vulnerabilities in two typo3 components. ## SVN ## ## SVN ## Obtained from: http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-005/ ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2891: download - view: text, markup, annotated - select for diffs
Sat Nov 17 14:47:05 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2890: preferred, colored
Changes since revision 1.2890: +2 -2 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307335 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307335 | madpilot | 2012-11-12 13:07:30 +0000 (Mon, 12 Nov 2012) | 4 lines ## SVN ## ## SVN ## Fix typo. ## SVN ## ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2890: download - view: text, markup, annotated - select for diffs
Sat Nov 17 14:41:27 2012 UTC (6 months ago) by svnexp
Branches: MAIN
Diff to: previous 1.2889: preferred, colored
Changes since revision 1.2889: +28 -1 lines
## SVN ## ## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307334 ## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ## r307334 | madpilot | 2012-11-12 13:04:37 +0000 (Mon, 12 Nov 2012) | 9 lines ## SVN ## ## SVN ## - Update to 2.7.1 ## SVN ## - Convert to new options framework ## SVN ## - Document US-CERT VU#268267 ## SVN ## - Trim Makefile headers ## SVN ## ## SVN ## PR: ports/173226 ## SVN ## Submitted by: Hirohisa Yamaguchi <umq@ueo.co.jp> (maintainer) ## SVN ## Feature safe: yes ## SVN ## ## SVN ## ------------------------------------------------------------------------ ## SVN ##
Revision 1.2889: download - view: text, markup, annotated - select for diffs
Sat Nov 17 06:01:22 2012 UTC (6 months, 1 week ago) by svnexp
Branches: MAIN
Diff to: previous 1.2888: preferred, colored
Changes since revision 1.2888: +1 -1 lines
Switch exporter over
Revision 1.2888: download - view: text, markup, annotated - select for diffs
Sat Nov 10 15:17:31 2012 UTC (6 months, 1 week ago) by swills
Branches: MAIN
Diff to: previous 1.2887: preferred, colored
Changes since revision 1.2887: +2 -2 lines
SVN rev 307286 on 2012-11-10 15:17:31Z by swills - Improve latest ruby entry slightly Feature safe: yes
Revision 1.2887: download - view: text, markup, annotated - select for diffs
Sat Nov 10 14:45:55 2012 UTC (6 months, 1 week ago) by jase
Branches: MAIN
Diff to: previous 1.2886: preferred, colored
Changes since revision 1.2886: +8 -5 lines
SVN rev 307282 on 2012-11-10 14:45:55Z by jase - Modify recent e02c572f-2af0-11e2-bb44-003067b2972c entry - Add constraints to vulnerable versions - Add additional references - Improve topic - Correct description Feature safe: yes
Revision 1.2886: download - view: text, markup, annotated - select for diffs
Sat Nov 10 04:55:47 2012 UTC (6 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2885: preferred, colored
Changes since revision 1.2885: +30 -0 lines
SVN rev 307263 on 2012-11-10 04:55:47Z by eadler Apply an upstream patch that fixes a security hole when receiving a special colored message. The maintainer was contacted but due to the nature of the issue apply the patch ASAP. Approved by: secteam-ports (swills) Security: e02c572f-2af0-11e2-bb44-003067b2972c Feature safe: yes
Revision 1.2885: download - view: text, markup, annotated - select for diffs
Sat Nov 10 04:00:41 2012 UTC (6 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2884: preferred, colored
Changes since revision 1.2884: +35 -0 lines
SVN rev 307261 on 2012-11-10 04:00:41Z by swills - Update lang/ruby19 to 1.9.3p327 - Document security issue in earlier versions Security: 5e647ca3-2aea-11e2-b745-001fd0af1a4c Feature safe: yes
Revision 1.2884: download - view: text, markup, annotated - select for diffs
Fri Nov 9 23:02:15 2012 UTC (6 months, 2 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2883: preferred, colored
Changes since revision 1.2883: +4 -2 lines
SVN rev 307259 on 2012-11-09 23:02:15Z by jgh - clarification that ASF reported issue for: - 152e4c7e-2a2e-11e2-99c7-00a0d181e71d - 4ca26574-2a2c-11e2-99c7-00a0d181e71d Feature safe: yes
Revision 1.2883: download - view: text, markup, annotated - select for diffs
Fri Nov 9 19:09:32 2012 UTC (6 months, 2 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2882: preferred, colored
Changes since revision 1.2882: +76 -0 lines
SVN rev 307247 on 2012-11-09 19:09:32Z by jgh - document tomcat vulnerabilities Feature safe: yes
Revision 1.2882: download - view: text, markup, annotated - select for diffs
Fri Nov 9 04:31:13 2012 UTC (6 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2881: preferred, colored
Changes since revision 1.2881: +32 -0 lines
SVN rev 307221 on 2012-11-09 04:31:13Z by eadler Update latest version and document security issues PR: ports/173487 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> Security: 4b8b748e-2a24-11e2-bb44-003067b2972c Feature safe: yes
Revision 1.2881: download - view: text, markup, annotated - select for diffs
Wed Nov 7 10:15:19 2012 UTC (6 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2880: preferred, colored
Changes since revision 1.2880: +66 -0 lines
SVN rev 307128 on 2012-11-07 10:15:19Z by rene Document new vulnerabilities in www/chromium < 23.0.1271.64 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates Feature safe: yes
Revision 1.2880: download - view: text, markup, annotated - select for diffs
Tue Nov 6 20:45:14 2012 UTC (6 months, 2 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2879: preferred, colored
Changes since revision 1.2879: +42 -0 lines
SVN rev 307094 on 2012-11-06 20:45:14Z by crees Document opera vulnerabilities Feature safe: yes
Revision 1.2879: download - view: text, markup, annotated - select for diffs
Mon Nov 5 17:55:45 2012 UTC (6 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2878: preferred, colored
Changes since revision 1.2878: +2 -1 lines
SVN rev 307020 on 2012-11-05 17:55:45Z by eadler Fix minor typo Feature safe: yes
Revision 1.2878: download - view: text, markup, annotated - select for diffs
Mon Nov 5 17:53:51 2012 UTC (6 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2877: preferred, colored
Changes since revision 1.2877: +60 -0 lines
SVN rev 307018 on 2012-11-05 17:53:51Z by eadler Update latest version and document security issues PR: ports/172619 Submitted by: tijl Security: 36533a59-2770-11e2-bb44-003067b2972c Feature safe: yes
Revision 1.2877: download - view: text, markup, annotated - select for diffs
Sat Nov 3 11:59:52 2012 UTC (6 months, 2 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2876: preferred, colored
Changes since revision 1.2876: +2 -2 lines
SVN rev 306911 on 2012-11-03 11:59:52Z by crees Correct plural of "vulnerability" Feature safe: yes
Revision 1.2876: download - view: text, markup, annotated - select for diffs
Fri Nov 2 18:45:31 2012 UTC (6 months, 3 weeks ago) by ohauer
Branches: MAIN
Diff to: previous 1.2875: preferred, colored
Changes since revision 1.2875: +46 -0 lines
SVN rev 306878 on 2012-11-02 18:45:31Z by ohauer - update apache22 to version 2.22.23 - trim vuxml/Makefile header with hat apache@ Feature safe: yes Security: CVE-2012-2687
Revision 1.2875: download - view: text, markup, annotated - select for diffs
Fri Nov 2 18:08:19 2012 UTC (6 months, 3 weeks ago) by olgeni
Branches: MAIN
Diff to: previous 1.2874: preferred, colored
Changes since revision 1.2874: +26 -0 lines
SVN rev 306877 on 2012-11-02 18:08:19Z by olgeni Add entry for webmin < 1.600_1 (potential XSS attack). Feature safe: yes
Revision 1.2874: download - view: text, markup, annotated - select for diffs
Fri Nov 2 03:17:18 2012 UTC (6 months, 3 weeks ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2873: preferred, colored
Changes since revision 1.2873: +81 -0 lines
SVN rev 306834 on 2012-11-02 03:17:18Z by bdrewery - Document ruby vulnerabilities: * CVE-2012-4464 + CVE-2012-4466 $SAFE escaping vulnerability about Exception#to_s / NameError#to_s * CVE-2012-4522 Unintentional file creation caused by inserting an illegal NUL character Reviewed by: eadler Feature safe: yes
Revision 1.2873: download - view: text, markup, annotated - select for diffs
Thu Nov 1 14:10:55 2012 UTC (6 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2872: preferred, colored
Changes since revision 1.2872: +59 -0 lines
SVN rev 306803 on 2012-11-01 14:10:55Z by flo Update to 3.8.15 Security: 4b738d54-2427-11e2-9817-c8600054b392 Feature safe: yes
Revision 1.2872: download - view: text, markup, annotated - select for diffs
Tue Oct 30 21:01:16 2012 UTC (6 months, 3 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2871: preferred, colored
Changes since revision 1.2871: +40 -0 lines
SVN rev 306716 on 2012-10-30 21:01:16Z by rm - update to 7.16 [1] while here: - trim Makefile header - remove indefinite article in COMMENT - remove IGNORE_WITH_PHP and IGNORE_WITH_PGSQL since we have not this versions in the tree anymore - fix pkg-plist - add vuxml entry PR: 173211 Submitted by: Rick van der Zwet <info at rickvanderzwet dot nl> [1] Approved by: Nick Hilliard <nick at foobar dot org> (maintainer) Security: 2adc3e78-22d1-11e2-b9f0-d0df9acfd7e5 Feature safe: yes
Revision 1.2871: download - view: text, markup, annotated - select for diffs
Sun Oct 28 17:03:28 2012 UTC (6 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2870: preferred, colored
Changes since revision 1.2870: +55 -0 lines
SVN rev 306558 on 2012-10-28 17:03:28Z by flo
- Update www/firefox{,-i18n} to 16.0.2
- Update seamonkey to 2.13.2
- Update ESR ports and libxul to 10.0.10
- Update nspr to 4.9.3
- Update nss to 3.14
- with GNOMEVFS2 option build its extension, too [1]
- make heap-committed and heap-dirty reporters work in about:memory
- properly mark QT4 as experimental (needs love upstream)
- *miscellaneous cleanups and fixups*
mail/thunderbird will be updated once the tarballs are available.
PR: ports/173052 [1]
Security: 6b3b1b97-207c-11e2-a03f-c8600054b392
Feature safe: yes
In collaboration with: Jan Beich <jbeich@tormail.org>
Revision 1.2870: download - view: text, markup, annotated - select for diffs
Fri Oct 26 08:46:40 2012 UTC (6 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2869: preferred, colored
Changes since revision 1.2869: +39 -0 lines
SVN rev 306428 on 2012-10-26 08:46:40Z by rea mail/exim: upgrade to 4.80.1 This is bugfix-only release, it eliminates remote code execution in the DKIM code. Security: http://www.vuxml.org/freebsd/b0f3ab1f-1f3b-11e2-8fe9-0022156e8794.html QA page: http://codelabs.ru/fbsd/ports/qa/mail/exim/4.80.1 Feature safe: yes
Revision 1.2869: download - view: text, markup, annotated - select for diffs
Thu Oct 25 19:31:50 2012 UTC (6 months, 4 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2868: preferred, colored
Changes since revision 1.2868: +1 -0 lines
SVN rev 306393 on 2012-10-25 19:31:50Z by rm - add CVE reference (still in reserved state) for recent django vulnerabilty Feature safe: yes
Revision 1.2868: download - view: text, markup, annotated - select for diffs
Thu Oct 25 10:12:42 2012 UTC (6 months, 4 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2867: preferred, colored
Changes since revision 1.2867: +63 -0 lines
SVN rev 306376 on 2012-10-25 10:12:42Z by rm - update django ports to 1.3.4 and 1.4.2, that fixing couple of security issues. All users are encouraged to upgrade immediately. - add vuxml entry changes common for both ports: - trim Makefile header - strict python version to 2.x only - utilize options framework multiple choice feature to let user to choose database backends needed. Make SQLITE option default - shorten description of HTMLDOCS_DESC to make it fit into dialog screen - SITELIBDIR -> PKGNAMEPREFIX change in dependencies - convert NOPORTDOCS condition to optionsng - tab -> space change in pkg-descr PR: 173017 Submitted by: rm (myself) Approved by: lwhsu (maintainer, by mail) Security: 5f326d75-1db9-11e2-bc8f-d0df9acfd7e5 Feature safe: yes
Revision 1.2867: download - view: text, markup, annotated - select for diffs
Mon Oct 22 02:37:07 2012 UTC (7 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2866: preferred, colored
Changes since revision 1.2866: +50 -0 lines
SVN rev 306252 on 2012-10-22 02:37:07Z by wxs Document multiple wireshark vulnerabilities. Feature safe: yes
Revision 1.2866: download - view: text, markup, annotated - select for diffs
Thu Oct 18 04:13:27 2012 UTC (7 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2865: preferred, colored
Changes since revision 1.2865: +4 -11 lines
SVN rev 306051 on 2012-10-18 04:13:27Z by jgh - clarify end-user impact for 57652765-18aa-11e2-8382-00a0d181e71d Suggested by: simon@ Feature safe: yes
Revision 1.2865: download - view: text, markup, annotated - select for diffs
Wed Oct 17 23:47:27 2012 UTC (7 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2864: preferred, colored
Changes since revision 1.2864: +37 -0 lines
SVN rev 306041 on 2012-10-17 23:47:27Z by jgh - document xlockmore issue, 57652765-18aa-11e2-8382-00a0d181e71d, CVE-2012-4524 Feature safe: yes
Revision 1.2864: download - view: text, markup, annotated - select for diffs
Wed Oct 17 17:22:51 2012 UTC (7 months, 1 week ago) by sem
Branches: MAIN
Diff to: previous 1.2863: preferred, colored
Changes since revision 1.2863: +33 -0 lines
SVN rev 306024 on 2012-10-17 17:22:51Z by sem - xinetd vulnerability Feature safe: yes
Revision 1.2863: download - view: text, markup, annotated - select for diffs
Tue Oct 16 14:37:50 2012 UTC (7 months, 1 week ago) by glarkin
Branches: MAIN
Diff to: previous 1.2862: preferred, colored
Changes since revision 1.2862: +12 -4 lines
SVN rev 305978 on 2012-10-16 14:37:50Z by glarkin - Updated ZF advisory to include similar XEE vulnerability Feature safe: yes
Revision 1.2862: download - view: text, markup, annotated - select for diffs
Tue Oct 16 14:26:07 2012 UTC (7 months, 1 week ago) by glarkin
Branches: MAIN
Diff to: previous 1.2861: preferred, colored
Changes since revision 1.2861: +35 -0 lines
SVN rev 305974 on 2012-10-16 14:26:07Z by glarkin - Document Zend Framework XXE injection vulnerability Feature safe: yes
Revision 1.2861: download - view: text, markup, annotated - select for diffs
Mon Oct 15 16:31:39 2012 UTC (7 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2860: preferred, colored
Changes since revision 1.2860: +1 -0 lines
SVN rev 305922 on 2012-10-15 16:31:39Z by eadler Add the CVE for the gitolite vuln. Feature safe: yes
Revision 1.2860: download - view: text, markup, annotated - select for diffs
Mon Oct 15 16:02:12 2012 UTC (7 months, 1 week ago) by swills
Branches: MAIN
Diff to: previous 1.2859: preferred, colored
Changes since revision 1.2859: +33 -0 lines
SVN rev 305918 on 2012-10-15 16:02:12Z by swills - Actually commit the VuXML entry PR: ports/172565 Feature safe: yes Pointyhat to: swills
Revision 1.2859: download - view: text, markup, annotated - select for diffs
Sun Oct 14 21:05:33 2012 UTC (7 months, 1 week ago) by matthew
Branches: MAIN
Diff to: previous 1.2858: preferred, colored
Changes since revision 1.2858: +36 -0 lines
SVN rev 305894 on 2012-10-14 21:05:33Z by matthew Document the latest security vulnerabilities for phpMyAdmin. Fix was already committed to the port 6 days ago. Feature safe: yes
Revision 1.2858: download - view: text, markup, annotated - select for diffs
Sun Oct 14 15:30:47 2012 UTC (7 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2857: preferred, colored
Changes since revision 1.2857: +16 -0 lines
SVN rev 305882 on 2012-10-14 15:30:47Z by zi - Add in additional package names for recent bind vulnerability Feature safe: yes
Revision 1.2857: download - view: text, markup, annotated - select for diffs
Thu Oct 11 19:15:12 2012 UTC (7 months, 1 week ago) by flo
Branches: MAIN
Diff to: previous 1.2856: preferred, colored
Changes since revision 1.2856: +18 -9 lines
SVN rev 305736 on 2012-10-11 19:15:12Z by flo - update to 16.0.1 - update vuln.xml entry Feature safe: yes
Revision 1.2856: download - view: text, markup, annotated - select for diffs
Wed Oct 10 22:06:59 2012 UTC (7 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2855: preferred, colored
Changes since revision 1.2855: +27 -0 lines
SVN rev 305692 on 2012-10-10 22:06:59Z by rene Document a new vulnerability in www/chromium < 22.0.1229.94 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates Feature safe: yes
Revision 1.2855: download - view: text, markup, annotated - select for diffs
Wed Oct 10 21:13:06 2012 UTC (7 months, 2 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2854: preferred, colored
Changes since revision 1.2854: +108 -0 lines
SVN rev 305684 on 2012-10-10 21:13:06Z by flo - Update firefox-esr, thunderbird-esr, linux-firefox and linux-thunderbird to 10.0.8 - Update firefox and thunderbird to 16.0 - Update seamonkey to 2.13 - Update all -i18n ports respectively - switch firefox 16.0 and seamonkey 2.13 to ALSA by default for better latency during pause and seeking with HTML5 video - remove fedisableexcept() hacks, obsolete since FreeBSD 4.0 - support system hunspell dictionaries [1] - unbreak -esr ports with clang3.2 [2] - unbreak nss build when CC contains full path [3] - remove GNOME option grouping [4] - integrate enigmail into thunderbird/seamonkey as an option [5] - remove mail/enigmail* [6] - enable ENIGMAIL, LIGHTNING and GIO options by default - add more reporters in about:memory: page-faults-hard, page-faults-soft, resident, vsize - use bundled jemalloc 3.0.0 on FreeBSD < 10.0 for gecko 16.0, only heap-allocated reporter works in about:memory (see bug 762445) - use lrintf() instead of slow C cast in bundled libopus - use libjpeg-turbo's faster color conversion if available during build - record startup time for telemetry - use -z origin instead of hardcoding path to gecko runtime - fail early if incompatible libxul version is installed (in USE_GECKO) - *miscellaneous cleanups and fixups* PR: ports/171534 [1] PR: ports/171566 [2] PR: ports/172164 [3] PR: ports/172201 [4] Discussed with: ale, beat, Jan Beich [5] Approved by: ale [6] In collaboration with: Jan Beich <jbeich@tormail.org> Security: 6e5a9afd-12d3-11e2-b47d-c8600054b392 Feature safe: yes Approved by: portmgr (beat)
Revision 1.2854: download - view: text, markup, annotated - select for diffs
Wed Oct 10 11:54:44 2012 UTC (7 months, 2 weeks ago) by erwin
Branches: MAIN
Diff to: previous 1.2853: preferred, colored
Changes since revision 1.2853: +38 -0 lines
SVN rev 305645 on 2012-10-10 11:54:44Z by erwin Upgrade to the latest BIND patch level: A deliberately constructed combination of records could cause named to hang while populating the additional section of a response. Security: http://www.vuxml.org/freebsd/57a700f9-12c0-11e2-9f86-001d923933b6.html
Revision 1.2853: download - view: text, markup, annotated - select for diffs
Mon Oct 8 20:45:52 2012 UTC (7 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2852: preferred, colored
Changes since revision 1.2852: +40 -0 lines
SVN rev 305556 on 2012-10-08 20:45:52Z by rene Document new vulnerabilities in www/chromium < 22.0.1229.92 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Revision 1.2852: download - view: text, markup, annotated - select for diffs
Wed Oct 3 12:51:11 2012 UTC (7 months, 3 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2851: preferred, colored
Changes since revision 1.2851: +1 -1 lines
SVN rev 305201 on 2012-10-03 12:51:11Z by rm - correct the range in last entry (le/lt typo)
Revision 1.2851: download - view: text, markup, annotated - select for diffs
Wed Oct 3 12:33:38 2012 UTC (7 months, 3 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2850: preferred, colored
Changes since revision 1.2850: +36 -0 lines
SVN rev 305200 on 2012-10-03 12:33:38Z by rm - update to 2.8.10 - add vuxml entry This release fixes SQL injection vulnerability. PR: 172114 Submitted by: rm (myself) Approved by: ports-secteam (eadler) Security: dee44ba9-08ab-11e2-a044-d0df9acfd7e5
Revision 1.2850: download - view: text, markup, annotated - select for diffs
Thu Sep 27 17:01:15 2012 UTC (7 months, 3 weeks ago) by danfe
Branches: MAIN
Diff to: previous 1.2849: preferred, colored
Changes since revision 1.2849: +1 -1 lines
SVN rev 304967 on 2012-09-27 17:01:15Z by danfe Mark nvidia-driver-173.14.35_1 as not vulnerable.
Revision 1.2849: download - view: text, markup, annotated - select for diffs
Wed Sep 26 21:49:34 2012 UTC (7 months, 4 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2848: preferred, colored
Changes since revision 1.2848: +96 -0 lines
SVN rev 304933 on 2012-09-26 21:49:34Z by rene Document vulnerabilities in www/chromium < 22.0.1229.79 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Revision 1.2848: download - view: text, markup, annotated - select for diffs
Wed Sep 26 15:37:58 2012 UTC (7 months, 4 weeks ago) by glarkin
Branches: MAIN
Diff to: previous 1.2847: preferred, colored
Changes since revision 1.2847: +36 -0 lines
SVN rev 304919 on 2012-09-26 15:37:58Z by glarkin - Document remote code execution in ePerl (all versions) - Deprecate and schedule removal in month - no upstream fix available and no active development since 1998 Security: 73efb1b7-07ec-11e2-a391-000c29033c32 Security: CVE-2001-0733 Security: http://www.shmoo.com/mail/bugtraq/jun01/msg00286.shtml
Revision 1.2847: download - view: text, markup, annotated - select for diffs
Tue Sep 25 21:41:50 2012 UTC (7 months, 4 weeks ago) by glarkin
Branches: MAIN
Diff to: previous 1.2846: preferred, colored
Changes since revision 1.2846: +49 -0 lines
SVN rev 304862 on 2012-09-25 21:41:50Z by glarkin - Documented PNG file DoS vulnerability in ImageMagick and GraphicsMagick - Added -nox11 suffixes to various ImageMagick entries
Revision 1.2846: download - view: text, markup, annotated - select for diffs
Sun Sep 23 12:27:22 2012 UTC (8 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2845: preferred, colored
Changes since revision 1.2845: +3 -1 lines
SVN rev 304735 on 2012-09-23 12:27:22Z by eadler Update vuxml to indicate which versions are vulnerable.
Revision 1.2845: download - view: text, markup, annotated - select for diffs
Thu Sep 20 03:02:43 2012 UTC (8 months ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2844: preferred, colored
Changes since revision 1.2844: +86 -2 lines
SVN rev 304559 on 2012-09-20 03:02:43Z by bdrewery
- Update php52 backports patch to 20120911
- Add and update relevant vuxml entries
Changes:
- CVE-2011-1398 - The sapi_header_op function in main/SAPI.c in PHP
before 5.3.11 does not properly handle %0D sequences
- CVE-2012-0789 - Memory leak in the timezone functionality in PHP
before 5.3.9 allows remote attackers to cause a denial of service
(memory consumption) by triggering many strtotime function calls,
which are not properly handled by the php_date_parse_tzfile cache.
- CVE-2012-3365 - The SQLite functionality in PHP before 5.3.15 allows
remote attackers to bypass the open_basedir protection mechanism via
unspecified vectors
- Timezone database updated to version 2012.5 (2012e) (from 2011.13 (2011m))
- Minor improvements (CVE-2012-2688, compilation issues with old GCC)
PR: ports/171583
Submitted by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com>
Approved by: Alex Keda <admin@lissyara.su> (maintainer)
Revision 1.2844: download - view: text, markup, annotated - select for diffs
Thu Sep 20 01:09:57 2012 UTC (8 months ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2843: preferred, colored
Changes since revision 1.2843: +2 -1 lines
SVN rev 304558 on 2012-09-20 01:09:57Z by bdrewery - CVE-2012-2688 was addressed by php52-5.2.17_10 PR: ports/170063 PR: ports/171583 Reported by: Svyatoslav Lempert <svyatoslav.lempert@gmail.com> Security: bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89
Revision 1.2843: download - view: text, markup, annotated - select for diffs
Wed Sep 19 03:46:35 2012 UTC (8 months ago) by dougb
Branches: MAIN
Diff to: previous 1.2842: preferred, colored
Changes since revision 1.2842: +47 -0 lines
SVN rev 304476 on 2012-09-19 03:46:35Z by dougb Upgrade to the latest BIND patch level: Prevents a crash when queried for a record whose RDATA exceeds 65535 bytes. Prevents a crash when validating caused by using "Bad cache" data before it has been initialized. ISC_QUEUE handling for recursive clients was updated to address a race condition that could cause a memory leak. This rarely occurred with UDP clients, but could be a significant problem for a server handling a steady rate of TCP queries. A condition has been corrected where improper handling of zero-length RDATA could cause undesirable behavior, including termination of the named process. For more information: https://kb.isc.org/article/AA-00788
Revision 1.2842: download - view: text, markup, annotated - select for diffs
Mon Sep 17 18:46:51 2012 UTC (8 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2841: preferred, colored
Changes since revision 1.2841: +41 -0 lines
SVN rev 304415 on 2012-09-17 18:46:51Z by lwhsu Document Jenkins Security Advisory 2012-09-17
Revision 1.2841: download - view: text, markup, annotated - select for diffs
Sat Sep 15 21:25:33 2012 UTC (8 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2840: preferred, colored
Changes since revision 1.2840: +1 -0 lines
SVN rev 304327 on 2012-09-15 21:25:33Z by eadler include newly 'awarded' CVE
Revision 1.2840: download - view: text, markup, annotated - select for diffs
Sat Sep 15 17:22:33 2012 UTC (8 months, 1 week ago) by nox
Branches: MAIN
Diff to: previous 1.2839: preferred, colored
Changes since revision 1.2839: +30 -0 lines
SVN rev 304320 on 2012-09-15 17:22:33Z by nox Add vuxml for older versions of multimedia/vlc . PR: ports/169985 Submitted by: "Anders N." <wicked@baot.se>
Revision 1.2839: download - view: text, markup, annotated - select for diffs
Sat Sep 15 02:19:37 2012 UTC (8 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2838: preferred, colored
Changes since revision 1.2838: +31 -0 lines
SVN rev 304305 on 2012-09-15 02:19:37Z by eadler Tell the world about the recent bacula vuln
Revision 1.2838: download - view: text, markup, annotated - select for diffs
Thu Sep 13 03:35:09 2012 UTC (8 months, 1 week ago) by swills
Branches: MAIN
Diff to: previous 1.2837: preferred, colored
Changes since revision 1.2837: +50 -0 lines
SVN rev 304170 on 2012-09-13 03:35:09Z by swills - Update to 0.10.22.6 which fixes two security issues - Document security issues in vuxml [1] Reviewed by: bdrewery [1] Security: 178ba4ea-fd40-11e1-b2ae-001fd0af1a4c
Revision 1.2837: download - view: text, markup, annotated - select for diffs
Wed Sep 12 07:31:22 2012 UTC (8 months, 1 week ago) by danfe
Branches: MAIN
Diff to: previous 1.2836: preferred, colored
Changes since revision 1.2836: +16 -2 lines
SVN rev 304136 on 2012-09-12 07:31:22Z by danfe Update NVIDIA arbitrary memory access vulnerability with CVE-2012-4225.
Revision 1.2836: download - view: text, markup, annotated - select for diffs
Tue Sep 11 11:38:53 2012 UTC (8 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2835: preferred, colored
Changes since revision 1.2835: +2 -1 lines
SVN rev 304088 on 2012-09-11 11:38:53Z by zi - Update entry for net/freeradius2 to reflect local patch to address cve-2012-3547
Revision 1.2835: download - view: text, markup, annotated - select for diffs
Tue Sep 11 08:46:31 2012 UTC (8 months, 1 week ago) by rea
Branches: MAIN
Diff to: previous 1.2834: preferred, colored
Changes since revision 1.2834: +47 -0 lines
SVN rev 304085 on 2012-09-11 08:46:31Z by rea VuXML: document remote code execution in freeRADIUS
Revision 1.2834: download - view: text, markup, annotated - select for diffs
Tue Sep 11 07:51:07 2012 UTC (8 months, 1 week ago) by rea
Branches: MAIN
Diff to: previous 1.2833: preferred, colored
Changes since revision 1.2833: +2 -1 lines
SVN rev 304084 on 2012-09-11 07:51:07Z by rea www/moinmoin: fix CVE-2012-4404, wrong processing of group ACLs Using upstream patch from http://hg.moinmo.in/moin/1.9/raw-rev/7b9f39289e16 PR: 171346 QA page: http://codelabs.ru/fbsd/ports/qa/www/moinmoin/1.9.4_1 Approved by: khsing.cn@gmail.com (maintainer) Security: http://www.vuxml.org/freebsd/4f99e2ef-f725-11e1-8bd8-0022156e8794.html
Revision 1.2833: download - view: text, markup, annotated - select for diffs
Sat Sep 8 02:37:32 2012 UTC (8 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2832: preferred, colored
Changes since revision 1.2832: +1 -0 lines
SVN rev 303851 on 2012-09-08 02:37:32Z by eadler Add vim specific modeline to help users write correct vuxml Submitted by: bdrewery
Revision 1.2832: download - view: text, markup, annotated - select for diffs
Fri Sep 7 23:07:14 2012 UTC (8 months, 2 weeks ago) by rakuco
Branches: MAIN
Diff to: previous 1.2831: preferred, colored
Changes since revision 1.2831: +40 -0 lines
SVN rev 303835 on 2012-09-07 23:07:14Z by rakuco Document the vulnerability that led to emacs 24.2
Revision 1.2831: download - view: text, markup, annotated - select for diffs
Fri Sep 7 20:25:41 2012 UTC (8 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2830: preferred, colored
Changes since revision 1.2830: +29 -0 lines
SVN rev 303824 on 2012-09-07 20:25:41Z by swills - Update to 3.4.2 [1] [2] [3] - Document security issue [4] PR: ports/171397 [1] PR: ports/171404 [2] PR: ports/171405 [3] Submitted by: Yuan-Chung Hsiao <ychsiao@ychsiao.org> (maintainer) [1] Submitted by: Joe Horn <joehorn@gmail.com> (maintainer) [2] [3] Reviewed by: eadler [4] Security: 30149157-f926-11e1-95cd-001fd0af1a4c
Revision 1.2830: download - view: text, markup, annotated - select for diffs
Thu Sep 6 06:10:41 2012 UTC (8 months, 2 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2829: preferred, colored
Changes since revision 1.2829: +1 -0 lines
SVN rev 303744 on 2012-09-06 06:10:41Z by rea VuXML: add <modified> tag for Wireshark's entry for CVE-2012-3548
Revision 1.2829: download - view: text, markup, annotated - select for diffs
Wed Sep 5 16:02:11 2012 UTC (8 months, 2 weeks ago) by marcus
Branches: MAIN
Diff to: previous 1.2828: preferred, colored
Changes since revision 1.2828: +4 -4 lines
SVN rev 303712 on 2012-09-05 16:02:11Z by marcus Change the wireshark version for the DRDA fix.
Revision 1.2828: download - view: text, markup, annotated - select for diffs
Wed Sep 5 10:42:38 2012 UTC (8 months, 2 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2827: preferred, colored
Changes since revision 1.2827: +32 -0 lines
SVN rev 303700 on 2012-09-05 10:42:38Z by rea VuXML: document XSS in MoinMoin before 1.9.4 via RST parser
Revision 1.2827: download - view: text, markup, annotated - select for diffs
Wed Sep 5 09:47:35 2012 UTC (8 months, 2 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2826: preferred, colored
Changes since revision 1.2826: +44 -0 lines
SVN rev 303695 on 2012-09-05 09:47:35Z by rea VuXML: document wrong group ACL processing in MoinMoin
Revision 1.2826: download - view: text, markup, annotated - select for diffs
Wed Sep 5 06:29:38 2012 UTC (8 months, 2 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2825: preferred, colored
Changes since revision 1.2825: +43 -0 lines
SVN rev 303685 on 2012-09-05 06:29:38Z by rea PHP 5.x: document header splitting vulnerability There is a related CVE number (CVE-2012-4388), but there is no current consensus about it: http://article.gmane.org/gmane.comp.security.oss.general/8303
Revision 1.2825: download - view: text, markup, annotated - select for diffs
Tue Sep 4 21:05:15 2012 UTC (8 months, 2 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2824: preferred, colored
Changes since revision 1.2824: +24 -23 lines
SVN rev 303672 on 2012-09-04 21:05:15Z by mandree Modify fetchmail vuln' URLs to established site. While at it, adjust the two oldest topics to current format, for uniformity, on, for instance, http://www.vuxml.org/freebsd/pkg-fetchmail.html.
Revision 1.2824: download - view: text, markup, annotated - select for diffs
Tue Sep 4 13:45:28 2012 UTC (8 months, 2 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2823: preferred, colored
Changes since revision 1.2823: +2 -1 lines
SVN rev 303652 on 2012-09-04 13:45:28Z by rea security/squidclamav: fix DoS and XSS vulnerabilities Apply upstream patches for CVE-2012-3501 and CVE-2012-4667. Security: http://www.vuxml.org/freebsd/ce680f0a-eea6-11e1-8bd8-0022156e8794.html Security: http://www.vuxml.org/freebsd/8defa0f9-ee8a-11e1-8bd8-0022156e8794.html PR: 171022 QA page: http://codelabs.ru/fbsd/ports/qa/security/squidclamav/5.7_1 Approved by: maintainer timeout (1 week)
Revision 1.2823: download - view: text, markup, annotated - select for diffs
Sun Sep 2 02:57:37 2012 UTC (8 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2822: preferred, colored
Changes since revision 1.2822: +26 -0 lines
SVN rev 303527 on 2012-09-02 02:57:37Z by eadler Inform the community about a recent bitcoin DoS vuln. Reviewed by: swills
Revision 1.2822: download - view: text, markup, annotated - select for diffs
Sat Sep 1 20:16:06 2012 UTC (8 months, 3 weeks ago) by ohauer
Branches: MAIN
Diff to: previous 1.2821: preferred, colored
Changes since revision 1.2821: +50 -0 lines
SVN rev 303519 on 2012-09-01 20:16:06Z by ohauer - update bugzilla bugzilla3 and bugzilla42 - use new bugzilla@ address (members skv@, tota@, ohauer@) - patch russian/japanese/german bugzilla and bugzilla templates so the reflect the security updates in the original templates - patch german/bugzilla42 templates - adopt new Makefile header vuxml: 6ad18fe5-f469-11e1-920d-20cf30e32f6d CVE: CVE-2012-3981 https://bugzilla.mozilla.org/show_bug.cgi?id=785470 https://bugzilla.mozilla.org/show_bug.cgi?id=785522 https://bugzilla.mozilla.org/show_bug.cgi?id=785511
Revision 1.2821: download - view: text, markup, annotated - select for diffs
Sat Sep 1 18:50:14 2012 UTC (8 months, 3 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2820: preferred, colored
Changes since revision 1.2820: +31 -0 lines
SVN rev 303508 on 2012-09-01 18:50:14Z by rea VuXML: document CVE-2012-3534, DoS via large number of connections
Revision 1.2820: download - view: text, markup, annotated - select for diffs
Sat Sep 1 17:40:16 2012 UTC (8 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2819: preferred, colored
Changes since revision 1.2819: +2 -5 lines
SVN rev 303503 on 2012-09-01 17:40:16Z by eadler vuxml matches on PKGNAME, not on the port directory. mediawiki118 has PKGNAME mediawiki-1.18.4
Revision 1.2819: download - view: text, markup, annotated - select for diffs
Sat Sep 1 17:16:50 2012 UTC (8 months, 3 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2818: preferred, colored
Changes since revision 1.2818: +1 -0 lines
SVN rev 303499 on 2012-09-01 17:16:50Z by rea Add "modified" tag to the Java 7 entry Forgot to do it at r303435. Spotted by: wxs Pointyhat to: rea
Revision 1.2818: download - view: text, markup, annotated - select for diffs
Sat Sep 1 12:44:33 2012 UTC (8 months, 3 weeks ago) by wen
Branches: MAIN
Diff to: previous 1.2817: preferred, colored
Changes since revision 1.2817: +67 -0 lines
SVN rev 303471 on 2012-09-01 12:44:33Z by wen - Update www/mediawiki to 1.19.2 - Update www/mediawiki118 to 1.18.5 - Document the security bugs
Revision 1.2817: download - view: text, markup, annotated - select for diffs
Fri Aug 31 16:58:41 2012 UTC (8 months, 3 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2816: preferred, colored
Changes since revision 1.2816: +3 -2 lines
SVN rev 303435 on 2012-08-31 16:58:41Z by rea VuXML: update Java 7 entry with Oracle-provided details Oracle's Java 7 update 7 fixes CVE-2012-4681.
Revision 1.2816: download - view: text, markup, annotated - select for diffs
Fri Aug 31 15:17:13 2012 UTC (8 months, 3 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2815: preferred, colored
Changes since revision 1.2815: +8 -10 lines
SVN rev 303428 on 2012-08-31 15:17:13Z by mandree Tidy up paragraph formatting (it passed "make validate" before). Suggested by: wxs
Revision 1.2815: download - view: text, markup, annotated - select for diffs
Fri Aug 31 10:59:18 2012 UTC (8 months, 3 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2814: preferred, colored
Changes since revision 1.2814: +45 -0 lines
SVN rev 303414 on 2012-08-31 10:59:18Z by rea VuXML: document CVE-2012-3548, DoS in Wireshark
Revision 1.2814: download - view: text, markup, annotated - select for diffs
Thu Aug 30 23:08:54 2012 UTC (8 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2813: preferred, colored
Changes since revision 1.2813: +47 -0 lines
SVN rev 303394 on 2012-08-30 23:08:54Z by rene Document vulnerabilities in www/chromium < 21.0.1180.89 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Revision 1.2813: download - view: text, markup, annotated - select for diffs
Thu Aug 30 22:14:10 2012 UTC (8 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2812: preferred, colored
Changes since revision 1.2812: +37 -1 lines
SVN rev 303393 on 2012-08-30 22:14:10Z by flo - Update net/asterisk to 1.8.15.1 - Update net/asterisk10 to 10.7.1 - Document vulnerabilities in vuln.xml - Fix URLs in the pervious asterisk vuln.xml entry Security: http://www.vuxml.org/freebsd/4c53f007-f2ed-11e1-a215-14dae9ebcf89.html
Revision 1.2812: download - view: text, markup, annotated - select for diffs
Thu Aug 30 14:54:17 2012 UTC (8 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2811: preferred, colored
Changes since revision 1.2811: +123 -0 lines
SVN rev 303378 on 2012-08-30 14:54:17Z by flo - update firefox and thunderbird to 15.0 - update firefox-esr, thunderbird-esr, linux-thunderbird and linux-firefox to 10.0.7 - update seamonkey and linux-seamonkey to 2.12 - update nss to 3.13.6 - update bsdipc code (posix_spawn, SysV shared memory) - rename patches to easily track those not (yet) submitted upstream - reduce package size, except for www/libxul[1] - restore default objdir to what it was in 13.0 - fix mail/enigmail after thunderbird build changes - don't accidentally pick up headers from installed ports[3] - add support for PREFIX != LOCALBASE to Makefile.webplugins [4] - document vulnerabilities in vuln.xml - *miscellaneous cleanups and fixups* Obtained from: OpenBSD ports[1] PR: ports/159831, ports/160933, ports/170467[3], ports/170236 [4] Submitted by: avilla [4] In collaboration with: Jan Beich <jbeich@tormail.net> Who did most of the hard work.
Revision 1.2811: download - view: text, markup, annotated - select for diffs
Thu Aug 30 11:40:20 2012 UTC (8 months, 3 weeks ago) by jase
Branches: MAIN
Diff to: previous 1.2810: preferred, colored
Changes since revision 1.2810: +34 -0 lines
SVN rev 303369 on 2012-08-30 11:40:20Z by jase - Update to 1.5.20 - Update MASTER_SITES - Convert to optionsNG and add DOCS option - Document security vulnerabilities [1] PR: ports/169558 Requested by: Alexey <alexey@kouznetsov.com> (submitter) Security: 6dd5e45c-f084-11e1-8d0f-406186f3d89d [1] Approved by: flo (mentor)
Revision 1.2810: download - view: text, markup, annotated - select for diffs
Thu Aug 30 09:03:22 2012 UTC (8 months, 3 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2809: preferred, colored
Changes since revision 1.2809: +49 -0 lines
SVN rev 303364 on 2012-08-30 09:03:22Z by rea VuXML: document CVE-2012-4681, security manager bypass in Java 7.x
Revision 1.2809: download - view: text, markup, annotated - select for diffs
Thu Aug 30 06:23:21 2012 UTC (8 months, 3 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2808: preferred, colored
Changes since revision 1.2808: +35 -1 lines
SVN rev 303361 on 2012-08-30 06:23:21Z by mandree Add a vuln' entry for fetchmail's CVE-2011-3389 vulnerability.
Revision 1.2808: download - view: text, markup, annotated - select for diffs
Mon Aug 27 17:44:23 2012 UTC (8 months, 3 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2807: preferred, colored
Changes since revision 1.2807: +2 -1 lines
SVN rev 303238 on 2012-08-27 17:44:23Z by mandree Update fetchmail to 6.3.21_1, fixing CVE-2012-3482. Adjust VuXML database entry from < 6.3.22 to < 6.3.21_1. PR: ports/170613 Approved by: maintainer timeout (14 days) Security: http://www.vuxml.org/freebsd/83f9e943-e664-11e1-a66d-080027ef73ec.html Security: CVE-2012-3482
Revision 1.2807: download - view: text, markup, annotated - select for diffs
Sun Aug 26 21:31:11 2012 UTC (8 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2806: preferred, colored
Changes since revision 1.2806: +1 -1 lines
SVN rev 303211 on 2012-08-26 21:31:11Z by rea VuXML entry c906e0a4-efa6-11e1-8fbf-001b77d09812: fix port epoch Pointyhat to: rea
Revision 1.2806: download - view: text, markup, annotated - select for diffs
Sun Aug 26 21:26:57 2012 UTC (8 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2805: preferred, colored
Changes since revision 1.2805: +29 -0 lines
SVN rev 303210 on 2012-08-26 21:26:57Z by rea VuXML: document XSS in RoundCube Web-mail application Branch 0.8.x before 0.8.1 is prone to XSS attack via incoming HTML messages.
Revision 1.2805: download - view: text, markup, annotated - select for diffs
Sun Aug 26 17:33:12 2012 UTC (8 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2804: preferred, colored
Changes since revision 1.2804: +1 -1 lines
SVN rev 303194 on 2012-08-26 17:33:12Z by rea news/inn: fix plaintext command injection, CVE-2012-3523 Relevant only for INN installations that are using encryption. PR: 171013 Approved by: fluffy@FreeBSD.org (maintainer) Security: http://www.vuxml.org/freebsd/a7975581-ee26-11e1-8bd8-0022156e8794.html
Revision 1.2804: download - view: text, markup, annotated - select for diffs
Sun Aug 26 01:44:43 2012 UTC (8 months, 4 weeks ago) by avilla
Branches: MAIN
Diff to: previous 1.2803: preferred, colored
Changes since revision 1.2803: +40 -0 lines
SVN rev 303172 on 2012-08-26 01:44:43Z by avilla - Document Calligra input validation failure.
Revision 1.2803: download - view: text, markup, annotated - select for diffs
Sat Aug 25 22:17:28 2012 UTC (8 months, 4 weeks ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2802: preferred, colored
Changes since revision 1.2802: +2 -2 lines
SVN rev 303160 on 2012-08-25 22:17:28Z by bdrewery - Document that CVE-2012-3386 only affects automake >= 1.5.0 Verified this by inspecting the automake14 source, as well as official release tarballs and git history. Approved by: bapt (mentor)
Revision 1.2802: download - view: text, markup, annotated - select for diffs
Sat Aug 25 11:37:59 2012 UTC (8 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2801: preferred, colored
Changes since revision 1.2801: +32 -0 lines
SVN rev 303129 on 2012-08-25 11:37:59Z by rea VuXML: document cross-site scripting in SquidClamav
Revision 1.2801: download - view: text, markup, annotated - select for diffs
Sat Aug 25 10:07:39 2012 UTC (8 months, 4 weeks ago) by rea
Branches: MAIN
Diff to: previous 1.2800: preferred, colored
Changes since revision 1.2800: +35 -0 lines
SVN rev 303124 on 2012-08-25 10:07:39Z by rea VuXML: document DoS in SquidGuard SquidGuard can be crashed via the specially-crafted URL when external URL checker is used.
Revision 1.2800: download - view: text, markup, annotated - select for diffs
Fri Aug 24 20:13:53 2012 UTC (9 months ago) by rea
Branches: MAIN
Diff to: previous 1.2799: preferred, colored
Changes since revision 1.2799: +33 -0 lines
SVN rev 303099 on 2012-08-24 20:13:53Z by rea VuXML: document INN plaintext command injection vulnerability
Revision 1.2799: download - view: text, markup, annotated - select for diffs
Wed Aug 22 21:10:10 2012 UTC (9 months ago) by rea
Branches: MAIN
Diff to: previous 1.2798: preferred, colored
Changes since revision 1.2798: +33 -0 lines
SVN rev 302966 on 2012-08-22 21:10:10Z by rea VuXML: document CVE-2012-3525 in jabberd 2.x
Revision 1.2798: download - view: text, markup, annotated - select for diffs
Wed Aug 22 20:01:19 2012 UTC (9 months ago) by rea
Branches: MAIN
Diff to: previous 1.2797: preferred, colored
Changes since revision 1.2797: +1 -2 lines
SVN rev 302964 on 2012-08-22 20:01:19Z by rea VuXML: fix whitespace in my previous rssh entry
Revision 1.2797: download - view: text, markup, annotated - select for diffs
Wed Aug 22 20:00:31 2012 UTC (9 months ago) by rea
Branches: MAIN
Diff to: previous 1.2796: preferred, colored
Changes since revision 1.2796: +35 -0 lines
SVN rev 302963 on 2012-08-22 20:00:31Z by rea VuXML: document rssh vulnerabilities fixed in version 2.3.3
Revision 1.2796: download - view: text, markup, annotated - select for diffs
Tue Aug 21 20:56:44 2012 UTC (9 months ago) by rea
Branches: MAIN
Diff to: previous 1.2795: preferred, colored
Changes since revision 1.2795: +33 -0 lines
SVN rev 302900 on 2012-08-21 20:56:44Z by rea rssh: document arbitrary code execution, CVE-2012-3478
Revision 1.2795: download - view: text, markup, annotated - select for diffs
Mon Aug 20 01:40:39 2012 UTC (9 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2794: preferred, colored
Changes since revision 1.2794: +39 -0 lines
SVN rev 302775 on 2012-08-20 01:40:39Z by wxs Put libotr entry back. I added the cited URL to the references.
Revision 1.2794: download - view: text, markup, annotated - select for diffs
Sun Aug 19 21:47:45 2012 UTC (9 months ago) by dougb
Branches: MAIN
Diff to: previous 1.2793: preferred, colored
Changes since revision 1.2793: +0 -38 lines
SVN rev 302769 on 2012-08-19 21:47:45Z by dougb Remove the improperly formatted libotr entry. Someone with more knowledge and experience needs to take care of this, I'm clearly not competent.
Revision 1.2793: download - view: text, markup, annotated - select for diffs
Sat Aug 18 08:39:39 2012 UTC (9 months ago) by dougb
Branches: MAIN
Diff to: previous 1.2792: preferred, colored
Changes since revision 1.2792: +43 -6 lines
SVN rev 302713 on 2012-08-18 08:39:39Z by dougb 14 August 2012 libotr version 3.2.1 released Versions 3.2.0 and earlier of libotr contain a small heap write overrun (thanks to Justin Ferguson for the report), and a large heap read overrun (thanks to Ben Hawkes for the report). Add a vuxml entry, and tune up the notes about adding a new entry.
Revision 1.2792: download - view: text, markup, annotated - select for diffs
Sat Aug 18 03:07:42 2012 UTC (9 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2791: preferred, colored
Changes since revision 1.2791: +27 -0 lines
SVN rev 302702 on 2012-08-18 03:07:42Z by wxs Document OpenTTD DoS.
Revision 1.2791: download - view: text, markup, annotated - select for diffs
Sat Aug 18 02:30:28 2012 UTC (9 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2790: preferred, colored
Changes since revision 1.2790: +87 -0 lines
SVN rev 302701 on 2012-08-18 02:30:28Z by wxs Document multiple wireshark vulnerabilities. Two are from 1.8.1 (CVE-2012-4048 and CVE-2012-4049). The remaining are from 1.8.2 which is not in ports yet.
Revision 1.2790: download - view: text, markup, annotated - select for diffs
Fri Aug 17 19:39:51 2012 UTC (9 months, 1 week ago) by jgh
Branches: MAIN
Diff to: previous 1.2789: preferred, colored
Changes since revision 1.2789: +46 -0 lines
SVN rev 302694 on 2012-08-17 19:39:51Z by jgh The PostgreSQL Global Development Group today released security updates for all active branches of the PostgreSQL database system, including versions 9.1.5, 9.0.9, 8.4.13 and 8.3.20. This update patches security holes associated with libxml2 and libxslt, similar to those affecting other open source projects. All users are urged to update their installations at the first available opportunity. This security release fixes a vulnerability in the built-in XML functionality, and a vulnerability in the XSLT functionality supplied by the optional XML2 extension. Both vulnerabilities allow reading of arbitrary files by any authenticated database user, and the XSLT vulnerability allows writing files as well. The fixes cause limited backwards compatibility issues. These issues correspond to the following two vulnerabilities: CVE-2012-3488: PostgreSQL insecure use of libxslt CVE-2012-3489: PostgreSQL insecure use of libxml2 This release also contains several fixes to version 9.1, and a smaller number of fixes to older versions, including: Updates and corrections to time zone data Multiple documentation updates and corrections Add limit on max_wal_senders Fix dependencies generated during ALTER TABLE ADD CONSTRAINT USING INDEX. Correct behavior of unicode conversions for PL/Python Fix WITH attached to a nested set operation (UNION/INTERSECT/EXCEPT). Fix syslogger so that log_truncate_on_rotation works in the first rotation. Only allow autovacuum to be auto-canceled by a directly blocked process. Improve fsync request queue operation Prevent corner-case core dump in rfree(). Fix Walsender so that it responds correctly to timeouts and deadlocks Several PL/Perl fixes for encoding-related issues Make selectivity operators use the correct collation Prevent unsuitable slaves from being selected for synchronous replication Make REASSIGN OWNED work on extensions as well Fix race condition with ENUM comparisons Make NOTIFY cope with out-of-disk-space Fix memory leak in ARRAY subselect queries Reduce data loss at replication failover Fix behavior of subtransactions with Hot Standby
Revision 1.2789: download - view: text, markup, annotated - select for diffs
Fri Aug 17 07:27:04 2012 UTC (9 months, 1 week ago) by matthew
Branches: MAIN
Diff to: previous 1.2788: preferred, colored
Changes since revision 1.2788: +37 -0 lines
SVN rev 302669 on 2012-08-17 07:27:04Z by matthew Document the latest phpMyAdmin vulnerability PMSA-2012-4
Revision 1.2788: download - view: text, markup, annotated - select for diffs
Wed Aug 15 19:45:50 2012 UTC (9 months, 1 week ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2787: preferred, colored
Changes since revision 1.2787: +50 -0 lines
SVN rev 302596 on 2012-08-15 19:45:50Z by bdrewery - Update www/typo3 to 4.7.4 [1] - Convert to new options framework [1] - Update www/typo345 to 4.5.19 [2] - Update www/typo346 to 4.6.12 [3] - Changes: https://typo3.org/news/article/typo3-4519-4612-and-474-released/ - Document security vulnerabilities [4] https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-004/ PR: ports/170650 [1] PR: ports/170647 [2] PR: ports/170649 [3] Submitted by: Helmut Schneider <jumper99@gmx.de> (maintainer) Security: 48bcb4b2-e708-11e1-a59d-000d601460a4 [4] Approved by: eadler (mentor)
Revision 1.2787: download - view: text, markup, annotated - select for diffs
Tue Aug 14 23:17:56 2012 UTC (9 months, 1 week ago) by mandree
Branches: MAIN
Diff to: previous 1.2786: preferred, colored
Changes since revision 1.2786: +31 -0 lines
SVN rev 302538 on 2012-08-14 23:17:56Z by mandree Document CVE-2012-3482 for fetchmail, one DoS and one information disclosure vulnerability in non-default NTLM code. Also see ports/170613 which is pending maintainer feedback.
Revision 1.2786: download - view: text, markup, annotated - select for diffs
Mon Aug 13 17:57:26 2012 UTC (9 months, 1 week ago) by jkim
Branches: MAIN
Diff to: previous 1.2785: preferred, colored
Changes since revision 1.2785: +49 -0 lines
SVN rev 302475 on 2012-08-13 17:57:26Z by jkim Belatedly add an entry for the recent IcedTea-Web updates.
Revision 1.2785: download - view: text, markup, annotated - select for diffs
Sat Aug 11 17:41:52 2012 UTC (9 months, 1 week ago) by novel
Branches: MAIN
Diff to: previous 1.2784: preferred, colored
Changes since revision 1.2784: +31 -0 lines
SVN rev 302418 on 2012-08-11 17:41:52Z by novel Document libcloud MITM vuln. Security: CVE-2012-3446
Revision 1.2784: download - view: text, markup, annotated - select for diffs
Sat Aug 11 08:11:17 2012 UTC (9 months, 1 week ago) by matthew
Branches: MAIN
Diff to: previous 1.2783: preferred, colored
Changes since revision 1.2783: +28 -0 lines
SVN rev 302404 on 2012-08-11 08:11:17Z by matthew Document the latest phpmyadmin security problem.
Revision 1.2783: download - view: text, markup, annotated - select for diffs
Fri Aug 10 14:38:47 2012 UTC (9 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2782: preferred, colored
Changes since revision 1.2782: +110 -0 lines
SVN rev 302390 on 2012-08-10 14:38:47Z by rene - Document vulnerabilities in www/chromium 20.0.1132.57 and 21.0.1180.60. - Keep the latest chromium vulnerabilies on top.
Revision 1.2782: download - view: text, markup, annotated - select for diffs
Fri Aug 10 08:08:27 2012 UTC (9 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2781: preferred, colored
Changes since revision 1.2781: +32 -0 lines
SVN rev 302378 on 2012-08-10 08:08:27Z by rene Document two vulnerabilities in www/chromium < 21.0.1180.75 related to the builtin PDF viewer. Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates
Revision 1.2781: download - view: text, markup, annotated - select for diffs
Fri Aug 10 02:50:53 2012 UTC (9 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2780: preferred, colored
Changes since revision 1.2780: +45 -0 lines
SVN rev 302373 on 2012-08-10 02:50:53Z by swills - Update rails and friends to 3.2.8 - Document security issue in 3.2.7 [1] Submitted by: bdrewery [1] Reviewed by: swills [1] Security: 31db9a18-e289-11e1-a57d-080027a27dbf
Revision 1.2780: download - view: text, markup, annotated - select for diffs
Thu Aug 9 15:43:08 2012 UTC (9 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2779: preferred, colored
Changes since revision 1.2779: +36 -0 lines
SVN rev 302344 on 2012-08-09 15:43:08Z by wxs Document old sudosh buffer overflow. Noticed by: Diego Linke
Revision 1.2779: download - view: text, markup, annotated - select for diffs
Tue Aug 7 15:57:26 2012 UTC (9 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2778: preferred, colored
Changes since revision 1.2778: +12 -9 lines
SVN rev 302244 on 2012-08-07 15:57:26Z by wxs Fix up whitespace in 10f38033-e006-11e1-9304-000000000000. Replace broken vid in 10f38033-e006-11e1-9304-000000000000 with one that is correct.
Revision 1.2778: download - view: text, markup, annotated - select for diffs
Tue Aug 7 02:02:25 2012 UTC (9 months, 2 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2777: preferred, colored
Changes since revision 1.2777: +35 -0 lines
SVN rev 302218 on 2012-08-07 02:02:25Z by zi - Document FreeBSD-SA-12:05.bind
Revision 1.2777: download - view: text, markup, annotated - select for diffs
Mon Aug 6 22:44:13 2012 UTC (9 months, 2 weeks ago) by bdrewery
Branches: MAIN
Diff to: previous 1.2776: preferred, colored
Changes since revision 1.2776: +35 -0 lines
SVN rev 302216 on 2012-08-06 22:44:13Z by bdrewery Document CVE-2012-3386 for devel/automake Approved by: eadler (mentor)
Revision 1.2776: download - view: text, markup, annotated - select for diffs
Thu Aug 2 21:24:11 2012 UTC (9 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2775: preferred, colored
Changes since revision 1.2775: +103 -0 lines
SVN rev 301872 on 2012-08-02 21:24:11Z by flo Belatedly add an entry for the recent Mozilla updates Security: http://www.freebsd.org/ports/portaudit/dbf338d0-dce5-11e1-b655-14dae9ebcf89.html
Revision 1.2775: download - view: text, markup, annotated - select for diffs
Thu Aug 2 12:59:58 2012 UTC (9 months, 3 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2774: preferred, colored
Changes since revision 1.2774: +19 -16 lines
SVN rev 301862 on 2012-08-02 12:59:58Z by zi - Cleanup whitespace
Revision 1.2774: download - view: text, markup, annotated - select for diffs
Thu Aug 2 12:48:09 2012 UTC (9 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2773: preferred, colored
Changes since revision 1.2773: +23 -24 lines
SVN rev 301861 on 2012-08-02 12:48:09Z by wxs Whitespace fixes.
Revision 1.2773: download - view: text, markup, annotated - select for diffs
Thu Aug 2 12:35:33 2012 UTC (9 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2772: preferred, colored
Changes since revision 1.2772: +1 -0 lines
SVN rev 301860 on 2012-08-02 12:35:33Z by wxs Add modified for django entry. Noticed by: remko@
Revision 1.2772: download - view: text, markup, annotated - select for diffs
Thu Aug 2 03:25:54 2012 UTC (9 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2771: preferred, colored
Changes since revision 1.2771: +3 -0 lines
SVN rev 301854 on 2012-08-02 03:25:54Z by wxs Add CVE entries for f01292a0-db3c-11e1-a84b-00e0814cab4e.
Revision 1.2771: download - view: text, markup, annotated - select for diffs
Thu Aug 2 03:17:26 2012 UTC (9 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2770: preferred, colored
Changes since revision 1.2770: +46 -0 lines
SVN rev 301849 on 2012-08-02 03:17:26Z by wxs Document Apache 2.2.x insecure handling of LD_LIBRARY_PATH. Add patch[1] to address problem to apache port. [1]: http://svn.apache.org/viewvc/httpd/httpd/trunk/support/envvars-std.in?view=log&pathrev=1296428 Approved by: apache@ (pgollucci@) Obtained from: Apache SVN
Revision 1.2770: download - view: text, markup, annotated - select for diffs
Tue Jul 31 19:04:51 2012 UTC (9 months, 3 weeks ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2769: preferred, colored
Changes since revision 1.2769: +40 -0 lines
SVN rev 301808 on 2012-07-31 19:04:51Z by lwhsu - Document django -- multiple vulnerabilities
Revision 1.2769: download - view: text, markup, annotated - select for diffs
Mon Jul 30 12:42:32 2012 UTC (9 months, 3 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2768: preferred, colored
Changes since revision 1.2768: +27 -23 lines
SVN rev 301716 on 2012-07-30 12:42:32Z by zi - Update net/isc-dhcp41-server to 4.1-ESV-R6 [1] - Document vulnerabilities in net/isc-dhcp41-server - Cleanup formatting in vuxml PR: ports/170245 [1] Submitted by: Douglas Thrift <douglas@douglasthrift.net> (maintainer) [1] Security: c7fa3618-d5ff-11e1-90a2-000c299b62e1
Revision 1.2768: download - view: text, markup, annotated - select for diffs
Fri Jul 27 22:10:22 2012 UTC (9 months, 4 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2767: preferred, colored
Changes since revision 1.2767: +1 -0 lines
SVN rev 301626 on 2012-07-27 22:10:22Z by delphij Fix build.
Revision 1.2767: download - view: text, markup, annotated - select for diffs
Fri Jul 27 21:34:04 2012 UTC (9 months, 4 weeks ago) by ohauer
Branches: MAIN
Diff to: previous 1.2766: preferred, colored
Changes since revision 1.2766: +51 -0 lines
SVN rev 301625 on 2012-07-27 21:34:04Z by ohauer
- security update bugzilla
new Versions: 3.6.10, 4.0.7, 4.2.2
4.2.2
This release fixes two security issues. See the Security Advisory for details.
In addition, the following important fixes/changes have been made in this release:
o A regression introduced in Bugzilla 4.0 caused some login names to be ignored
when entered in the CC list of bugs. (Bug 756314)
o Some queries could trigger an invalid SQL query if strings entered by the user
contained leading or trailing whitespaces. (Bug 760075)
o The auto-completion form for keywords no longer automatically selects the
first keyword in the list when the field is empty. (Bug 764517)
o A regression in Bugzilla 4.2 prevented classifications from being used in
graphical and tabular reports in the "Multiple Tables" field. (Bug 753688)
o Attachments created by the email_in.pl script were associated to the wrong
comment. (Bug 762785)
o Very long dependency lists can now be viewed correctly. (Bug 762783)
o Keywords are now correctly escaped in the auto-completion form to prevent any
XSS abuse. (Bug 754561)
o A regression introduced in Bugzilla 4.0rc2 when fixing CVE-2011-0046 caused
the "Un-forget the search" link to not work correctly anymore when restoring a
deleted saved search, because this link was lacking a valid token. (Bug 768870)
o Two minor CSRF vulnerabilities have been fixed which could let an attacker
alter your default search criteria in the Advanced Search page. (Bugs 754672
and 754673)
4.0.7
This release fixes one security issue. See the Security Advisory for details.
In addition, the following bugs have been fixed in this release:
o A regression introduced in Bugzilla 4.0 caused some login names to be ignored
when entered in the CC list of bugs. (Bug 756314)
o Keywords are now correctly escaped in the auto-complete form to prevent any
XSS abuse. (Bug 754561)
o A regression introduced in Bugzilla 4.0rc2 when fixing CVE-2011-0046 caused
the "Un-forget the search" link to not work correctly anymore when restoring a
deleted saved search, because this link was lacking a valid token. (Bug 768870)
3.6.10
This release fixes one security issue. See the Security Advisory for details.
http://www.bugzilla.org/security/3.6.9/
Approved by: implicit skv@ (bugzilla / bugzilla3)
Security: CVE-2012-1968
CVE-2012-1969
https://bugzilla.mozilla.org/show_bug.cgi?id=777398
https://bugzilla.mozilla.org/show_bug.cgi?id=777586
vid=58253655-d82c-11e1-907c-20cf30e32f6d
Revision 1.2766: download - view: text, markup, annotated - select for diffs
Fri Jul 27 13:20:22 2012 UTC (9 months, 4 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2765: preferred, colored
Changes since revision 1.2765: +13 -13 lines
SVN rev 301610 on 2012-07-27 13:20:22Z by miwi - Whitespace only fixes. Please care more about formating.
Revision 1.2765: download - view: text, markup, annotated - select for diffs
Fri Jul 27 12:39:06 2012 UTC (9 months, 4 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2764: preferred, colored
Changes since revision 1.2764: +32 -0 lines
SVN rev 301606 on 2012-07-27 12:39:06Z by zi - Update to 3.2.13 - Cleanup whitespace - Document vulnerability in dns/nsd (CVE-2012-29789) PR: ports/170208 Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer) Security: 17f369dc-d7e7-11e1-90a2-000c299b62e1
Revision 1.2764: download - view: text, markup, annotated - select for diffs
Fri Jul 27 03:09:19 2012 UTC (9 months, 4 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2763: preferred, colored
Changes since revision 1.2763: +27 -0 lines
SVN rev 301588 on 2012-07-27 03:09:19Z by swills - Update Rails and friends to 3.2.7 - Add vuxml entry for Rails 3.2.6 [1] Reviewed by: zi [1]
Revision 1.2763: download - view: text, markup, annotated - select for diffs
Thu Jul 26 17:46:51 2012 UTC (9 months, 4 weeks ago) by matthew
Branches: MAIN
Diff to: previous 1.2762: preferred, colored
Changes since revision 1.2762: +33 -0 lines
SVN rev 301571 on 2012-07-26 17:46:51Z by matthew
Security update to 0.11
ChangeLog:
0.11 2012-07-03 Alex Vandiver
* Obfuscate passwords in RT's System Configuration page
* Set an empty CurrentUser on failure, instead of removing it entirely
0.10_01 2012-02-23 Thomas Sibley
* Escape usernames in filter values so special characters don't die
0.10 2012-02-17 Thomas Sibley
* Silence confusing log messages when $ExternalInfoPriority is empty
0.09_03 2012-01-27 Thomas Sibley
* Fetch the necessary attributes when group_attr_value is used
* Test escaping of commas during the group check
0.09_02 2012-01-26 Thomas Sibley
* Improved logging inside the LDAP group membership check
0.09_01 2012-01-23 Thomas Sibley
* Improved logic when dealing with Disabled/disabling users
* Configurable group membership attribute values
* Group membership tests
Security Advisory:
http://blog.bestpractical.com/2012/07/security-vulnerabilities-in-three-commonly-deployed-rt-extensions.html
Approved by: shaun (mentor)
Security: cdc4ff0e-d736-11e1-8221-e0cb4e266481
Revision 1.2762: download - view: text, markup, annotated - select for diffs
Wed Jul 25 02:32:22 2012 UTC (10 months ago) by zi
Branches: MAIN
Diff to: previous 1.2761: preferred, colored
Changes since revision 1.2761: +47 -0 lines
SVN rev 301505 on 2012-07-25 02:32:22Z by zi - Document vulnerabilities in net/isc-dhcp42-server
Revision 1.2761: download - view: text, markup, annotated - select for diffs
Tue Jul 24 19:23:23 2012 UTC (10 months ago) by dougb
Branches: MAIN
Diff to: previous 1.2760: preferred, colored
Changes since revision 1.2760: +47 -0 lines
SVN rev 301487 on 2012-07-24 19:23:23Z by dougb Heavy DNSSEC Validation Load Can Cause a "Bad Cache" Assertion Failure in BIND9 High numbers of queries with DNSSEC validation enabled can cause an assertion failure in named, caused by using a "bad cache" data structure before it has been initialized. CVE: CVE-2012-3817 Posting date: 24 July, 2012
Revision 1.2760: download - view: text, markup, annotated - select for diffs
Tue Jul 24 01:12:06 2012 UTC (10 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2759: preferred, colored
Changes since revision 1.2759: +2 -1 lines
SVN rev 301420 on 2012-07-24 01:12:06Z by delphij / is not allowed in package name, fix the entry by removing the databases/ prefix.
Revision 1.2759: download - view: text, markup, annotated - select for diffs
Tue Jul 24 00:56:07 2012 UTC (10 months ago) by swills
Branches: MAIN
Diff to: previous 1.2758: preferred, colored
Changes since revision 1.2758: +37 -0 lines
SVN rev 301419 on 2012-07-24 00:56:07Z by swills - Document activerecord security issues
Revision 1.2758: download - view: text, markup, annotated - select for diffs
Mon Jul 23 14:39:48 2012 UTC (10 months ago) by flo
Branches: MAIN
Diff to: previous 1.2757: preferred, colored
Changes since revision 1.2757: +35 -0 lines
SVN rev 301401 on 2012-07-23 14:39:48Z by flo - update to 5.3.15 - document php vulnerabilities Security: http://www.vuxml.org/freebsd/bdab0acd-d4cd-11e1-8a1c-14dae9ebcf89.html
Revision 1.2757: download - view: text, markup, annotated - select for diffs
Sat Jul 21 22:40:00 2012 UTC (10 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2756: preferred, colored
Changes since revision 1.2756: +2 -0 lines
SVN rev 301293 on 2012-07-21 22:40:00Z by eadler Fix nit: blockquote citations should be listed as a reference as citation isn't user visible.
Revision 1.2756: download - view: text, markup, annotated - select for diffs
Fri Jul 20 14:53:03 2012 UTC (10 months ago) by crees
Branches: MAIN
Diff to: previous 1.2755: preferred, colored
Changes since revision 1.2755: +31 -0 lines
SVN rev 301228 on 2012-07-20 14:53:03Z by crees Document nsd vulnerability The referenced PR contains a fix that bumps PORTREVISION, so the entry will not match fixed versions. PR: ports/170024 Obtained from: http://www.nlnetlabs.nl/downloads/CVE-2012-2978.txt Security: CVE-2012-2978
Revision 1.2755: download - view: text, markup, annotated - select for diffs
Thu Jul 19 15:20:49 2012 UTC (10 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2754: preferred, colored
Changes since revision 1.2754: +5 -2 lines
SVN rev 301157 on 2012-07-19 15:20:49Z by eadler The changelog indicates the bug can be found in versions prior to 1.2.1 Fix nit: references section should include urls used in citation.
Revision 1.2754: download - view: text, markup, annotated - select for diffs
Wed Jul 18 20:28:47 2012 UTC (10 months ago) by cs
Branches: MAIN
Diff to: previous 1.2753: preferred, colored
Changes since revision 1.2753: +35 -0 lines
SVN rev 301124 on 2012-07-18 20:28:47Z by cs Document buffer overflow in jpeg-turbo PR: ports/169963 Submitted by: Denis E Podolskiy <bytestore@yandex.ru> Security: CVE-2012-2806
Revision 1.2753: download - view: text, markup, annotated - select for diffs
Wed Jul 18 20:08:15 2012 UTC (10 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2752: preferred, colored
Changes since revision 1.2752: +35 -1 lines
SVN rev 301119 on 2012-07-18 20:08:15Z by delphij Document dokuwiki XSS vulnerability.
Revision 1.2752: download - view: text, markup, annotated - select for diffs
Wed Jul 11 01:47:55 2012 UTC (10 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2751: preferred, colored
Changes since revision 1.2751: +80 -1 lines
- Document puppet security issue Obtained from: http://projects.puppetlabs.com/projects/puppet/wiki/Release_Notes#2.7.18
Revision 1.2751: download - view: text, markup, annotated - select for diffs
Sun Jul 8 19:00:07 2012 UTC (10 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2750: preferred, colored
Changes since revision 1.2750: +6 -9 lines
openx reported a new security issue but does not provide any details: inform users of this.
Revision 1.2750: download - view: text, markup, annotated - select for diffs
Fri Jul 6 18:08:00 2012 UTC (10 months, 2 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2749: preferred, colored
Changes since revision 1.2749: +34 -1 lines
Document asterisk vulnerabilities.
Revision 1.2749: download - view: text, markup, annotated - select for diffs
Fri Jul 6 04:09:41 2012 UTC (10 months, 2 weeks ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2748: preferred, colored
Changes since revision 1.2748: +36 -1 lines
- Document typo3 4.5.x, 4.6.x and 4.7.x XSS vulnerability Security: https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2012-003/
Revision 1.2748: download - view: text, markup, annotated - select for diffs
Mon Jul 2 20:05:25 2012 UTC (10 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2747: preferred, colored
Changes since revision 1.2747: +35 -1 lines
Document phplist SQL injection and XSS. Submitted by: Krzysztof Stryjek <wtp@bsdserwis.com>
Revision 1.2747: download - view: text, markup, annotated - select for diffs
Wed Jun 27 21:04:48 2012 UTC (10 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2746: preferred, colored
Changes since revision 1.2746: +81 -1 lines
Document vulnerabilities for www/chromium < 20.0.1132.43 Obtained from: http://googlechromereleases.blogspot.nl/search/label/Stable%20updates
Revision 1.2746: download - view: text, markup, annotated - select for diffs
Wed Jun 27 15:34:44 2012 UTC (10 months, 4 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2745: preferred, colored
Changes since revision 1.2745: +158 -1 lines
- Document recent FreeBSD SA's for 2012: SA-12:04.sysret, SA-12:03.bind, SA-12:02.crypt, SA-12:01.openssl Reviewed by: wxs
Revision 1.2745: download - view: text, markup, annotated - select for diffs
Mon Jun 25 16:06:46 2012 UTC (10 months, 4 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2744: preferred, colored
Changes since revision 1.2744: +41 -1 lines
- update to 2.6 PyCrypto before 2.6 does not produce appropriate prime numbers when using an ElGamal scheme to generate a key, which reduces the signature space or public key space and makes it easier for attackers to conduct brute force attacks to obtain the private key. PR: ports/169146 Approved by: portmgr
Revision 1.2744: download - view: text, markup, annotated - select for diffs
Sat Jun 23 03:48:25 2012 UTC (11 months ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2743: preferred, colored
Changes since revision 1.2743: +5 -2 lines
- Remove PORTEPOCH for de-wordpress and zh-wordpress
Revision 1.2743: download - view: text, markup, annotated - select for diffs
Fri Jun 22 05:42:12 2012 UTC (11 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2742: preferred, colored
Changes since revision 1.2742: +5 -4 lines
- fix range for f5f00804-a03b-11e1-a284-0023ae8e59f0 - add url - adjust modified accordingly PR: ports/169152 Submitted by: Trond.Endrestol@ximalas.info
Revision 1.2742: download - view: text, markup, annotated - select for diffs
Thu Jun 21 12:02:28 2012 UTC (11 months ago) by rm
Branches: MAIN
Diff to: previous 1.2741: preferred, colored
Changes since revision 1.2741: +2 -2 lines
- fix spelling of `php-fpm' in entry description
Revision 1.2741: download - view: text, markup, annotated - select for diffs
Tue Jun 19 16:16:56 2012 UTC (11 months ago) by scheidell
Branches: MAIN
Diff to: previous 1.2740: preferred, colored
Changes since revision 1.2740: +2 -2 lines
- fix package name Submitted by: scheidell@ (me)
Revision 1.2740: download - view: text, markup, annotated - select for diffs
Tue Jun 19 15:59:37 2012 UTC (11 months ago) by scheidell
Branches: MAIN
Diff to: previous 1.2739: preferred, colored
Changes since revision 1.2739: +26 -1 lines
- Add entry for www/joomla25, needs min version 2.5.5 Submitted by: scheidell@ (me)
Revision 1.2739: download - view: text, markup, annotated - select for diffs
Sun Jun 17 05:08:41 2012 UTC (11 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2738: preferred, colored
Changes since revision 1.2738: +1 -5 lines
Fix some nits: - cvename gets automatically expanded to the MITRE url
Revision 1.2738: download - view: text, markup, annotated - select for diffs
Sat Jun 16 13:35:48 2012 UTC (11 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2737: preferred, colored
Changes since revision 1.2737: +54 -1 lines
- Document recent vulnerabilities in security/clamav: CVE-2012-1419, CVE-2012-1457, CVE-2012-1458, CVE-2012-1459
Revision 1.2737: download - view: text, markup, annotated - select for diffs
Thu Jun 14 22:57:25 2012 UTC (11 months, 1 week ago) by flo
Branches: MAIN
Diff to: previous 1.2736: preferred, colored
Changes since revision 1.2736: +28 -1 lines
Document asterisk vulnerability.
Revision 1.2736: download - view: text, markup, annotated - select for diffs
Thu Jun 14 21:41:29 2012 UTC (11 months, 1 week ago) by nox
Branches: MAIN
Diff to: previous 1.2735: preferred, colored
Changes since revision 1.2735: +33 -1 lines
Add vuxml for older version of graphics/ImageMagick. PR: ports/166686 (related to) Submitted by: 4721@hushmail.com (the vuxml, via irc)
Revision 1.2735: download - view: text, markup, annotated - select for diffs
Wed Jun 13 20:16:44 2012 UTC (11 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2734: preferred, colored
Changes since revision 1.2734: +20 -4 lines
Update 55587adb-b49d-11e1-8df1-0004aca374af with more information.
Revision 1.2734: download - view: text, markup, annotated - select for diffs
Tue Jun 12 15:27:21 2012 UTC (11 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2733: preferred, colored
Changes since revision 1.2733: +27 -1 lines
Document mantis vulnerabilities. The information is a bit light on details but I'm unable to track down better. PR: ports/168984 Submitted by: Dan Langille <dan@langille.org>
Revision 1.2733: download - view: text, markup, annotated - select for diffs
Sat Jun 9 06:42:37 2012 UTC (11 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2732: preferred, colored
Changes since revision 1.2732: +33 -1 lines
Update to 11.1.r202.236 and inform community of security issues Security: 38195f00-b215-11e1-8132-003067b2972c
Revision 1.2732: download - view: text, markup, annotated - select for diffs
Wed Jun 6 21:16:42 2012 UTC (11 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2731: preferred, colored
Changes since revision 1.2731: +4 -3 lines
Correct names for BIND 9.6.x and BIND 9.7.x.
Revision 1.2731: download - view: text, markup, annotated - select for diffs
Wed Jun 6 13:09:10 2012 UTC (11 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2730: preferred, colored
Changes since revision 1.2730: +2 -2 lines
Fix my previous commit by adding a accidentally removed <p>.
Revision 1.2730: download - view: text, markup, annotated - select for diffs
Wed Jun 6 12:52:23 2012 UTC (11 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2729: preferred, colored
Changes since revision 1.2729: +7 -7 lines
Remove unnecesarry <p> tags from 47f13540-c4cb-4971-8dc6-28d0dabfd9cd.
Revision 1.2729: download - view: text, markup, annotated - select for diffs
Wed Jun 6 07:29:59 2012 UTC (11 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2728: preferred, colored
Changes since revision 1.2728: +3 -2 lines
Fix some nits: - Improve wording of Sympa vuln description - The url used as a citation for the description must also be a reference for the user.
Revision 1.2728: download - view: text, markup, annotated - select for diffs
Tue Jun 5 20:10:20 2012 UTC (11 months, 2 weeks ago) by beat
Branches: MAIN
Diff to: previous 1.2727: preferred, colored
Changes since revision 1.2727: +73 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2727: download - view: text, markup, annotated - select for diffs
Tue Jun 5 15:15:21 2012 UTC (11 months, 2 weeks ago) by sem
Branches: MAIN
Diff to: previous 1.2726: preferred, colored
Changes since revision 1.2726: +37 -1 lines
- Document the last quagga vulnerability
Revision 1.2726: download - view: text, markup, annotated - select for diffs
Tue Jun 5 10:47:38 2012 UTC (11 months, 2 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2725: preferred, colored
Changes since revision 1.2725: +35 -1 lines
Document sympa vulnerability
Revision 1.2725: download - view: text, markup, annotated - select for diffs
Tue Jun 5 03:19:37 2012 UTC (11 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2724: preferred, colored
Changes since revision 1.2724: +2 -1 lines
Fix some nits: The url in the cite attribute must appear as a reference
Revision 1.2724: download - view: text, markup, annotated - select for diffs
Mon Jun 4 21:51:34 2012 UTC (11 months, 2 weeks ago) by dougb
Branches: MAIN
Diff to: previous 1.2723: preferred, colored
Changes since revision 1.2723: +52 -1 lines
Upgrade to 9.6-ESV-R7-P1, 9.7.6-P1, 9.8.3-P1, and 9.9.1-P1, the latest from ISC. These patched versions contain a critical bugfix: Processing of DNS resource records where the rdata field is zero length may cause various issues for the servers handling them. Processing of these records may lead to unexpected outcomes. Recursive servers may crash or disclose some portion of memory to the client. Secondary servers may crash on restart after transferring a zone containing these records. Master servers may corrupt zone data if the zone option "auto-dnssec" is set to "maintain". Other unexpected problems that are not listed here may also be encountered. All BIND users are strongly encouraged to upgrade.
Revision 1.2723: download - view: text, markup, annotated - select for diffs
Thu May 31 17:27:20 2012 UTC (11 months, 3 weeks ago) by thierry
Branches: MAIN
Diff to: previous 1.2722: preferred, colored
Changes since revision 1.2722: +2 -1 lines
Add the quoted url as a reference for nut. Requested by: eadler
Revision 1.2722: download - view: text, markup, annotated - select for diffs
Thu May 31 16:53:12 2012 UTC (11 months, 3 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2721: preferred, colored
Changes since revision 1.2721: +10 -10 lines
- Fix formating in previous entrys
Revision 1.2721: download - view: text, markup, annotated - select for diffs
Thu May 31 16:40:30 2012 UTC (11 months, 3 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2720: preferred, colored
Changes since revision 1.2720: +12 -6 lines
- better define ranges for a8864f8f-aa9e-11e1-a284-0023ae8e59f0 and add another vendor note
Revision 1.2720: download - view: text, markup, annotated - select for diffs
Wed May 30 22:26:14 2012 UTC (11 months, 3 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2719: preferred, colored
Changes since revision 1.2719: +37 -1 lines
- Address postgresql*-servers for crypt vulnerability (CVE-2012-2143) http://www.postgresql.org/about/news/1397/ With hat: pgsql
Revision 1.2719: download - view: text, markup, annotated - select for diffs
Wed May 30 20:46:36 2012 UTC (11 months, 3 weeks ago) by thierry
Branches: MAIN
Diff to: previous 1.2718: preferred, colored
Changes since revision 1.2718: +32 -1 lines
Add an entry for CVE-2012-2944 in sysutils/nut.
Revision 1.2718: download - view: text, markup, annotated - select for diffs
Wed May 30 03:47:12 2012 UTC (11 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2717: preferred, colored
Changes since revision 1.2717: +7 -3 lines
Fix some nits: The url in the cite attribute must appear as a reference References should be sorted
Revision 1.2717: download - view: text, markup, annotated - select for diffs
Tue May 29 23:08:34 2012 UTC (11 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2716: preferred, colored
Changes since revision 1.2716: +38 -1 lines
Document asterisk vulnerabilities.
Revision 1.2716: download - view: text, markup, annotated - select for diffs
Mon May 28 22:45:15 2012 UTC (11 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2715: preferred, colored
Changes since revision 1.2715: +69 -1 lines
Document vulnerabilities before www/chromium 19.0.1084.52 (the port is safe). Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3103-3115]
Revision 1.2715: download - view: text, markup, annotated - select for diffs
Sat May 26 00:59:38 2012 UTC (11 months, 4 weeks ago) by gavin
Branches: MAIN
Diff to: previous 1.2714: preferred, colored
Changes since revision 1.2714: +2 -2 lines
Correct spelling mistake, FreeSD -> FreeBSD Reviewed by: nox
Revision 1.2714: download - view: text, markup, annotated - select for diffs
Thu May 24 23:46:50 2012 UTC (12 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2713: preferred, colored
Changes since revision 1.2713: +37 -1 lines
- document security issue for haproxy PR: ports/165035 Submitted by: jgh@ Security: CVE-2012-2391
Revision 1.2713: download - view: text, markup, annotated - select for diffs
Thu May 24 19:55:11 2012 UTC (12 months ago) by flo
Branches: MAIN
Diff to: previous 1.2712: preferred, colored
Changes since revision 1.2712: +83 -1 lines
Document RT vulnerabilities. (I'm only committing this as matthew is still waiting for mentor approval, and we found it important enough to commit it right now) Submitted by: matthew
Revision 1.2712: download - view: text, markup, annotated - select for diffs
Mon May 21 16:43:57 2012 UTC (12 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2711: preferred, colored
Changes since revision 1.2711: +3 -1 lines
- inspircd 1.2.9 is not vulnerable PR: ports/167975 Spotted by: feld@feld.me
Revision 1.2711: download - view: text, markup, annotated - select for diffs
Mon May 21 13:15:42 2012 UTC (12 months ago) by rm
Branches: MAIN
Diff to: previous 1.2710: preferred, colored
Changes since revision 1.2710: +32 -1 lines
Add an entry for mail/sympa < 6.1.11 (CVE-2012-2352)
Revision 1.2710: download - view: text, markup, annotated - select for diffs
Mon May 21 06:57:15 2012 UTC (12 months ago) by rm
Branches: MAIN
Diff to: previous 1.2709: preferred, colored
Changes since revision 1.2709: +38 -1 lines
Add www/foswiki < 1.1.5 entry (CVE-2012-1004)
Revision 1.2709: download - view: text, markup, annotated - select for diffs
Mon May 21 05:31:34 2012 UTC (12 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2708: preferred, colored
Changes since revision 1.2708: +19 -19 lines
- Correct b8ae4659-a0da-11e1-a294-bcaec565249c entry [1] - Formating and cleanup Submitted by: Neal Dias <ndias@cisco.com> [1]
Revision 1.2708: download - view: text, markup, annotated - select for diffs
Fri May 18 11:51:17 2012 UTC (12 months, 1 week ago) by kwm
Branches: MAIN
Diff to: previous 1.2707: preferred, colored
Changes since revision 1.2707: +37 -1 lines
Document and fix a off-by-one vulnability in libxml2. Obtained from: libxml upstream Security: b8ae4659-a0da-11e1-a294-bcaec565249c
Revision 1.2707: download - view: text, markup, annotated - select for diffs
Thu May 17 17:31:01 2012 UTC (12 months, 1 week ago) by jgh
Branches: MAIN
Diff to: previous 1.2706: preferred, colored
Changes since revision 1.2706: +2 -2 lines
- fix date in 725ab25a-987b-11e1-a2ef-001fd0af1a4c
Revision 1.2706: download - view: text, markup, annotated - select for diffs
Thu May 17 17:12:46 2012 UTC (12 months, 1 week ago) by jgh
Branches: MAIN
Diff to: previous 1.2705: preferred, colored
Changes since revision 1.2705: +6 -6 lines
- revert unintentional date change in aa71daaa-9f8c-11e1-bd0a-0082a0c18826 - update date in f5f00804-a03b-11e1-a284-0023ae8e59f0 - adjust dates in 3d55b961-9a2e-11e1-a2ef-001fd0af1a4c a1d0911f-987a-11e1-a2ef-001fd0af1a4c for ordering
Revision 1.2705: download - view: text, markup, annotated - select for diffs
Thu May 17 16:52:35 2012 UTC (12 months, 1 week ago) by jgh
Branches: MAIN
Diff to: previous 1.2704: preferred, colored
Changes since revision 1.2704: +32 -3 lines
- Update inspircd to 2.0.5 [1] - document CVE-2012-1836 [2] PR: ports/167975 Submitted by: maintainer, feld@feld.me [1], jgh@ [2] Security: CVE-2012-1836
Revision 1.2704: download - view: text, markup, annotated - select for diffs
Thu May 17 05:56:48 2012 UTC (12 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2703: preferred, colored
Changes since revision 1.2703: +2 -2 lines
Fix some nits: The url in the cite attribute must appear as a reference The CVE automatically gets expanded to a url so the mitre url is not needed
Revision 1.2703: download - view: text, markup, annotated - select for diffs
Thu May 17 05:44:39 2012 UTC (12 months, 1 week ago) by jgh
Branches: MAIN
Diff to: previous 1.2702: preferred, colored
Changes since revision 1.2702: +2 -2 lines
- fix spelling in b3435b68-9ee8-11e1-997c-002354ed89bc
Revision 1.2702: download - view: text, markup, annotated - select for diffs
Wed May 16 19:41:27 2012 UTC (12 months, 1 week ago) by dougb
Branches: MAIN
Diff to: previous 1.2701: preferred, colored
Changes since revision 1.2701: +32 -1 lines
Versions 3.2.0 and earlier of the pidgin-otr plugin contain a format string security flaw. This flaw could potentially be exploited by a remote attacker to cause arbitrary code to be executed on the user's machine. The flaw is in pidgin-otr, not in libotr. Other applications that use libotr are not affected.
Revision 1.2701: download - view: text, markup, annotated - select for diffs
Wed May 16 14:24:05 2012 UTC (12 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2700: preferred, colored
Changes since revision 1.2700: +42 -1 lines
Document sudo netmask vulnerability. Patch for port forthcoming.
Revision 1.2700: download - view: text, markup, annotated - select for diffs
Wed May 16 07:40:32 2012 UTC (12 months, 1 week ago) by dinoex
Branches: MAIN
Diff to: previous 1.2699: preferred, colored
Changes since revision 1.2699: +29 -1 lines
- Security update OpenSSL 1.0.1c
Revision 1.2699: download - view: text, markup, annotated - select for diffs
Tue May 15 18:39:56 2012 UTC (12 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2698: preferred, colored
Changes since revision 1.2698: +79 -1 lines
Document vulnerabilities for www/chromium < 19.0.1084.46 Security: CVE-2011-[3083-3097], CVE-2011-[3099-3100]
Revision 1.2698: download - view: text, markup, annotated - select for diffs
Mon May 14 21:18:00 2012 UTC (12 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2697: preferred, colored
Changes since revision 1.2697: +33 -1 lines
- Document vulnerability in net/socat (CVE-2012-0219)
Revision 1.2697: download - view: text, markup, annotated - select for diffs
Mon May 14 20:37:00 2012 UTC (12 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2696: preferred, colored
Changes since revision 1.2696: +4 -2 lines
Fix pivotx vuln.xml
Revision 1.2696: download - view: text, markup, annotated - select for diffs
Sat May 12 21:48:32 2012 UTC (12 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2695: preferred, colored
Changes since revision 1.2695: +5 -1 lines
- 59b68b1e-9c78-11e1-b5e0-000c299b62e1 also applies to lang/php52
Revision 1.2695: download - view: text, markup, annotated - select for diffs
Sat May 12 21:35:10 2012 UTC (12 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2694: preferred, colored
Changes since revision 1.2694: +38 -1 lines
- Document recent vulnerabilities in PHP (CVE-2012-2311 and CVE-2012-2329)
Revision 1.2694: download - view: text, markup, annotated - select for diffs
Sat May 12 16:24:42 2012 UTC (12 months, 1 week ago) by marcus
Branches: MAIN
Diff to: previous 1.2693: preferred, colored
Changes since revision 1.2693: +26 -1 lines
Add an entry for CVE-2012-2214 for an XMPP crash in libpurple.
Revision 1.2693: download - view: text, markup, annotated - select for diffs
Sat May 12 14:23:42 2012 UTC (12 months, 1 week ago) by sbz
Branches: MAIN
Diff to: previous 1.2692: preferred, colored
Changes since revision 1.2692: +31 -1 lines
- Document CVE-2012-2274 for port www/pivotx PR: ports/167819 Submitted by: Fumiyuki Shimizu <fumifumi at abacustech.jp> Security: CVE-2012-2274
Revision 1.2692: download - view: text, markup, annotated - select for diffs
Fri May 11 08:53:19 2012 UTC (12 months, 2 weeks ago) by danfe
Branches: MAIN
Diff to: previous 1.2691: preferred, colored
Changes since revision 1.2691: +37 -1 lines
Belated VuXML entry for recent NVIDIA Unix driver arbitrary system memory access vulnerability. Reviewed by: eadler, delphij Security: CVE-2012-0946
Revision 1.2691: download - view: text, markup, annotated - select for diffs
Wed May 9 23:27:05 2012 UTC (12 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2690: preferred, colored
Changes since revision 1.2690: +28 -1 lines
- Add entry for rubygem-mail
Revision 1.2690: download - view: text, markup, annotated - select for diffs
Tue May 8 20:53:01 2012 UTC (12 months, 2 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2689: preferred, colored
Changes since revision 1.2689: +2 -2 lines
Revert my "correction" for php52. All the 5.2.x still affected to NULL poison bug. Just tested both latest 5.2 and 5.3 with the script from here: https://bugs.php.net/bug.php?id=39863 Sorry.
Revision 1.2689: download - view: text, markup, annotated - select for diffs
Tue May 8 20:23:10 2012 UTC (12 months, 2 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2688: preferred, colored
Changes since revision 1.2688: +2 -2 lines
Mark php52 >= 5.2.15 as not vulnerable to NULL byte poisoning [1]. This problem was fixed in 5.3.4 and 5.2.15 simultaneously. [1] http://www.vuxml.org/freebsd/3761df02-0f9c-11e0-becc-0022156e8794.html Reported by: Svyatoslav Lempert <svyatoslav.lempert at gmail dot com>
Revision 1.2688: download - view: text, markup, annotated - select for diffs
Tue May 8 02:20:11 2012 UTC (12 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2687: preferred, colored
Changes since revision 1.2687: +27 -1 lines
- Add entry for www/node
Revision 1.2687: download - view: text, markup, annotated - select for diffs
Tue May 8 01:54:57 2012 UTC (12 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2686: preferred, colored
Changes since revision 1.2686: +28 -1 lines
- Add entry for p5-Config-IniFiles
Revision 1.2686: download - view: text, markup, annotated - select for diffs
Sun May 6 15:45:47 2012 UTC (12 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2685: preferred, colored
Changes since revision 1.2685: +4 -2 lines
Add references for the portupgrade advisory. Some code actually expects content in this section. Reported by: dvl Reviewed by: wxs,zi
Revision 1.2685: download - view: text, markup, annotated - select for diffs
Sat May 5 13:53:45 2012 UTC (12 months, 2 weeks ago) by simon
Branches: MAIN
Diff to: previous 1.2684: preferred, colored
Changes since revision 1.2684: +4 -2 lines
Unbreak vuln.xml format. While here fix a long line. Pointyhat: scheidell
Revision 1.2684: download - view: text, markup, annotated - select for diffs
Sat May 5 13:21:06 2012 UTC (12 months, 2 weeks ago) by scheidell
Branches: MAIN
Diff to: previous 1.2683: preferred, colored
Changes since revision 1.2683: +7 -3 lines
- Account for repocopy of php5 -> php53 - Account for php52 backport fix - Add entry for php54 (which will be named php5) Submitted by: scheidell@ (me)
Revision 1.2683: download - view: text, markup, annotated - select for diffs
Sat May 5 11:12:07 2012 UTC (12 months, 2 weeks ago) by scheidell
Branches: MAIN
Diff to: previous 1.2682: preferred, colored
Changes since revision 1.2682: +2 -2 lines
- Third time the charm. remove extra ( Submitted by: scheidell@ (me)
Revision 1.2682: download - view: text, markup, annotated - select for diffs
Sat May 5 11:02:12 2012 UTC (12 months, 2 weeks ago) by scheidell
Branches: MAIN
Diff to: previous 1.2681: preferred, colored
Changes since revision 1.2681: +37 -1 lines
- All versions of PHP between 2004 release and May 3rd, 2012 are vulnerable to cmdarg attacks - Note: PHP 5.2.12 and 5.4.2 were created to address this issue, but did not. - See WWW: http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/ - An additional, unreleased version is needed. Submitted by: scheidell@ (me) Obtained from: WWW:www.php.net/archive/2012.php#id2012-05-03-1 Security: CVE-2012-1823
Revision 1.2681: download - view: text, markup, annotated - select for diffs
Sat May 5 02:04:48 2012 UTC (12 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2680: preferred, colored
Changes since revision 1.2680: +10 -6 lines
Fix PHP entry to match the actual package name Submitted by: simon
Revision 1.2680: download - view: text, markup, annotated - select for diffs
Wed May 2 15:33:38 2012 UTC (12 months, 3 weeks ago) by glarkin
Branches: MAIN
Diff to: previous 1.2679: preferred, colored
Changes since revision 1.2679: +32 -1 lines
- Document www/webcalendar-devel - multiple vulnerabilities Requested by: eadler, Hanno Boeck <hanno@hboeck.de>
Revision 1.2679: download - view: text, markup, annotated - select for diffs
Tue May 1 12:56:26 2012 UTC (12 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2678: preferred, colored
Changes since revision 1.2678: +43 -1 lines
Document vulnerabilities in www/chromium < 18.0.1025.168 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3078-3081], CVE-2012-1521
Revision 1.2678: download - view: text, markup, annotated - select for diffs
Mon Apr 30 22:03:45 2012 UTC (12 months, 3 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2677: preferred, colored
Changes since revision 1.2677: +37 -1 lines
- Document vulnerability in lang/php5
Revision 1.2677: download - view: text, markup, annotated - select for diffs
Mon Apr 30 17:51:46 2012 UTC (12 months, 3 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2676: preferred, colored
Changes since revision 1.2676: +47 -1 lines
Document samba incorrect permission checks vulnerability.
Revision 1.2676: download - view: text, markup, annotated - select for diffs
Mon Apr 30 03:03:54 2012 UTC (12 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2675: preferred, colored
Changes since revision 1.2675: +29 -1 lines
Inform users that ports-mgmt/portupgrade-devel had unchecked distinfo
Revision 1.2675: download - view: text, markup, annotated - select for diffs
Fri Apr 27 02:45:24 2012 UTC (12 months, 4 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2674: preferred, colored
Changes since revision 1.2674: +34 -1 lines
- Document vulnerability in net-mgmt/net-snmp (CVE-2012-2141)
Revision 1.2674: download - view: text, markup, annotated - select for diffs
Tue Apr 24 17:51:46 2012 UTC (13 months ago) by beat
Branches: MAIN
Diff to: previous 1.2673: preferred, colored
Changes since revision 1.2673: +111 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2673: download - view: text, markup, annotated - select for diffs
Mon Apr 23 23:41:12 2012 UTC (13 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2672: preferred, colored
Changes since revision 1.2672: +27 -1 lines
Document dokuwiki CSRF vulnerability.
Revision 1.2672: download - view: text, markup, annotated - select for diffs
Mon Apr 23 20:20:04 2012 UTC (13 months ago) by flo
Branches: MAIN
Diff to: previous 1.2671: preferred, colored
Changes since revision 1.2671: +41 -1 lines
Document multiple asterisk vulnerabilities
Revision 1.2671: download - view: text, markup, annotated - select for diffs
Mon Apr 23 15:26:50 2012 UTC (13 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2670: preferred, colored
Changes since revision 1.2670: +43 -1 lines
Inform users of security vulns in wordpress PR: ports/167157
Revision 1.2670: download - view: text, markup, annotated - select for diffs
Sun Apr 22 18:30:37 2012 UTC (13 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2669: preferred, colored
Changes since revision 1.2669: +1 -2 lines
Unbreak vuxml by removing stray 'p' Submitted by: vuxml buildbot
Revision 1.2669: download - view: text, markup, annotated - select for diffs
Sun Apr 22 18:02:00 2012 UTC (13 months ago) by danfe
Branches: MAIN
Diff to: previous 1.2668: preferred, colored
Changes since revision 1.2668: +709 -678 lines
Fix formatting in the first 10% of VuXML database file.
Revision 1.2668: download - view: text, markup, annotated - select for diffs
Sun Apr 22 15:22:21 2012 UTC (13 months ago) by danfe
Branches: MAIN
Diff to: previous 1.2667: preferred, colored
Changes since revision 1.2667: +59 -61 lines
Fix whitespace: run through unexpand(1), spelling, wrap overly long lines.
Revision 1.2667: download - view: text, markup, annotated - select for diffs
Sat Apr 21 23:43:57 2012 UTC (13 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2666: preferred, colored
Changes since revision 1.2666: +32 -1 lines
Inform users about the recent openssl vuln Reviewed by: dinoex
Revision 1.2666: download - view: text, markup, annotated - select for diffs
Sat Apr 21 17:37:42 2012 UTC (13 months ago) by ohauer
Branches: MAIN
Diff to: previous 1.2665: preferred, colored
Changes since revision 1.2665: +47 -1 lines
- security update to bugzilla 3.0.9 and 4.0.6 - update russian/bugzilla3-ru template - patch german templates so revision match and no warning is displayed - add vuxml entry Approved by: skv (implicit) Security: https://bugzilla.mozilla.org/show_bug.cgi?id=728639 https://bugzilla.mozilla.org/show_bug.cgi?id=745397 CVE-2012-0465 CVE-2012-0466
Revision 1.2665: download - view: text, markup, annotated - select for diffs
Thu Apr 19 03:12:32 2012 UTC (13 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2664: preferred, colored
Changes since revision 1.2664: +35 -1 lines
- document typo3 vulnerability PR: ports/167029
Revision 1.2664: download - view: text, markup, annotated - select for diffs
Mon Apr 16 15:34:57 2012 UTC (13 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2663: preferred, colored
Changes since revision 1.2663: +31 -1 lines
Add information about the recent nginx security vulnerability PR: ports/166990 Submitted by: rodrigo osorio <rodrigo@bebik.net>
Revision 1.2663: download - view: text, markup, annotated - select for diffs
Sat Apr 14 16:45:06 2012 UTC (13 months, 1 week ago) by flo
Branches: MAIN
Diff to: previous 1.2662: preferred, colored
Changes since revision 1.2662: +28 -1 lines
Document phpmyfaq -- Remote PHP Code Execution Vulnerability
Revision 1.2662: download - view: text, markup, annotated - select for diffs
Thu Apr 12 15:48:51 2012 UTC (13 months, 1 week ago) by swills
Branches: MAIN
Diff to: previous 1.2661: preferred, colored
Changes since revision 1.2661: +6 -6 lines
- Slight cleanups for my puppet entry
Revision 1.2661: download - view: text, markup, annotated - select for diffs
Wed Apr 11 01:44:19 2012 UTC (13 months, 2 weeks ago) by swills
Branches: MAIN
Diff to: previous 1.2660: preferred, colored
Changes since revision 1.2660: +37 -1 lines
- Document security issue with Puppet - Update puppet for security issue Security: 607d2108-a0e4-423a-bf78-846f2a8f01b0
Revision 1.2660: download - view: text, markup, annotated - select for diffs
Tue Apr 10 21:16:53 2012 UTC (13 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2659: preferred, colored
Changes since revision 1.2659: +40 -1 lines
Document samba root code execution vulnerability.
Revision 1.2659: download - view: text, markup, annotated - select for diffs
Tue Apr 10 05:32:13 2012 UTC (13 months, 2 weeks ago) by ohauer
Branches: MAIN
Diff to: previous 1.2658: preferred, colored
Changes since revision 1.2658: +42 -1 lines
- document bugzilla Cross-Site Request Forgery
Revision 1.2658: download - view: text, markup, annotated - select for diffs
Mon Apr 9 23:15:23 2012 UTC (13 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2657: preferred, colored
Changes since revision 1.2657: +31 -1 lines
Document recent flash player vulnerabilities Reviewed by: nox
Revision 1.2657: download - view: text, markup, annotated - select for diffs
Sun Apr 8 22:27:16 2012 UTC (13 months, 2 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2656: preferred, colored
Changes since revision 1.2656: +33 -4 lines
- Document vulnerability in graphics/png (CVE-2011-3048) - Fix wording/spelling in 462e2d6c-8017-11e1-a571-bcaec565249c Feature safe: yes
Revision 1.2656: download - view: text, markup, annotated - select for diffs
Sun Apr 8 07:47:38 2012 UTC (13 months, 2 weeks ago) by remko
Branches: MAIN
Diff to: previous 1.2655: preferred, colored
Changes since revision 1.2655: +2 -3 lines
As requested by eadler, revert the commit about the move of the <!-- EOF --> tag. I cannot reproduce the error anymore, so it might have been the reviewal entry or something else was locally wrong. I did a make validate before committing this to make sure it's OK at this point, if someone encounters the same problem, please let us know! Feature safe: yes
Revision 1.2655: download - view: text, markup, annotated - select for diffs
Fri Apr 6 18:44:36 2012 UTC (13 months, 2 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2654: preferred, colored
Changes since revision 1.2654: +47 -1 lines
Document freetype 2 multiple vulnabilities. Feature safe: yes
Revision 1.2654: download - view: text, markup, annotated - select for diffs
Fri Apr 6 16:07:05 2012 UTC (13 months, 2 weeks ago) by nox
Branches: MAIN
Diff to: previous 1.2653: preferred, colored
Changes since revision 1.2653: +31 -1 lines
- Fix vulnerability CVE-2011-1429. - Add a patch to the mutt pager that handles non-breaking space characters (0xA0) in an UTF8 environment correctly. - Bump PORTREVISION. PR: ports/166659 Submitted by: Udo Schweigert <udo.schweigert@siemens.com> (maintainer) Security: http://www.freebsd.org/ports/portaudit/49314321-7fd4-11e1-9582-001b2134ef46.html Feature safe: yes
Revision 1.2653: download - view: text, markup, annotated - select for diffs
Thu Apr 5 20:59:08 2012 UTC (13 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2652: preferred, colored
Changes since revision 1.2652: +61 -1 lines
Mention vulnerabilities in www/chromium < 18.0.1025.151 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3066-3077] Feature safe: yes
Revision 1.2652: download - view: text, markup, annotated - select for diffs
Tue Apr 3 17:55:33 2012 UTC (13 months, 3 weeks ago) by remko
Branches: MAIN
Diff to: previous 1.2651: preferred, colored
Changes since revision 1.2651: +3 -2 lines
Someone forgot to do a make validate after adding the <!--EOF line. It breaks the make validate. Feature safe: yes
Revision 1.2651: download - view: text, markup, annotated - select for diffs
Sun Apr 1 23:57:22 2012 UTC (13 months, 3 weeks ago) by marcus
Branches: MAIN
Diff to: previous 1.2650: preferred, colored
Changes since revision 1.2650: +29 -1 lines
Add a record for CVE-2012-1178. Reported by: Peter Jeremy <peterjeremy@acm.org> Feature safe: yes
Revision 1.2650: download - view: text, markup, annotated - select for diffs
Thu Mar 29 01:23:15 2012 UTC (13 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2649: preferred, colored
Changes since revision 1.2649: +2 -3 lines
Fix formatting so that "make tidy" passes Feature safe: yes
Revision 1.2649: download - view: text, markup, annotated - select for diffs
Wed Mar 28 23:50:41 2012 UTC (13 months, 3 weeks ago) by matthew
Branches: MAIN
Diff to: previous 1.2648: preferred, colored
Changes since revision 1.2648: +33 -1 lines
Another phpmyadmin security update. ChangeLog: http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/3.4.10.2/phpMyAdmin-3.4.10.2-notes.html/download Welcome to phpMyAdmin 3.4.10.2, a minor security release. 3.4.10.2 (2012-03-28) - [security] Fixed local path disclosure vulnerability, see PMASA-2012-2 Advisory: http://www.phpmyadmin.net/home_page/security/PMASA-2012-2.php Approved by: shaun (mentor) Feature safe: yes Security: a81161d2-790f-11e1-ac16-e0cb4e266481
Revision 1.2648: download - view: text, markup, annotated - select for diffs
Wed Mar 28 20:10:11 2012 UTC (13 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2647: preferred, colored
Changes since revision 1.2647: +53 -1 lines
Document vulnerabilities in www/chromium < 18.0.1025.142 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3057-3065] Feature safe: yes
Revision 1.2647: download - view: text, markup, annotated - select for diffs
Mon Mar 26 11:56:55 2012 UTC (13 months, 4 weeks ago) by sem
Branches: MAIN
Diff to: previous 1.2646: preferred, colored
Changes since revision 1.2646: +6 -1 lines
- quagga-re affected the last vulnerability too. Feature safe: Yes
Revision 1.2646: download - view: text, markup, annotated - select for diffs
Sun Mar 25 17:20:54 2012 UTC (14 months ago) by rakuco
Branches: MAIN
CVS tags: RELEASE_8_3_0
Diff to: previous 1.2645: preferred, colored
Changes since revision 1.2645: +45 -1 lines
Document CVE-2012-0037 for textproc/raptor and textproc/raptor2. Security: CVE-2012-0037 Feature safe: yes
Revision 1.2645: download - view: text, markup, annotated - select for diffs
Sat Mar 24 15:12:45 2012 UTC (14 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2644: preferred, colored
Changes since revision 1.2644: +2 -3 lines
Fix formatting so that "make tidy" passes Feature safe: yes
Revision 1.2644: download - view: text, markup, annotated - select for diffs
Sat Mar 24 14:11:55 2012 UTC (14 months ago) by zi
Branches: MAIN
Diff to: previous 1.2643: preferred, colored
Changes since revision 1.2643: +38 -1 lines
- Document recent vulnerabilities in net/quagga (CVE-2012-0249, CVE-2012-0250, CVE-2012-0255) Feature safe: yes
Revision 1.2643: download - view: text, markup, annotated - select for diffs
Sat Mar 24 08:00:14 2012 UTC (14 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2642: preferred, colored
Changes since revision 1.2642: +12 -2 lines
Correct version ranges. Feature safe: yes
Revision 1.2642: download - view: text, markup, annotated - select for diffs
Sat Mar 24 07:20:53 2012 UTC (14 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2641: preferred, colored
Changes since revision 1.2641: +30 -1 lines
Document Apache Traffic Server -- heap overflow vulnerability Feature safe: yes
Revision 1.2641: download - view: text, markup, annotated - select for diffs
Thu Mar 22 10:57:29 2012 UTC (14 months ago) by rene
Branches: MAIN
Diff to: previous 1.2640: preferred, colored
Changes since revision 1.2640: +57 -1 lines
Document vulnerabilities for www/chromium < 17.0.963.83 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3045,3049-3057] Feature safe: yes
Revision 1.2640: download - view: text, markup, annotated - select for diffs
Wed Mar 21 21:58:05 2012 UTC (14 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2639: preferred, colored
Changes since revision 1.2639: +63 -1 lines
Document GNUtls and libtasn1 security vulnerabilities. Feature safe: yes
Revision 1.2639: download - view: text, markup, annotated - select for diffs
Sun Mar 18 04:39:27 2012 UTC (14 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2638: preferred, colored
Changes since revision 1.2638: +28 -28 lines
- Cleanup Feature safe: yes
Revision 1.2638: download - view: text, markup, annotated - select for diffs
Sun Mar 18 04:30:56 2012 UTC (14 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2637: preferred, colored
Changes since revision 1.2637: +7 -4 lines
- Correct the last 3 firefox 3.6 entrys PR: 166207 Submitted by: Sergey Kandaurov <pluknet@gmail.com> Feature safe: yes
Revision 1.2637: download - view: text, markup, annotated - select for diffs
Thu Mar 15 23:11:09 2012 UTC (14 months, 1 week ago) by flo
Branches: MAIN
Diff to: previous 1.2636: preferred, colored
Changes since revision 1.2636: +40 -1 lines
Document recent asterisk vulnerabilities. Feature safe: yes
Revision 1.2636: download - view: text, markup, annotated - select for diffs
Thu Mar 15 15:21:03 2012 UTC (14 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2635: preferred, colored
Changes since revision 1.2635: +36 -1 lines
Document CVE-2012-0884. Feature safe: yes
Revision 1.2635: download - view: text, markup, annotated - select for diffs
Thu Mar 15 13:45:54 2012 UTC (14 months, 1 week ago) by osa
Branches: MAIN
Diff to: previous 1.2634: preferred, colored
Changes since revision 1.2634: +33 -1 lines
Document nginx -- potential information leak. Feature safe: yes
Revision 1.2634: download - view: text, markup, annotated - select for diffs
Wed Mar 14 09:16:50 2012 UTC (14 months, 1 week ago) by beat
Branches: MAIN
Diff to: previous 1.2633: preferred, colored
Changes since revision 1.2633: +75 -1 lines
- Document mozilla -- multiple vulnerabilities Feature safe: yes
Revision 1.2633: download - view: text, markup, annotated - select for diffs
Tue Mar 13 09:37:28 2012 UTC (14 months, 1 week ago) by kwm
Branches: MAIN
Diff to: previous 1.2632: preferred, colored
Changes since revision 1.2632: +3 -2 lines
Do proper input validation for libXfont. This is for CVE-2011-2895. Feature safe: yes
Revision 1.2632: download - view: text, markup, annotated - select for diffs
Mon Mar 12 02:23:58 2012 UTC (14 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2631: preferred, colored
Changes since revision 1.2631: +2 -2 lines
Typo fix. Feature safe: yes
Revision 1.2631: download - view: text, markup, annotated - select for diffs
Sun Mar 11 21:37:42 2012 UTC (14 months, 2 weeks ago) by simon
Branches: MAIN
Diff to: previous 1.2630: preferred, colored
Changes since revision 1.2630: +44 -2 lines
- Document portaudit -- auditfile remote code execution. - Update (c) year. Feature safe: yes
Revision 1.2630: download - view: text, markup, annotated - select for diffs
Sun Mar 11 16:07:58 2012 UTC (14 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2629: preferred, colored
Changes since revision 1.2629: +2 -3 lines
Appease the tidy target. ;) Feature safe: yes
Revision 1.2629: download - view: text, markup, annotated - select for diffs
Sun Mar 11 11:16:48 2012 UTC (14 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2628: preferred, colored
Changes since revision 1.2628: +29 -1 lines
Document vulnerabilities in www/chromium < 17.0.963.79 Security: CVE-2011-3047 Feature safe: yes
Revision 1.2628: download - view: text, markup, annotated - select for diffs
Sat Mar 10 01:47:32 2012 UTC (14 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2627: preferred, colored
Changes since revision 1.2627: +3 -5 lines
Fix formatting so that "make tidy" passes Feature safe: yes
Revision 1.2627: download - view: text, markup, annotated - select for diffs
Sat Mar 10 01:45:51 2012 UTC (14 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2626: preferred, colored
Changes since revision 1.2626: +28 -1 lines
Document the latest flash player vulnerabilities Reviewed by: nox Feature safe: yes
Revision 1.2626: download - view: text, markup, annotated - select for diffs
Fri Mar 9 10:03:54 2012 UTC (14 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2625: preferred, colored
Changes since revision 1.2625: +29 -1 lines
Mark chromium < 17.0.963.78 as vulnerable. Security: CVE-2011-3046 Feature safe: yes
Revision 1.2625: download - view: text, markup, annotated - select for diffs
Wed Mar 7 18:44:29 2012 UTC (14 months, 2 weeks ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2624: preferred, colored
Changes since revision 1.2624: +29 -1 lines
Document jenkins XSS vulnerability. Submitted by: Gersom van de Bunt <gersom.vandebunt@pine.nl>
Revision 1.2624: download - view: text, markup, annotated - select for diffs
Mon Mar 5 18:16:18 2012 UTC (14 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2623: preferred, colored
Changes since revision 1.2623: +68 -1 lines
Add new vulnerabilities for www/chromium < 17.0.963.65 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3031-3044]
Revision 1.2623: download - view: text, markup, annotated - select for diffs
Sun Mar 4 23:07:08 2012 UTC (14 months, 3 weeks ago) by ak
Branches: MAIN
Diff to: previous 1.2622: preferred, colored
Changes since revision 1.2622: +33 -1 lines
Document dropbear security issue Approved by: eadler (mentor)
Revision 1.2622: download - view: text, markup, annotated - select for diffs
Sun Mar 4 01:00:33 2012 UTC (14 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2621: preferred, colored
Changes since revision 1.2621: +3 -3 lines
Whitespace cleanup and stick to ASCII in recent openx entry.
Revision 1.2621: download - view: text, markup, annotated - select for diffs
Fri Mar 2 21:32:37 2012 UTC (14 months, 3 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2620: preferred, colored
Changes since revision 1.2620: +28 -1 lines
document latest openx security issue PR: ports/165613
Revision 1.2620: download - view: text, markup, annotated - select for diffs
Tue Feb 28 19:19:01 2012 UTC (14 months, 3 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2619: preferred, colored
Changes since revision 1.2619: +36 -1 lines
Document latest PostgreSQL vulnerabilities Security: http://www.postgresql.org/about/news/1377/
Revision 1.2619: download - view: text, markup, annotated - select for diffs
Tue Feb 28 00:09:56 2012 UTC (14 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2618: preferred, colored
Changes since revision 1.2618: +9 -4 lines
- Add information about make tidy checking now that it actually functions - use ' instead of ` - add a note about ports-security
Revision 1.2618: download - view: text, markup, annotated - select for diffs
Tue Feb 28 00:04:11 2012 UTC (14 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2617: preferred, colored
Changes since revision 1.2617: +33 -1 lines
Document recent flash vulns Reviewed by: nox
Revision 1.2617: download - view: text, markup, annotated - select for diffs
Mon Feb 27 23:49:42 2012 UTC (14 months, 3 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2616: preferred, colored
Changes since revision 1.2616: +4 -5 lines
Pacify 'make tidy' and use valid XML. While make diff against the tidy version a canconical test.
Revision 1.2616: download - view: text, markup, annotated - select for diffs
Mon Feb 27 23:10:36 2012 UTC (14 months, 3 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2615: preferred, colored
Changes since revision 1.2615: +29 -1 lines
Add libxml2 vulnability. PR: ports/164270 Submitted by: kj <b4039413@nwldx.com>
Revision 1.2615: download - view: text, markup, annotated - select for diffs
Mon Feb 27 03:04:47 2012 UTC (14 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2614: preferred, colored
Changes since revision 1.2614: +2 -5 lines
Fixup python entry. No need to have python metaport listed. Reviewed by: miwi@
Revision 1.2614: download - view: text, markup, annotated - select for diffs
Mon Feb 20 04:28:51 2012 UTC (15 months ago) by eadler
Branches: MAIN
Diff to: previous 1.2613: preferred, colored
Changes since revision 1.2613: +2 -2 lines
Minor whitespace fixup
Revision 1.2613: download - view: text, markup, annotated - select for diffs
Sun Feb 19 22:27:33 2012 UTC (15 months ago) by rene
Branches: MAIN
Diff to: previous 1.2612: preferred, colored
Changes since revision 1.2612: +2 -2 lines
Include PORTREVISION in plib version number to fix previous commit.
Revision 1.2612: download - view: text, markup, annotated - select for diffs
Sun Feb 19 22:14:32 2012 UTC (15 months ago) by rene
Branches: MAIN
Diff to: previous 1.2611: preferred, colored
Changes since revision 1.2611: +43 -1 lines
Document a remote code execution via a buffer overflow in PLIB. Security: CVE-2011-4620
Revision 1.2611: download - view: text, markup, annotated - select for diffs
Sat Feb 18 15:00:46 2012 UTC (15 months ago) by matthew
Branches: MAIN
Diff to: previous 1.2610: preferred, colored
Changes since revision 1.2610: +27 -1 lines
Security update to 3.4.10.1
XSS in replication setup
ChangeLog:
Welcome to phpMyAdmin 3.4.10.1, a minor security release.
3.4.10.1 (2012-02-18)
- [security] XSS in replication setup, see PMASA-2012-1
Security Advisory:
http://www.phpmyadmin.net/home_page/security/PMASA-2012-1.php
Approved by: shaun (mentor)
Revision 1.2610: download - view: text, markup, annotated - select for diffs
Fri Feb 17 21:21:41 2012 UTC (15 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2609: preferred, colored
Changes since revision 1.2609: +28 -1 lines
- document latest piwik security vulnerability PR: ports/165217
Revision 1.2609: download - view: text, markup, annotated - select for diffs
Fri Feb 17 19:38:33 2012 UTC (15 months ago) by flo
Branches: MAIN
Diff to: previous 1.2608: preferred, colored
Changes since revision 1.2608: +53 -2 lines
- document recent mozilla vulnerabilities - wrap a long line
Revision 1.2608: download - view: text, markup, annotated - select for diffs
Wed Feb 15 23:16:01 2012 UTC (15 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2607: preferred, colored
Changes since revision 1.2607: +67 -1 lines
Document vulnerabilities in chromium < 17.0.963.56 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3015-3027]
Revision 1.2607: download - view: text, markup, annotated - select for diffs
Wed Feb 15 19:58:37 2012 UTC (15 months, 1 week ago) by glarkin
Branches: MAIN
Diff to: previous 1.2606: preferred, colored
Changes since revision 1.2606: +11 -11 lines
- Updated the recent WebCalendar entry to match <= 1.2.4 instead of < 1.2.4, since 1.2.4 (not yet in tree) is vulnerable, and 1.2.5 has not been released by upstream yet - Fixed the URL in the recent WebCalendar entry - Canonicalized naming in other WebCalendar entries - Fixed various nits flagged by "make tidy"
Revision 1.2606: download - view: text, markup, annotated - select for diffs
Wed Feb 15 00:03:39 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2605: preferred, colored
Changes since revision 1.2605: +8 -1 lines
This vuln also affects pypy
Revision 1.2605: download - view: text, markup, annotated - select for diffs
Tue Feb 14 03:32:30 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2604: preferred, colored
Changes since revision 1.2604: +2 -2 lines
typo
Revision 1.2604: download - view: text, markup, annotated - select for diffs
Tue Feb 14 03:31:45 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2603: preferred, colored
Changes since revision 1.2603: +56 -1 lines
Inform users of the DoS issue in the python SimpleXMLRPCServer function
Revision 1.2603: download - view: text, markup, annotated - select for diffs
Mon Feb 13 16:27:11 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2602: preferred, colored
Changes since revision 1.2602: +3 -1 lines
Add the recently assigned cve number
Revision 1.2602: download - view: text, markup, annotated - select for diffs
Sun Feb 12 04:17:12 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2601: preferred, colored
Changes since revision 1.2601: +30 -1 lines
Inform users of the XSS issue in the latest version of WebCalendar. It seems that there has been no response from the vendor and users may want to switch to an alternate product that fits their needs.
Revision 1.2601: download - view: text, markup, annotated - select for diffs
Sat Feb 11 18:17:27 2012 UTC (15 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2600: preferred, colored
Changes since revision 1.2600: +4 -4 lines
Whitespace fixes.
Revision 1.2600: download - view: text, markup, annotated - select for diffs
Sat Feb 11 10:50:38 2012 UTC (15 months, 1 week ago) by beat
Branches: MAIN
Diff to: previous 1.2599: preferred, colored
Changes since revision 1.2599: +47 -1 lines
- Document mozilla -- use after free in nsXBLDocumentInfo::ReadPrototypeBindings
Revision 1.2599: download - view: text, markup, annotated - select for diffs
Sat Feb 11 04:55:42 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2598: preferred, colored
Changes since revision 1.2598: +28 -1 lines
Inform bip users of buffer overflow (CVE-2012-0806)
Revision 1.2598: download - view: text, markup, annotated - select for diffs
Sat Feb 11 01:27:56 2012 UTC (15 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2597: preferred, colored
Changes since revision 1.2597: +25 -1 lines
Inform users of the private information disclosure bug in surf (CVE-2012-0842) Reviewed by: dougb
Revision 1.2597: download - view: text, markup, annotated - select for diffs
Fri Feb 10 10:26:06 2012 UTC (15 months, 2 weeks ago) by jadawin
Branches: MAIN
Diff to: previous 1.2596: preferred, colored
Changes since revision 1.2596: +9 -9 lines
Fix style Reported by: flo@ via irc
Revision 1.2596: download - view: text, markup, annotated - select for diffs
Fri Feb 10 10:11:49 2012 UTC (15 months, 2 weeks ago) by jadawin
Branches: MAIN
Diff to: previous 1.2595: preferred, colored
Changes since revision 1.2595: +28 -1 lines
Document last glpi vulnerabilities Submitted by: Mathias Monnerville <mathias@monnerville.com> via email
Revision 1.2595: download - view: text, markup, annotated - select for diffs
Thu Feb 9 12:48:48 2012 UTC (15 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2594: preferred, colored
Changes since revision 1.2594: +87 -1 lines
Document new Chromium < 17.0.963.46 vulnerabilities. Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: fe1976c2-5317-11e1-9e99-00262d5ed8ee
Revision 1.2594: download - view: text, markup, annotated - select for diffs
Tue Feb 7 23:11:21 2012 UTC (15 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2593: preferred, colored
Changes since revision 1.2593: +53 -1 lines
Document Drupal core multiple vulnerabilities.
Revision 1.2593: download - view: text, markup, annotated - select for diffs
Tue Feb 7 04:13:47 2012 UTC (15 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2592: preferred, colored
Changes since revision 1.2592: +12 -5 lines
Fix up 3fd040be-4f0b-11e1-9e32-0025900931f by giving a better description.
Revision 1.2592: download - view: text, markup, annotated - select for diffs
Mon Feb 6 12:01:22 2012 UTC (15 months, 2 weeks ago) by skv
Branches: MAIN
Diff to: previous 1.2591: preferred, colored
Changes since revision 1.2591: +51 -1 lines
Document "bugzilla" - multiple vulnerabilities.
Revision 1.2591: download - view: text, markup, annotated - select for diffs
Sat Feb 4 08:40:01 2012 UTC (15 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2590: preferred, colored
Changes since revision 1.2590: +27 -1 lines
Document PHP remote code vulnerability.
Revision 1.2590: download - view: text, markup, annotated - select for diffs
Fri Feb 3 06:33:02 2012 UTC (15 months, 3 weeks ago) by rm
Branches: MAIN
Diff to: previous 1.2589: preferred, colored
Changes since revision 1.2589: +28 -1 lines
Add vuxml entry for mathopd directory traversal vulnerability. PR: 164717 Submitted by: Michiel Boland <michiel at boland dot org> Security: 6e7ad1d7-4e27-11e1-8e12-90e6ba8a36a2
Revision 1.2589: download - view: text, markup, annotated - select for diffs
Thu Feb 2 18:34:24 2012 UTC (15 months, 3 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2588: preferred, colored
Changes since revision 1.2588: +13 -13 lines
- adjust ordering for latest apache entry Spotted by: remko
Revision 1.2588: download - view: text, markup, annotated - select for diffs
Thu Feb 2 14:02:59 2012 UTC (15 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2587: preferred, colored
Changes since revision 1.2587: +2 -2 lines
MITRE is spelled in all capital letters.
Revision 1.2587: download - view: text, markup, annotated - select for diffs
Thu Feb 2 01:32:18 2012 UTC (15 months, 3 weeks ago) by jgh
Branches: MAIN
Diff to: previous 1.2586: preferred, colored
Changes since revision 1.2586: +55 -1 lines
document latest Apache vulnerabilities PR: ports/164675 Reviewed by: crees, eadler Approved by: crees (mentor)
Revision 1.2586: download - view: text, markup, annotated - select for diffs
Wed Feb 1 09:46:07 2012 UTC (15 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2585: preferred, colored
Changes since revision 1.2585: +80 -1 lines
document recent mozilla vulnerabilities
Revision 1.2585: download - view: text, markup, annotated - select for diffs
Tue Jan 31 13:34:00 2012 UTC (15 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2584: preferred, colored
Changes since revision 1.2584: +3 -2 lines
Correct versions for sudo format string vulnerability. Noticed by: pluknet@
Revision 1.2584: download - view: text, markup, annotated - select for diffs
Mon Jan 30 16:36:42 2012 UTC (15 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2583: preferred, colored
Changes since revision 1.2583: +39 -1 lines
Document sudo format string vulnerability.
Revision 1.2583: download - view: text, markup, annotated - select for diffs
Mon Jan 30 03:03:39 2012 UTC (15 months, 3 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2582: preferred, colored
Changes since revision 1.2582: +196 -3 lines
Document missing FreeBSD Security Advisories: - SA-11:01.mountd - SA-11:04.compress - SA-11:09.pam_ssh - SA-11:10.pam Modify existing entries to document (add/adjust modified tag for all): - SA-11:06.bind - Add FreeBSD package and freebsdsa - SA-11:07.chroot - Add FreeBSD package - SA-11:08.telnetd - Add FreeBSD package, freebsdsa and a relevant URL
Revision 1.2582: download - view: text, markup, annotated - select for diffs
Sun Jan 29 23:39:41 2012 UTC (15 months, 3 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2581: preferred, colored
Changes since revision 1.2581: +11 -9 lines
- Adjust formatting for 93688f8f-4935-11e1-89b4-001ec9578670
Revision 1.2581: download - view: text, markup, annotated - select for diffs
Sat Jan 28 13:30:39 2012 UTC (15 months, 3 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2580: preferred, colored
Changes since revision 1.2580: +40 -1 lines
- Document vulnerabilities in mail/postfixadmin (CVE-2012-0811, CVE-2012-0812)
Revision 1.2580: download - view: text, markup, annotated - select for diffs
Sat Jan 28 08:01:53 2012 UTC (15 months, 3 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2579: preferred, colored
Changes since revision 1.2579: +33 -33 lines
- Cleanup & Formating
Revision 1.2579: download - view: text, markup, annotated - select for diffs
Thu Jan 26 12:32:01 2012 UTC (15 months, 4 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2578: preferred, colored
Changes since revision 1.2578: +28 -1 lines
- Document vulnerability in converters/mpack
Revision 1.2578: download - view: text, markup, annotated - select for diffs
Thu Jan 26 12:17:57 2012 UTC (15 months, 4 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2577: preferred, colored
Changes since revision 1.2577: +47 -1 lines
- Document vulnerabilities in print/acroread9 (prior to 9.4.7)
Revision 1.2577: download - view: text, markup, annotated - select for diffs
Tue Jan 24 11:02:34 2012 UTC (16 months ago) by rene
Branches: MAIN
Diff to: previous 1.2576: preferred, colored
Changes since revision 1.2576: +41 -1 lines
- update entry fixed in chromium-16.0.912.75 (CVE-2011-3925) - add entry for vulnerabilities fixed in chromium-16.0.912.77 Security: CVE-2011-[3924-3928]
Revision 1.2576: download - view: text, markup, annotated - select for diffs
Tue Jan 24 04:18:07 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2575: preferred, colored
Changes since revision 1.2575: +2 -2 lines
Fix build while chanting "I will run make validate". :( Pointyhat to: wxs@
Revision 1.2575: download - view: text, markup, annotated - select for diffs
Tue Jan 24 04:01:02 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2574: preferred, colored
Changes since revision 1.2574: +2 -1 lines
Add CVE for recent spamdyke buffer overflows.
Revision 1.2574: download - view: text, markup, annotated - select for diffs
Mon Jan 23 22:02:32 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2573: preferred, colored
Changes since revision 1.2573: +59 -1 lines
Document multiple vulnerabilities in wireshark, all of which have already been fixed in our port.
Revision 1.2573: download - view: text, markup, annotated - select for diffs
Mon Jan 23 21:25:58 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2572: preferred, colored
Changes since revision 1.2572: +3 -3 lines
Whitespace cleanup.
Revision 1.2572: download - view: text, markup, annotated - select for diffs
Mon Jan 23 21:25:21 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2571: preferred, colored
Changes since revision 1.2571: +34 -1 lines
- Document buffer overflows in spamdyke.
Revision 1.2571: download - view: text, markup, annotated - select for diffs
Mon Jan 23 14:08:33 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2570: preferred, colored
Changes since revision 1.2570: +2 -3 lines
Fixup to please "make tidy". No need to wrap this line.
Revision 1.2570: download - view: text, markup, annotated - select for diffs
Mon Jan 23 13:52:39 2012 UTC (16 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2569: preferred, colored
Changes since revision 1.2569: +3 -1 lines
- Add CVE for spamdyke STARTTLS plaintext injection.
Revision 1.2569: download - view: text, markup, annotated - select for diffs
Sun Jan 22 14:59:21 2012 UTC (16 months ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2568: preferred, colored
Changes since revision 1.2568: +2 -2 lines
- Fix affected rubygem-rack version: add ,3 as PORTEPOCH=3 is restored
Revision 1.2568: download - view: text, markup, annotated - select for diffs
Sun Jan 22 02:49:22 2012 UTC (16 months ago) by zi
Branches: MAIN
Diff to: previous 1.2567: preferred, colored
Changes since revision 1.2567: +6 -2 lines
- Correct package range in 5c5f19ce-43af-11e1-89b4-001ec9578670 - Add databases/redis to the affected list for 91be81e7-3fea-11e1-afc7-2c4138874f7d
Revision 1.2567: download - view: text, markup, annotated - select for diffs
Sat Jan 21 01:38:36 2012 UTC (16 months ago) by zi
Branches: MAIN
Diff to: previous 1.2566: preferred, colored
Changes since revision 1.2566: +26 -7 lines
- Fix formatting/topic in 91be81e7-3fea-11e1-afc7-2c4138874f7d Reviewed by: wxs
Revision 1.2566: download - view: text, markup, annotated - select for diffs
Fri Jan 20 21:43:39 2012 UTC (16 months ago) by zi
Branches: MAIN
Diff to: previous 1.2565: preferred, colored
Changes since revision 1.2565: +29 -1 lines
- Document security vulnerability in security/openssl (CVE-2012-0050)
Revision 1.2565: download - view: text, markup, annotated - select for diffs
Fri Jan 20 19:24:00 2012 UTC (16 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2564: preferred, colored
Changes since revision 1.2564: +2 -2 lines
fix uuid on latest tomcat vulnerability Approved by: crees, rene (implicit)
Revision 1.2564: download - view: text, markup, annotated - select for diffs
Fri Jan 20 18:41:15 2012 UTC (16 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2563: preferred, colored
Changes since revision 1.2563: +4 -2 lines
- Fix modified date; - Add more ruby variants.
Revision 1.2563: download - view: text, markup, annotated - select for diffs
Fri Jan 20 18:28:10 2012 UTC (16 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2562: preferred, colored
Changes since revision 1.2562: +3 -1 lines
Update 91be81e7-3fea-11e1-afc7-2c4138874f7d to cover ruby+no-pthreads as well. Spotted by: Kevin Oberman <kob6558 gmail.com>
Revision 1.2562: download - view: text, markup, annotated - select for diffs
Fri Jan 20 00:14:41 2012 UTC (16 months ago) by flo
Branches: MAIN
Diff to: previous 1.2561: preferred, colored
Changes since revision 1.2561: +32 -1 lines
- document asterisk remote crash vulnerability
Revision 1.2561: download - view: text, markup, annotated - select for diffs
Thu Jan 19 19:51:53 2012 UTC (16 months ago) by jgh
Branches: MAIN
Diff to: previous 1.2560: preferred, colored
Changes since revision 1.2560: +44 -1 lines
Document recent vulnerability of Apache Tomcat Server. Approved by: rene (mentor)
Revision 1.2560: download - view: text, markup, annotated - select for diffs
Thu Jan 19 18:33:42 2012 UTC (16 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2559: preferred, colored
Changes since revision 1.2559: +2 -2 lines
Sigh, should have used <lt> instead of <gt>. Pointy hat to: delphij
Revision 1.2559: download - view: text, markup, annotated - select for diffs
Thu Jan 19 18:27:36 2012 UTC (16 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2558: preferred, colored
Changes since revision 1.2558: +3 -2 lines
php52-exif no longer vulnerable to CVE-2011-4566 as of 5.2.17_6
Revision 1.2558: download - view: text, markup, annotated - select for diffs
Thu Jan 19 09:16:00 2012 UTC (16 months ago) by knu
Branches: MAIN
Diff to: previous 1.2557: preferred, colored
Changes since revision 1.2557: +2 -2 lines
Fix the version range for ruby. The stock version is affected.
Revision 1.2557: download - view: text, markup, annotated - select for diffs
Thu Jan 19 09:13:30 2012 UTC (16 months ago) by knu
Branches: MAIN
Diff to: previous 1.2556: preferred, colored
Changes since revision 1.2556: +2 -2 lines
There was no patch release in rubygem-rack 1.3.5_*, so just say < 1.3.6.
Revision 1.2556: download - view: text, markup, annotated - select for diffs
Thu Jan 19 07:32:10 2012 UTC (16 months ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2555: preferred, colored
Changes since revision 1.2555: +2 -2 lines
- Fix affected rubygem-rack version: it should be _3 for PORTREVISION=3
Revision 1.2555: download - view: text, markup, annotated - select for diffs
Tue Jan 17 09:53:12 2012 UTC (16 months, 1 week ago) by danfe
Branches: MAIN
Diff to: previous 1.2554: preferred, colored
Changes since revision 1.2554: +2 -2 lines
Fix CVE URL in recent OpenTTD entry.
Revision 1.2554: download - view: text, markup, annotated - select for diffs
Tue Jan 17 08:36:56 2012 UTC (16 months, 1 week ago) by danfe
Branches: MAIN
Diff to: previous 1.2553: preferred, colored
Changes since revision 1.2553: +872 -872 lines
Unexpand (convert leading spaces to tabs when possible).
Revision 1.2553: download - view: text, markup, annotated - select for diffs
Tue Jan 17 08:31:38 2012 UTC (16 months, 1 week ago) by danfe
Branches: MAIN
Diff to: previous 1.2552: preferred, colored
Changes since revision 1.2552: +35 -1 lines
Document recent vulnerability of OpenTTD game server. Reported by: Ilya Arkhipov
Revision 1.2552: download - view: text, markup, annotated - select for diffs
Mon Jan 16 09:57:28 2012 UTC (16 months, 1 week ago) by knu
Branches: MAIN
Diff to: previous 1.2551: preferred, colored
Changes since revision 1.2551: +1 -6 lines
PHP5 had its own entry for this vulnerability, so remove this. Pointed out by: ohauer
Revision 1.2551: download - view: text, markup, annotated - select for diffs
Mon Jan 16 03:23:44 2012 UTC (16 months, 1 week ago) by knu
Branches: MAIN
Diff to: previous 1.2550: preferred, colored
Changes since revision 1.2550: +5 -1 lines
Add node < 0.6.7 (for V8).
Revision 1.2550: download - view: text, markup, annotated - select for diffs
Mon Jan 16 03:20:38 2012 UTC (16 months, 1 week ago) by knu
Branches: MAIN
Diff to: previous 1.2549: preferred, colored
Changes since revision 1.2549: +6 -1 lines
Add v8 < 3.8.5 (CVE-2011-5037).
Revision 1.2549: download - view: text, markup, annotated - select for diffs
Mon Jan 16 03:16:01 2012 UTC (16 months, 1 week ago) by knu
Branches: MAIN
Diff to: previous 1.2548: preferred, colored
Changes since revision 1.2548: +6 -1 lines
Add PHP < 5.3.9 (CVE-2011-4885).
Revision 1.2548: download - view: text, markup, annotated - select for diffs
Mon Jan 16 03:03:49 2012 UTC (16 months, 1 week ago) by knu
Branches: MAIN
Diff to: previous 1.2547: preferred, colored
Changes since revision 1.2547: +42 -1 lines
Add Multiple implementations denial-of-service via hash algorithm collision. Currently only JRuby, Ruby, and Rack are mentioned. More to follow.
Revision 1.2547: download - view: text, markup, annotated - select for diffs
Sat Jan 14 10:01:38 2012 UTC (16 months, 1 week ago) by mm
Branches: MAIN
Diff to: previous 1.2546: preferred, colored
Changes since revision 1.2546: +2 -1 lines
Add missing URL reference to last commit
Revision 1.2546: download - view: text, markup, annotated - select for diffs
Sat Jan 14 09:46:30 2012 UTC (16 months, 1 week ago) by mm
Branches: MAIN
Diff to: previous 1.2545: preferred, colored
Changes since revision 1.2545: +56 -1 lines
Add relevant FFmpeg vulnerabilities from Ubuntu USN-1320-1
Revision 1.2545: download - view: text, markup, annotated - select for diffs
Sat Jan 14 04:36:22 2012 UTC (16 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2544: preferred, colored
Changes since revision 1.2544: +43 -43 lines
- clean up
Revision 1.2544: download - view: text, markup, annotated - select for diffs
Sat Jan 14 02:47:41 2012 UTC (16 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2543: preferred, colored
Changes since revision 1.2543: +50 -1 lines
- Document vulnerabilities in security/openssl -- CVE-2011-4108, CVE-2011-4109, CVE-2011-4576 -- CVE-2011-4577, CVE-2011-4619, CVE-2012-0027
Revision 1.2543: download - view: text, markup, annotated - select for diffs
Fri Jan 13 12:10:37 2012 UTC (16 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2542: preferred, colored
Changes since revision 1.2542: +33 -1 lines
- Document vulnerability in net/isc-dhcp42-server (CVE-2011-4868)
Revision 1.2542: download - view: text, markup, annotated - select for diffs
Thu Jan 12 21:56:20 2012 UTC (16 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2541: preferred, colored
Changes since revision 1.2541: +29 -1 lines
Document PowerDNS DoS vulnerability. PR: ports/164066 Submitted by: Ralf van der Enden <tremere cainites.net>
Revision 1.2541: download - view: text, markup, annotated - select for diffs
Wed Jan 11 18:32:21 2012 UTC (16 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2540: preferred, colored
Changes since revision 1.2540: +43 -1 lines
Document PHP multiple vulnerabilities.
Revision 1.2540: download - view: text, markup, annotated - select for diffs
Mon Jan 9 18:13:37 2012 UTC (16 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2539: preferred, colored
Changes since revision 1.2539: +32 -1 lines
Document a untrusted local library exploit in games/torcs. Security: CVE-2010-3384
Revision 1.2539: download - view: text, markup, annotated - select for diffs
Mon Jan 9 02:26:53 2012 UTC (16 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2538: preferred, colored
Changes since revision 1.2538: +32 -1 lines
Document spamdyke STARTTLS plaintext injection vulnerability.
Revision 1.2538: download - view: text, markup, annotated - select for diffs
Sat Jan 7 23:44:17 2012 UTC (16 months, 2 weeks ago) by simon
Branches: MAIN
Diff to: previous 1.2537: preferred, colored
Changes since revision 1.2537: +2 -2 lines
Remove HTML entity from a VuXML entry as they are not allowed in VuXML, only Unicode charecter entities are allowed. This should fix the portaudit build. If anyone care enough to insert the correct umlaut, feel free to fix.
Revision 1.2537: download - view: text, markup, annotated - select for diffs
Fri Jan 6 18:35:42 2012 UTC (16 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2536: preferred, colored
Changes since revision 1.2536: +33 -1 lines
Add new vulnerabilities for www/chromium. Security: CVE-2011-[3919,3921-3922]
Revision 1.2536: download - view: text, markup, annotated - select for diffs
Thu Jan 5 18:52:27 2012 UTC (16 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2535: preferred, colored
Changes since revision 1.2535: +1 -2 lines
Fix build.
Revision 1.2535: download - view: text, markup, annotated - select for diffs
Thu Jan 5 17:29:25 2012 UTC (16 months, 2 weeks ago) by ohauer
Branches: MAIN
Diff to: previous 1.2534: preferred, colored
Changes since revision 1.2534: +62 -1 lines
- document bugzilla and bugzilla3 security issues
Revision 1.2534: download - view: text, markup, annotated - select for diffs
Tue Jan 3 23:50:36 2012 UTC (16 months, 3 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2533: preferred, colored
Changes since revision 1.2533: +37 -1 lines
Document wordpress xss vulnerability. Feature safe: yes
Revision 1.2533: download - view: text, markup, annotated - select for diffs
Fri Dec 30 01:05:34 2011 UTC (16 months, 3 weeks ago) by cy
Branches: MAIN
Diff to: previous 1.2532: preferred, colored
Changes since revision 1.2532: +2 -2 lines
Add additional MITKRB5 reference. Security: MITKRB5-SA-2011-008 Feature safe: yes
Revision 1.2532: download - view: text, markup, annotated - select for diffs
Thu Dec 29 14:26:25 2011 UTC (16 months, 3 weeks ago) by remko
Branches: MAIN
Diff to: previous 1.2531: preferred, colored
Changes since revision 1.2531: +2 -1 lines
Fix build by adding a reference to the original URL.
Revision 1.2531: download - view: text, markup, annotated - select for diffs
Thu Dec 29 13:04:23 2011 UTC (16 months, 3 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2530: preferred, colored
Changes since revision 1.2530: +27 -1 lines
Document XSS vulnerability in net-mgmt/zabbix-frontend PR: ports/163691 Obtained from: https://support.zabbix.com/browse/ZBX-4015 Security: ZBX-4015
Revision 1.2530: download - view: text, markup, annotated - select for diffs
Wed Dec 28 12:24:32 2011 UTC (16 months, 3 weeks ago) by mm
Branches: MAIN
Diff to: previous 1.2529: preferred, colored
Changes since revision 1.2529: +31 -1 lines
Document remote DoS vulnerability in lighttpd HTTP authentication Security: CVS-2011-4362
Revision 1.2529: download - view: text, markup, annotated - select for diffs
Tue Dec 27 04:00:14 2011 UTC (16 months, 4 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2528: preferred, colored
Changes since revision 1.2528: +11 -11 lines
- Fix most of the duplicate words in vuxml, a few affect 'blockquotes' but that should be okay as no information is lost.
Revision 1.2528: download - view: text, markup, annotated - select for diffs
Mon Dec 26 23:23:28 2011 UTC (16 months, 4 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2527: preferred, colored
Changes since revision 1.2527: +3 -5 lines
Don't wrap a couple of lines. No other entries wrap these lines, so when in Rome...
Revision 1.2527: download - view: text, markup, annotated - select for diffs
Mon Dec 26 23:00:58 2011 UTC (16 months, 4 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2526: preferred, colored
Changes since revision 1.2526: +2 -2 lines
Whitespace cleanup in a BIND topic.
Revision 1.2526: download - view: text, markup, annotated - select for diffs
Mon Dec 26 22:42:26 2011 UTC (16 months, 4 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2525: preferred, colored
Changes since revision 1.2525: +3 -3 lines
Fix the build. Missing a quote on the blockquote citation and a missing </p>.
Revision 1.2525: download - view: text, markup, annotated - select for diffs
Mon Dec 26 21:51:02 2011 UTC (16 months, 4 weeks ago) by cy
Branches: MAIN
Diff to: previous 1.2524: preferred, colored
Changes since revision 1.2524: +29 -1 lines
Document CVE-2011-4862 (FreeBSD-SA-11:08.telnetd) as it affects krb5-appl too. Security: CVE-2011-4862, FreeBSD-SA-11:08.telnetd Feature safe: yes
Revision 1.2524: download - view: text, markup, annotated - select for diffs
Fri Dec 23 20:37:32 2011 UTC (17 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2523: preferred, colored
Changes since revision 1.2523: +35 -1 lines
Add vuxml entry for proftpd chroot vulnerability. Feature safe: yes
Revision 1.2523: download - view: text, markup, annotated - select for diffs
Thu Dec 22 12:11:16 2011 UTC (17 months ago) by zi
Branches: MAIN
Diff to: previous 1.2522: preferred, colored
Changes since revision 1.2522: +35 -1 lines
- Document recent vulnerabilities in databases/phpmyadmin (PMASA-2011-19 and PMASA-2011-20)
Revision 1.2522: download - view: text, markup, annotated - select for diffs
Wed Dec 21 12:40:43 2011 UTC (17 months ago) by beat
Branches: MAIN
Diff to: previous 1.2521: preferred, colored
Changes since revision 1.2521: +3 -2 lines
- Also fix SeaMonkey version range
Revision 1.2521: download - view: text, markup, annotated - select for diffs
Wed Dec 21 11:28:36 2011 UTC (17 months ago) by beat
Branches: MAIN
Diff to: previous 1.2520: preferred, colored
Changes since revision 1.2520: +6 -6 lines
- Fix cvename in latest mozilla vulnerability
Revision 1.2520: download - view: text, markup, annotated - select for diffs
Wed Dec 21 07:48:50 2011 UTC (17 months ago) by beat
Branches: MAIN
Diff to: previous 1.2519: preferred, colored
Changes since revision 1.2519: +59 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2519: download - view: text, markup, annotated - select for diffs
Mon Dec 19 13:15:50 2011 UTC (17 months ago) by sem
Branches: MAIN
Diff to: previous 1.2518: preferred, colored
Changes since revision 1.2518: +33 -1 lines
unbound DoS vulnerability
Revision 1.2518: download - view: text, markup, annotated - select for diffs
Sun Dec 18 14:24:38 2011 UTC (17 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2517: preferred, colored
Changes since revision 1.2517: +31 -30 lines
- Cleanup * correct line limit * sort cvename
Revision 1.2517: download - view: text, markup, annotated - select for diffs
Sun Dec 18 13:30:50 2011 UTC (17 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2516: preferred, colored
Changes since revision 1.2516: +2 -5 lines
- Correct package name in previous commit Reported by: crees@
Revision 1.2516: download - view: text, markup, annotated - select for diffs
Sun Dec 18 13:07:02 2011 UTC (17 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2515: preferred, colored
Changes since revision 1.2515: +34 -1 lines
- Document vulnerabilities in www/typo3 and www/typo345
Revision 1.2515: download - view: text, markup, annotated - select for diffs
Wed Dec 14 04:07:06 2011 UTC (17 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2514: preferred, colored
Changes since revision 1.2514: +31 -1 lines
- Document security/krb5 vulnerability as described in MITKRB5-SA-2011-007
Revision 1.2514: download - view: text, markup, annotated - select for diffs
Wed Dec 14 03:52:27 2011 UTC (17 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2513: preferred, colored
Changes since revision 1.2513: +3 -1 lines
- Add CVE for recent asterisk vulnerabilities Feature safe: yes
Revision 1.2513: download - view: text, markup, annotated - select for diffs
Tue Dec 13 20:35:31 2011 UTC (17 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2512: preferred, colored
Changes since revision 1.2512: +51 -1 lines
Document Opera multiple vulnerabilities. Requested by: tabthorpe Feature safe: yes
Revision 1.2512: download - view: text, markup, annotated - select for diffs
Tue Dec 13 20:17:29 2011 UTC (17 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2511: preferred, colored
Changes since revision 1.2511: +74 -1 lines
Document vulnerabilities fixed in Chromium 16.0.912.63 Security: CVE-2011-[3903-3917]
Revision 1.2511: download - view: text, markup, annotated - select for diffs
Tue Dec 13 17:45:46 2011 UTC (17 months, 1 week ago) by mandree
Branches: MAIN
Diff to: previous 1.2510: preferred, colored
Changes since revision 1.2510: +2 -1 lines
Add cvename tag with content CVE-2011-4607 for PuTTY password 'vulnerability'. Feature safe: yes Submitted by: eadler
Revision 1.2510: download - view: text, markup, annotated - select for diffs
Tue Dec 13 17:34:52 2011 UTC (17 months, 1 week ago) by zi
Branches: MAIN
Diff to: previous 1.2509: preferred, colored
Changes since revision 1.2509: +2 -2 lines
- Correct package name for asterisk18 Feature safe: yes
Revision 1.2509: download - view: text, markup, annotated - select for diffs
Mon Dec 12 19:57:18 2011 UTC (17 months, 1 week ago) by mandree
Branches: MAIN
Diff to: previous 1.2508: preferred, colored
Changes since revision 1.2508: +33 -1 lines
Update PuTTY to new upstream security and bug fix release 0.62, and add a new VuXML entry. Changelog: http://lists.tartarus.org/pipermail/putty-announce/2011/000017.html Security: bbd5f486-24f1-11e1-95bc-080027ef73ec Feature safe: yes
Revision 1.2508: download - view: text, markup, annotated - select for diffs
Fri Dec 9 01:52:42 2011 UTC (17 months, 2 weeks ago) by zi
Branches: MAIN
CVS tags: RELEASE_9_0_0
Diff to: previous 1.2507: preferred, colored
Changes since revision 1.2507: +38 -1 lines
- Document asterisk vulnerabilities Feature safe: yes
Revision 1.2507: download - view: text, markup, annotated - select for diffs
Wed Dec 7 23:49:09 2011 UTC (17 months, 2 weeks ago) by zi
Branches: MAIN
Diff to: previous 1.2506: preferred, colored
Changes since revision 1.2506: +33 -1 lines
- Document vulnerabilities in isc-dhcp: CVE-2011-4539 Feature safe: yes
Revision 1.2506: download - view: text, markup, annotated - select for diffs
Thu Dec 1 21:03:31 2011 UTC (17 months, 3 weeks ago) by dougb
Branches: MAIN
Diff to: previous 1.2505: preferred, colored
Changes since revision 1.2505: +33 -1 lines
Update to version 3.4.8 This is the formal release of the fix to CVE-2011-4634, but there are no code differences from the preliminary fixes released in 3.4.8-rc1 except for the updated version number. PMSA-2011-18 has now been published; vuxml entry attached. PR: ports/163001 Submitted by: Matthew Seaman <m.seaman@infracaninophile.co.uk> (maintainer) Feature safe: yes
Revision 1.2505: download - view: text, markup, annotated - select for diffs
Wed Nov 30 09:31:35 2011 UTC (17 months, 3 weeks ago) by pav
Branches: MAIN
Diff to: previous 1.2504: preferred, colored
Changes since revision 1.2504: +5 -1 lines
- Add a link to a nice documentation in PH Suggested by: dougb Feature safe: yes
Revision 1.2504: download - view: text, markup, annotated - select for diffs
Wed Nov 30 08:45:12 2011 UTC (17 months, 3 weeks ago) by pav
Branches: MAIN
Diff to: previous 1.2503: preferred, colored
Changes since revision 1.2503: +10 -1 lines
- Add a quick guide to adding a new entry to this unfriendly file Feature safe: yes
Revision 1.2503: download - view: text, markup, annotated - select for diffs
Sat Nov 19 15:13:48 2011 UTC (18 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2502: preferred, colored
Changes since revision 1.2502: +3 -3 lines
- mark 1.3.41+2.8.31_4 as not vulnerable Feature safe: yes
Revision 1.2502: download - view: text, markup, annotated - select for diffs
Fri Nov 18 22:38:17 2011 UTC (18 months ago) by cs
Branches: MAIN
Diff to: previous 1.2501: preferred, colored
Changes since revision 1.2501: +28 -1 lines
hiawatha -- memory leak in PreventSQLi routine Approved by: glarkin@ (mentor) Feature safe: yes
Revision 1.2501: download - view: text, markup, annotated - select for diffs
Fri Nov 18 20:20:26 2011 UTC (18 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2500: preferred, colored
Changes since revision 1.2500: +2 -1 lines
Bump modified date for previous commit. Feature safe: yes
Revision 1.2500: download - view: text, markup, annotated - select for diffs
Fri Nov 18 20:13:50 2011 UTC (18 months ago) by dougb
Branches: MAIN
Diff to: previous 1.2499: preferred, colored
Changes since revision 1.2499: +3 -3 lines
The long-term URL for the latest BIND vulnerability is up at ISC, so adjust accordingly. Feature safe: yes
Revision 1.2499: download - view: text, markup, annotated - select for diffs
Thu Nov 17 10:08:18 2011 UTC (18 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2498: preferred, colored
Changes since revision 1.2498: +8 -3 lines
Mark chromium-15.0.874.120 vulnerable. Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-3900 Feature safe: yes
Revision 1.2498: download - view: text, markup, annotated - select for diffs
Wed Nov 16 23:59:34 2011 UTC (18 months, 1 week ago) by dougb
Branches: MAIN
Diff to: previous 1.2497: preferred, colored
Changes since revision 1.2497: +46 -1 lines
Add an entry for the BIND DOS vulnerability announced today Feature safe: yes
Revision 1.2497: download - view: text, markup, annotated - select for diffs
Mon Nov 14 23:27:03 2011 UTC (18 months, 1 week ago) by ohauer
Branches: MAIN
Diff to: previous 1.2496: preferred, colored
Changes since revision 1.2496: +61 -1 lines
- document apache13 CVE-2011-3368 Feature safe: yes
Revision 1.2496: download - view: text, markup, annotated - select for diffs
Mon Nov 14 03:25:46 2011 UTC (18 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2495: preferred, colored
Changes since revision 1.2495: +9 -9 lines
- Fix previous entry Feature safe: yes
Revision 1.2495: download - view: text, markup, annotated - select for diffs
Mon Nov 14 03:14:11 2011 UTC (18 months, 1 week ago) by rakuco
Branches: MAIN
Diff to: previous 1.2494: preferred, colored
Changes since revision 1.2494: +35 -1 lines
Add note about CVE-2011-2725 for ark in kdeutils4. Approved by: avilla (mentor, implicit) Feature safe: yes
Revision 1.2494: download - view: text, markup, annotated - select for diffs
Sun Nov 13 22:28:09 2011 UTC (18 months, 1 week ago) by ohauer
Branches: MAIN
Diff to: previous 1.2493: preferred, colored
Changes since revision 1.2493: +28 -1 lines
- document apache apr-0.9 reimplementation of apr_fnmatch() Feature safe: yes
Revision 1.2493: download - view: text, markup, annotated - select for diffs
Sun Nov 13 02:20:57 2011 UTC (18 months, 1 week ago) by dougb
Branches: MAIN
Diff to: previous 1.2492: preferred, colored
Changes since revision 1.2492: +5 -8 lines
Fix the recent flash entry: 1. Only one <package> container is needed 2. Use of <lt> has to be relative to the latest (unvulnerable) version 3. Improve the range for the 11.x version to not tag all 10.x versions 4. Use https for the cite in blockquote 5. Fix a CVE entry Feature safe: yes
Revision 1.2492: download - view: text, markup, annotated - select for diffs
Sat Nov 12 16:13:47 2011 UTC (18 months, 1 week ago) by miwi
Branches: MAIN
Diff to: previous 1.2491: preferred, colored
Changes since revision 1.2491: +20 -15 lines
- Correct latest libxml(1) entrys - Mark CVS-2009-2414 CVS-2009-2416 CVS-2011-1944 entrys as safe - Fix whitespaces - Bump modify date - While here add missing blank lines between entries [1] [1] This would not happened when committers use "make newentry" (sometimes RTFM is really helpful) Feature safe: yes
Revision 1.2491: download - view: text, markup, annotated - select for diffs
Sat Nov 12 12:15:40 2011 UTC (18 months, 1 week ago) by crees
Branches: MAIN
Diff to: previous 1.2490: preferred, colored
Changes since revision 1.2490: +30 -1 lines
Document latest phpMyAdmin vulnerability PR: ports/162442 Submitted by: Matthew Seaman <m.seaman@infracaninophile.co.uk> (maintainer) Security: CVE-2011-4107 Security: http://www.phpmyadmin.net/home_page/security/PMASA-2011-17.php CC: m.seaman@infracaninophile.co.uk Feature safe: yes
Revision 1.2490: download - view: text, markup, annotated - select for diffs
Sat Nov 12 05:39:49 2011 UTC (18 months, 1 week ago) by eadler
Branches: MAIN
Diff to: previous 1.2489: preferred, colored
Changes since revision 1.2489: +45 -1 lines
- update flash10 to 10.3r183.11 - add security issues to vuln.xml Submitted by: nox Reviewed by: dougb (vuxml) Security: CVE-2011-2445, CVE-2011-2450, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, CVE-2011-2456, CVE-2011-2457, CVE-2011-2458, CVE-2011-2459, CVE-2011-2458 Feature safe: yesA
Revision 1.2489: download - view: text, markup, annotated - select for diffs
Fri Nov 11 19:13:05 2011 UTC (18 months, 1 week ago) by rene
Branches: MAIN
Diff to: previous 1.2488: preferred, colored
Changes since revision 1.2488: +29 -3 lines
Add vulnerabilities for www/chromium < 15.0.874.120 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates Security: CVE-2011-[3892-3898] Feature safe: yes
Revision 1.2488: download - view: text, markup, annotated - select for diffs
Thu Nov 10 13:40:44 2011 UTC (18 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2487: preferred, colored
Changes since revision 1.2487: +3 -1 lines
Add missing blank lines between entries. Feature safe: yes
Revision 1.2487: download - view: text, markup, annotated - select for diffs
Thu Nov 10 07:58:08 2011 UTC (18 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2486: preferred, colored
Changes since revision 1.2486: +2 -1 lines
Fix build. Feature safe: yes
Revision 1.2486: download - view: text, markup, annotated - select for diffs
Thu Nov 10 07:19:25 2011 UTC (18 months, 2 weeks ago) by bapt
Branches: MAIN
Diff to: previous 1.2485: preferred, colored
Changes since revision 1.2485: +75 -1 lines
Register multiple libxml{1,2} vulnerabilities
Revision 1.2485: download - view: text, markup, annotated - select for diffs
Thu Nov 10 04:44:42 2011 UTC (18 months, 2 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2484: preferred, colored
Changes since revision 1.2484: +6 -6 lines
- Cleanup a bit
Revision 1.2484: download - view: text, markup, annotated - select for diffs
Thu Nov 10 02:27:53 2011 UTC (18 months, 2 weeks ago) by novel
Branches: MAIN
Diff to: previous 1.2483: preferred, colored
Changes since revision 1.2483: +27 -1 lines
Document gnutls client session resumption vulnerability.
Revision 1.2483: download - view: text, markup, annotated - select for diffs
Tue Nov 8 17:48:37 2011 UTC (18 months, 2 weeks ago) by beat
Branches: MAIN
Diff to: previous 1.2482: preferred, colored
Changes since revision 1.2482: +65 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2482: download - view: text, markup, annotated - select for diffs
Mon Nov 7 04:27:53 2011 UTC (18 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2481: preferred, colored
Changes since revision 1.2481: +2 -2 lines
- add vuxml entry for insecure use of temporary directories in caml-light Reviewed by: dougb Approved by: bapt,sahil (mentors, implicit)
Revision 1.2481: download - view: text, markup, annotated - select for diffs
Mon Nov 7 04:23:54 2011 UTC (18 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2480: preferred, colored
Changes since revision 1.2480: +25 -1 lines
- add vuxml entry for insecure use of temporary directories in caml-light Reviewed by: dougb Approved by: bapt,sahil (mentors, implicit)
Revision 1.2480: download - view: text, markup, annotated - select for diffs
Thu Nov 3 21:21:53 2011 UTC (18 months, 3 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2479: preferred, colored
Changes since revision 1.2479: +3 -3 lines
Fix the freetype entry. The package name is freetype2 and fill in the comment.
Revision 1.2479: download - view: text, markup, annotated - select for diffs
Tue Nov 1 18:00:56 2011 UTC (18 months, 3 weeks ago) by bapt
Branches: MAIN
Diff to: previous 1.2478: preferred, colored
Changes since revision 1.2478: +2 -2 lines
Fix vuln.xml
Revision 1.2478: download - view: text, markup, annotated - select for diffs
Tue Nov 1 17:44:15 2011 UTC (18 months, 3 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2477: preferred, colored
Changes since revision 1.2477: +28 -1 lines
Document vulnerabilities in handling Type 1 fonts in freetype.
Revision 1.2477: download - view: text, markup, annotated - select for diffs
Tue Nov 1 08:46:08 2011 UTC (18 months, 3 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2476: preferred, colored
Changes since revision 1.2476: +4 -3 lines
Properly match lower bound of version numbers. Noticed by: Patrick Oonk <patrick.oonk pine.nl>
Revision 1.2476: download - view: text, markup, annotated - select for diffs
Tue Nov 1 07:18:06 2011 UTC (18 months, 3 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2475: preferred, colored
Changes since revision 1.2475: +28 -28 lines
- bid from latest PivotX entry [1] - while remove a lot whitespaces PR: 161734 [1] Submitted by: Fumiyuki Shimizu <fumifumi@abacustech.jp>
Revision 1.2475: download - view: text, markup, annotated - select for diffs
Fri Oct 28 17:06:58 2011 UTC (18 months, 3 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2474: preferred, colored
Changes since revision 1.2474: +27 -1 lines
Document cacti security issues. SQL injection issue with user login Cross-site scripting issues. PR: ports/162044 Reported by: moggie <moggie@elasticmind.net>
Revision 1.2474: download - view: text, markup, annotated - select for diffs
Fri Oct 28 09:28:28 2011 UTC (18 months, 3 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2473: preferred, colored
Changes since revision 1.2473: +33 -33 lines
- Cleanup & whitespace fixe
Revision 1.2473: download - view: text, markup, annotated - select for diffs
Wed Oct 26 07:57:19 2011 UTC (18 months, 4 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2472: preferred, colored
Changes since revision 1.2472: +30 -1 lines
document phpmyfaq remote PHP code injection vulnerability
Revision 1.2472: download - view: text, markup, annotated - select for diffs
Tue Oct 25 17:45:34 2011 UTC (19 months ago) by rene
Branches: MAIN
Diff to: previous 1.2471: preferred, colored
Changes since revision 1.2471: +63 -3 lines
Mention vulnerabilities in www/chromium < 15.0.874.102 Obtained from: http://googlechromereleases.blogspot.com/ Security: CVE-2011-[2845, 3875-3891]
Revision 1.2471: download - view: text, markup, annotated - select for diffs
Mon Oct 24 15:20:27 2011 UTC (19 months ago) by glarkin
Branches: MAIN
Diff to: previous 1.2470: preferred, colored
Changes since revision 1.2470: +33 -1 lines
- Document phpldapadmin - remote PHP code injection vulnerability PR: ports/161954 Submitted by: Ruslan Mahmatkhanov <cvs-src@yandex.ru>
Revision 1.2470: download - view: text, markup, annotated - select for diffs
Sun Oct 23 16:16:47 2011 UTC (19 months ago) by rakuco
Branches: MAIN
Diff to: previous 1.2469: preferred, colored
Changes since revision 1.2469: +41 -1 lines
Document CVE-2011-3365 and CVE-2011-3366. Different CVE numbers for different software, but they share the same KDE security advisory. Approved by: makc (mentor)
Revision 1.2469: download - view: text, markup, annotated - select for diffs
Sun Oct 23 16:14:49 2011 UTC (19 months ago) by rakuco
Branches: MAIN
Diff to: previous 1.2468: preferred, colored
Changes since revision 1.2468: +7 -7 lines
Fix the port names of a few past KDE vulnerabilities. The entries mentioned kdebase4-runtime, kdebase3, kdelibs4 etc, but the port names are kdebase, kdelibs etc. Adjust the names and the version ranges. Approved by: makc (mentor)
Revision 1.2468: download - view: text, markup, annotated - select for diffs
Thu Oct 20 11:01:41 2011 UTC (19 months ago) by flo
Branches: MAIN
Diff to: previous 1.2467: preferred, colored
Changes since revision 1.2467: +29 -1 lines
add an entry for the recent piwik vulnerability, with the little information that's available. The only known fact is that Piwik rates this update critical.
Revision 1.2467: download - view: text, markup, annotated - select for diffs
Tue Oct 18 18:53:16 2011 UTC (19 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2466: preferred, colored
Changes since revision 1.2466: +2 -2 lines
Fix discovery date.
Revision 1.2466: download - view: text, markup, annotated - select for diffs
Tue Oct 18 18:24:28 2011 UTC (19 months, 1 week ago) by kwm
Branches: MAIN
Diff to: previous 1.2465: preferred, colored
Changes since revision 1.2465: +36 -1 lines
Document a File disclosure vulnerability and File permission change vulnerability in xorg-server. Obtained from: http://lists.freedesktop.org/archives/xorg-announce/2011-October/001744.html upstream xorg-server Security: CVE-2011-4028, CVE-2011-4029
Revision 1.2465: download - view: text, markup, annotated - select for diffs
Mon Oct 17 19:49:23 2011 UTC (19 months, 1 week ago) by amdmi3
Branches: MAIN
Diff to: previous 1.2464: preferred, colored
Changes since revision 1.2464: +4 -4 lines
- Fix entry dates for recently added OpenTTD vulns Submitted by: "Ilya A. Arkhipov" <micro@heavennet.ru>
Revision 1.2464: download - view: text, markup, annotated - select for diffs
Mon Oct 17 19:02:23 2011 UTC (19 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2463: preferred, colored
Changes since revision 1.2463: +31 -1 lines
Document asterisk -- remote crash vulnerability in SIP channel driver.
Revision 1.2463: download - view: text, markup, annotated - select for diffs
Mon Oct 17 18:54:31 2011 UTC (19 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2462: preferred, colored
Changes since revision 1.2462: +7 -2 lines
Commit result of manually merged make tidy output.
Revision 1.2462: download - view: text, markup, annotated - select for diffs
Mon Oct 17 18:52:16 2011 UTC (19 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2461: preferred, colored
Changes since revision 1.2461: +35 -1 lines
Document PivotX remote file inclusion vulnerability. PR: ports/161734 Submitted by: Fumiyuki Shimizu <fumifumi abacustech jp>
Revision 1.2461: download - view: text, markup, annotated - select for diffs
Mon Oct 17 03:50:23 2011 UTC (19 months, 1 week ago) by amdmi3
Branches: MAIN
Diff to: previous 1.2460: preferred, colored
Changes since revision 1.2460: +4 -4 lines
- Fix quotation links Reported by: danfe
Revision 1.2460: download - view: text, markup, annotated - select for diffs
Sun Oct 16 18:39:44 2011 UTC (19 months, 1 week ago) by amdmi3
Branches: MAIN
Diff to: previous 1.2459: preferred, colored
Changes since revision 1.2459: +84 -1 lines
Document openttd multiple vulnerabilities PR: 161488 Submitted by: "Ilya A. Arkhipov" <micro@heavennet.ru>
Revision 1.2459: download - view: text, markup, annotated - select for diffs
Sat Oct 8 10:56:33 2011 UTC (19 months, 2 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2458: preferred, colored
Changes since revision 1.2458: +3 -3 lines
ca_root_nss - fix capitalization of topics Security: 1b27af46-d6f6-11e0-89a6-080027ef73ec Security: aa5bc971-d635-11e0-b3cf-080027ef73ec
Revision 1.2458: download - view: text, markup, annotated - select for diffs
Sat Oct 8 10:54:58 2011 UTC (19 months, 2 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2457: preferred, colored
Changes since revision 1.2457: +2 -2 lines
ca_root_nss - reword topic for clarity Security: 1b27af46-d6f6-11e0-89a6-080027ef73ec
Revision 1.2457: download - view: text, markup, annotated - select for diffs
Fri Oct 7 07:32:11 2011 UTC (19 months, 2 weeks ago) by novel
Branches: MAIN
Diff to: previous 1.2456: preferred, colored
Changes since revision 1.2456: +2 -2 lines
Be less grubby in specifying vulnerable gnutls-devel versions.
Revision 1.2456: download - view: text, markup, annotated - select for diffs
Thu Oct 6 00:25:57 2011 UTC (19 months, 2 weeks ago) by jlaffaye
Branches: MAIN
Diff to: previous 1.2455: preferred, colored
Changes since revision 1.2455: +2 -2 lines
Latest pyblosxom version is not vulnerable
Revision 1.2455: download - view: text, markup, annotated - select for diffs
Wed Oct 5 20:44:30 2011 UTC (19 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2454: preferred, colored
Changes since revision 1.2454: +59 -1 lines
Document quagga multiple vulnerabilities
Revision 1.2454: download - view: text, markup, annotated - select for diffs
Tue Oct 4 18:24:47 2011 UTC (19 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2453: preferred, colored
Changes since revision 1.2453: +28 -3 lines
Document latest vulnerabilities for www/chromium Obtained from: http://googlechromereleases.blogspot.com/ Security: CVE-2011-[2876-2881, 3873]
Revision 1.2453: download - view: text, markup, annotated - select for diffs
Fri Sep 30 18:06:53 2011 UTC (19 months, 3 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2452: preferred, colored
Changes since revision 1.2452: +5 -4 lines
Correct tomcat version represetations. Pointed out by: Tim Zingelman <tez netbsd.org>
Revision 1.2452: download - view: text, markup, annotated - select for diffs
Wed Sep 28 15:58:02 2011 UTC (19 months, 3 weeks ago) by beat
Branches: MAIN
Diff to: previous 1.2451: preferred, colored
Changes since revision 1.2451: +82 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2451: download - view: text, markup, annotated - select for diffs
Fri Sep 23 20:02:19 2011 UTC (20 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2450: preferred, colored
Changes since revision 1.2450: +4 -2 lines
Properly mark version range for horde-imp.
Revision 1.2450: download - view: text, markup, annotated - select for diffs
Thu Sep 22 20:47:10 2011 UTC (20 months ago) by nox
Branches: MAIN
Diff to: previous 1.2449: preferred, colored
Changes since revision 1.2449: +48 -1 lines
- Update linux-f10-flashplugin to 10.3r183.10 . [1] - Make gnome desktopfileutils dependency optional. [2] PR: ports/160894 [1] Submitted by: Garrett Cooper <yanegomi@gmail.com> [1] Suggested by: Peter Jeremy <peterjeremy@acm.org> [2] Security: http://www.freebsd.org/ports/portaudit/53e531a7-e559-11e0-b481-001b2134ef46.html
Revision 1.2449: download - view: text, markup, annotated - select for diffs
Wed Sep 21 11:35:28 2011 UTC (20 months ago) by zi
Branches: MAIN
Diff to: previous 1.2448: preferred, colored
Changes since revision 1.2448: +2 -2 lines
Improve accuracy of krb5 vulnerability entries for upcoming port addition of krb5-17. (one entry was missed from the previous commit)
Revision 1.2448: download - view: text, markup, annotated - select for diffs
Wed Sep 21 02:21:25 2011 UTC (20 months ago) by zi
Branches: MAIN
Diff to: previous 1.2447: preferred, colored
Changes since revision 1.2447: +21 -10 lines
Improve accuracy of krb5 vulnerability entries for upcoming port addition of krb5-17.
Revision 1.2447: download - view: text, markup, annotated - select for diffs
Tue Sep 20 18:24:20 2011 UTC (20 months ago) by rene
Branches: MAIN
Diff to: previous 1.2446: preferred, colored
Changes since revision 1.2446: +106 -3 lines
Document vulnerabilities in Chromium 13.0.x.y Obtained from: http://googlechromereleases.blogspot.com/ Security: CVE-2011-[2834-2838, 2840-2844, 2846-2862, 2864, 2874-2875, 3234]
Revision 1.2446: download - view: text, markup, annotated - select for diffs
Wed Sep 14 23:26:28 2011 UTC (20 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2445: preferred, colored
Changes since revision 1.2445: +30 -1 lines
Document phpMyAdmin multiple XSS vulnerability. Update phpMyAdminn to 3.4.5 release. [1] PR: ports/160589 [1] Submitted by: maitainer [1]
Revision 1.2445: download - view: text, markup, annotated - select for diffs
Tue Sep 13 17:50:28 2011 UTC (20 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2444: preferred, colored
Changes since revision 1.2444: +131 -1 lines
Document Django multiple vulnerabilities.
Revision 1.2444: download - view: text, markup, annotated - select for diffs
Tue Sep 13 01:11:03 2011 UTC (20 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2443: preferred, colored
Changes since revision 1.2443: +37 -1 lines
Document roundcube XSS vulnerability.
Revision 1.2443: download - view: text, markup, annotated - select for diffs
Mon Sep 12 18:38:31 2011 UTC (20 months, 1 week ago) by olgeni
Branches: MAIN
Diff to: previous 1.2442: preferred, colored
Changes since revision 1.2442: +36 -1 lines
Document libsndfile -- PAF file processing integer overflow. Security: CVE-2011-2696
Revision 1.2442: download - view: text, markup, annotated - select for diffs
Sat Sep 10 07:41:21 2011 UTC (20 months, 2 weeks ago) by ashish
Branches: MAIN
Diff to: previous 1.2441: preferred, colored
Changes since revision 1.2441: +2 -2 lines
Re-revise emacs vulnerability to limit with >= 22 and < 22.2_1 instead of >21.* and <22.2_1 which didn't work as expected
Revision 1.2441: download - view: text, markup, annotated - select for diffs
Thu Sep 8 22:30:42 2011 UTC (20 months, 2 weeks ago) by ashish
Branches: MAIN
Diff to: previous 1.2440: preferred, colored
Changes since revision 1.2440: +2 -2 lines
- Limit emacs vulnerability to > 21.* and <= 22.2 instead of just <= 22.2
Revision 1.2440: download - view: text, markup, annotated - select for diffs
Wed Sep 7 18:30:41 2011 UTC (20 months, 2 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2439: preferred, colored
Changes since revision 1.2439: +36 -1 lines
Document two OpenSSL vulnerabilities. (There is no OpenSSL 0.9.8s in the ports so mark <1.0.0 as vulnerable).
Revision 1.2439: download - view: text, markup, annotated - select for diffs
Tue Sep 6 21:12:04 2011 UTC (20 months, 2 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2438: preferred, colored
Changes since revision 1.2438: +3 -2 lines
fix last thunderbird entry
Revision 1.2438: download - view: text, markup, annotated - select for diffs
Tue Sep 6 20:12:44 2011 UTC (20 months, 2 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2437: preferred, colored
Changes since revision 1.2437: +27 -1 lines
add firefox, thunderbird and seamonkey to the DigiNotar.nl entry Security: http://www.vuxml.org/freebsd/aa5bc971-d635-11e0-b3cf-080027ef73ec.html
Revision 1.2437: download - view: text, markup, annotated - select for diffs
Mon Sep 5 16:24:22 2011 UTC (20 months, 2 weeks ago) by bapt
Branches: MAIN
Diff to: previous 1.2436: preferred, colored
Changes since revision 1.2436: +26 -23 lines
Fix vuln.xml, while here fix indentation
Revision 1.2436: download - view: text, markup, annotated - select for diffs
Mon Sep 5 15:55:38 2011 UTC (20 months, 2 weeks ago) by eadler
Branches: MAIN
Diff to: previous 1.2435: preferred, colored
Changes since revision 1.2435: +25 -1 lines
- Update to 1.2.7 PR: ports/160368 Submitted by: gjb Approved by: dvl (maintainer), bapt (mentor) Security: CVE-2011-2938
Revision 1.2435: download - view: text, markup, annotated - select for diffs
Sun Sep 4 20:15:52 2011 UTC (20 months, 2 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2434: preferred, colored
Changes since revision 1.2434: +36 -9 lines
- Document cfs buffer overflow vulnerability. - While here, unbreak packaudit -- it doesn't like newlines in the middle of tags. Perhaps a comment should say something?
Revision 1.2434: download - view: text, markup, annotated - select for diffs
Sun Sep 4 13:14:21 2011 UTC (20 months, 2 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2433: preferred, colored
Changes since revision 1.2433: +36 -3 lines
Revise nss/ca_root_nss working around Mozilla, limit ca_root_nss vuln to < 3.12.11 from <= 3.12.11. Add a new entry for the ca_root_nss bug that caused extraction of untrusted certificates to the trust bundle. PR: ports/160455
Revision 1.2433: download - view: text, markup, annotated - select for diffs
Sun Sep 4 11:46:47 2011 UTC (20 months, 3 weeks ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2432: preferred, colored
Changes since revision 1.2432: +3 -3 lines
- Correct affected plone versions
Revision 1.2432: download - view: text, markup, annotated - select for diffs
Sun Sep 4 04:09:42 2011 UTC (20 months, 3 weeks ago) by dinoex
Branches: MAIN
Diff to: previous 1.2431: preferred, colored
Changes since revision 1.2431: +2 -2 lines
- bump modifiled for CVE-2007-5137
Revision 1.2431: download - view: text, markup, annotated - select for diffs
Sat Sep 3 16:28:49 2011 UTC (20 months, 3 weeks ago) by dinoex
Branches: MAIN
Diff to: previous 1.2430: preferred, colored
Changes since revision 1.2430: +3 -8 lines
- update CVE-2007-5137
Revision 1.2430: download - view: text, markup, annotated - select for diffs
Sat Sep 3 16:18:19 2011 UTC (20 months, 3 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2429: preferred, colored
Changes since revision 1.2429: +2 -2 lines
Update range to exclude nss 3.12.11 from vuln, as kwm@'s commit to upgrade nss to 3.12.11 included the newer CKBI 1.87 that explicitly distrusts DigiNotar.
Revision 1.2429: download - view: text, markup, annotated - select for diffs
Sat Sep 3 15:43:38 2011 UTC (20 months, 3 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2428: preferred, colored
Changes since revision 1.2428: +65 -1 lines
Add a security notice for the DigiNotar incident, listing nss/ca_root/nss.
Revision 1.2428: download - view: text, markup, annotated - select for diffs
Sat Sep 3 12:49:12 2011 UTC (20 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2427: preferred, colored
Changes since revision 1.2427: +6 -2 lines
- only match vulnerable versions in the hlstats entry - add additional CVEs
Revision 1.2427: download - view: text, markup, annotated - select for diffs
Fri Sep 2 17:15:58 2011 UTC (20 months, 3 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2426: preferred, colored
Changes since revision 1.2426: +6 -1 lines
Final modification for apache22 vulnerability; include slave ports as well Pointed out by: flo Reviewed by: eadler
Revision 1.2426: download - view: text, markup, annotated - select for diffs
Thu Sep 1 19:06:27 2011 UTC (20 months, 3 weeks ago) by crees
Branches: MAIN
Diff to: previous 1.2425: preferred, colored
Changes since revision 1.2425: +2 -3 lines
Correct range for apache22, 2.2.20 is fixed and 1.3 wasn't affected. Submitted by: Aleksandr Stankevic (sysmonk on IRC/Freenode##FreeBSD) Security: CVE-2011-3192
Revision 1.2425: download - view: text, markup, annotated - select for diffs
Tue Aug 30 22:29:14 2011 UTC (20 months, 3 weeks ago) by shaun
Branches: MAIN
Diff to: previous 1.2424: preferred, colored
Changes since revision 1.2424: +3 -2 lines
Put a lower bound on the last php entry, as the bug was introduced in 5.3.7-RC5. Submitted by: "jaset" via #bsdports
Revision 1.2424: download - view: text, markup, annotated - select for diffs
Tue Aug 30 13:21:27 2011 UTC (20 months, 3 weeks ago) by sbz
Branches: MAIN
Diff to: previous 1.2423: preferred, colored
Changes since revision 1.2423: +4 -3 lines
- Fix entry date and use two ranges Reviewed by: gahr@ Approved by: jadawin@ (mentor)
Revision 1.2423: download - view: text, markup, annotated - select for diffs
Tue Aug 30 12:01:13 2011 UTC (20 months, 3 weeks ago) by sbz
Branches: MAIN
Diff to: previous 1.2422: preferred, colored
Changes since revision 1.2422: +30 -1 lines
- Document CVE-2011-3192 for recent apache DoS vulnerability Approved by: jadawin@ (mentor) Security: http://vuxml.org/freebsd/7f6108d2-cea8-11e0-9d58-0800279895ea.html
Revision 1.2422: download - view: text, markup, annotated - select for diffs
Fri Aug 26 18:12:00 2011 UTC (20 months, 4 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2421: preferred, colored
Changes since revision 1.2421: +2 -2 lines
Upstream indicates that this only affects 4.40 and 4.41 so add a <ge> tag to indicate that.
Revision 1.2421: download - view: text, markup, annotated - select for diffs
Fri Aug 26 18:10:39 2011 UTC (20 months, 4 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2420: preferred, colored
Changes since revision 1.2420: +30 -1 lines
Document stunnel heap corruption vulnerability.
Revision 1.2420: download - view: text, markup, annotated - select for diffs
Wed Aug 24 22:43:04 2011 UTC (21 months ago) by bapt
Branches: MAIN
Diff to: previous 1.2419: preferred, colored
Changes since revision 1.2419: +2 -2 lines
Fix discovery date
Revision 1.2419: download - view: text, markup, annotated - select for diffs
Wed Aug 24 22:20:14 2011 UTC (21 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2418: preferred, colored
Changes since revision 1.2418: +26 -1 lines
DOcument phpMyAdmin CVE-2011-3181 (multiple XSS).
Revision 1.2418: download - view: text, markup, annotated - select for diffs
Tue Aug 23 17:02:34 2011 UTC (21 months ago) by rene
Branches: MAIN
Diff to: previous 1.2417: preferred, colored
Changes since revision 1.2417: +35 -3 lines
Document new Chromium vulnerabilities. Obtained from: http://google-chrome-browser.com/releases Security: CVE-2011-[2821, 2823-2829, 2839]
Revision 1.2417: download - view: text, markup, annotated - select for diffs
Tue Aug 23 00:58:34 2011 UTC (21 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2416: preferred, colored
Changes since revision 1.2416: +28 -1 lines
Mark PHP5 < 5.3.7_2 as vulnerable to PHP bug #55439: crypt() returns only the salt for MD5.
Revision 1.2416: download - view: text, markup, annotated - select for diffs
Sat Aug 20 00:43:48 2011 UTC (21 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2415: preferred, colored
Changes since revision 1.2415: +43 -1 lines
Document multiple PHP vulnerabilities.
Revision 1.2415: download - view: text, markup, annotated - select for diffs
Fri Aug 19 18:42:12 2011 UTC (21 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2414: preferred, colored
Changes since revision 1.2414: +34 -1 lines
Document Rails multiple vulnerabilities.
Revision 1.2414: download - view: text, markup, annotated - select for diffs
Fri Aug 19 17:46:10 2011 UTC (21 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2413: preferred, colored
Changes since revision 1.2413: +29 -1 lines
Document dovecot DoS vulnerability.
Revision 1.2413: download - view: text, markup, annotated - select for diffs
Thu Aug 18 19:06:26 2011 UTC (21 months, 1 week ago) by skv
Branches: MAIN
Diff to: previous 1.2412: preferred, colored
Changes since revision 1.2412: +31 -1 lines
Document "otrs" - vulnerabilities in OTRS-Core allows read access to any file on local file system.
Revision 1.2412: download - view: text, markup, annotated - select for diffs
Tue Aug 16 18:12:50 2011 UTC (21 months, 1 week ago) by flo
Branches: MAIN
Diff to: previous 1.2411: preferred, colored
Changes since revision 1.2411: +62 -1 lines
document recent mozilla vulnerabilities
Revision 1.2411: download - view: text, markup, annotated - select for diffs
Tue Aug 16 17:36:06 2011 UTC (21 months, 1 week ago) by delphij
Branches: MAIN
Diff to: previous 1.2410: preferred, colored
Changes since revision 1.2410: +44 -1 lines
Document samba vulnerabilities of SWAT web interface.
Revision 1.2410: download - view: text, markup, annotated - select for diffs
Mon Aug 15 20:00:37 2011 UTC (21 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2409: preferred, colored
Changes since revision 1.2409: +3 -3 lines
Adjust dates in 510b630e-c43b-11e0-916c-00e0815b8da8. Noticed by: kwm@
Revision 1.2409: download - view: text, markup, annotated - select for diffs
Sun Aug 14 01:41:10 2011 UTC (21 months, 1 week ago) by wxs
Branches: MAIN
Diff to: previous 1.2408: preferred, colored
Changes since revision 1.2408: +37 -1 lines
- Document ISC DHCP server DoS.
Revision 1.2408: download - view: text, markup, annotated - select for diffs
Sat Aug 13 18:19:06 2011 UTC (21 months, 1 week ago) by skv
Branches: MAIN
Diff to: previous 1.2407: preferred, colored
Changes since revision 1.2407: +63 -1 lines
Document "bugzilla" - multiple vulnerabilities.
Revision 1.2407: download - view: text, markup, annotated - select for diffs
Sat Aug 13 15:02:29 2011 UTC (21 months, 1 week ago) by crees
Branches: MAIN
Diff to: previous 1.2406: preferred, colored
Changes since revision 1.2406: +37 -1 lines
Document dtc security issues PR: ports/159736 Submitted by: Ansgar Burchardt <ansgar@debian.org>
Revision 1.2406: download - view: text, markup, annotated - select for diffs
Thu Aug 11 08:37:56 2011 UTC (21 months, 2 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2405: preferred, colored
Changes since revision 1.2405: +60 -1 lines
Document freetype2 and libXfont vulnabilities.
Revision 1.2405: download - view: text, markup, annotated - select for diffs
Wed Aug 10 20:27:26 2011 UTC (21 months, 2 weeks ago) by nox
Branches: MAIN
Diff to: previous 1.2404: preferred, colored
Changes since revision 1.2404: +48 -1 lines
Update linux-f10-flashplugin to 10.3r183.5 . Submitted by: pointyhat via erwin Security: http://www.freebsd.org/ports/portaudit/2c12ae0c-c38d-11e0-8eb7-001b2134ef46.html
Revision 1.2404: download - view: text, markup, annotated - select for diffs
Tue Aug 2 17:57:05 2011 UTC (21 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2403: preferred, colored
Changes since revision 1.2403: +100 -3 lines
Document new vulnerabilities for www/chromium ( < 13.0.782.107) Obtained from: http://googlechromereleases.blogspot.com/ Security: CVE-2011-{2358-2361, 2782-2805, 2818-2819}
Revision 1.2403: download - view: text, markup, annotated - select for diffs
Thu Jul 28 19:18:37 2011 UTC (21 months, 4 weeks ago) by kwm
Branches: MAIN
Diff to: previous 1.2402: preferred, colored
Changes since revision 1.2402: +31 -1 lines
Document libsoup security hole.
Revision 1.2402: download - view: text, markup, annotated - select for diffs
Thu Jul 28 07:10:38 2011 UTC (21 months, 4 weeks ago) by delphij
Branches: MAIN
Diff to: previous 1.2401: preferred, colored
Changes since revision 1.2401: +5 -3 lines
Fix match of phpmyadmin in recent revisions.
Revision 1.2401: download - view: text, markup, annotated - select for diffs
Tue Jul 26 02:12:47 2011 UTC (22 months ago) by swills
Branches: MAIN
Diff to: previous 1.2400: preferred, colored
Changes since revision 1.2400: +3 -2 lines
- Add CVE reference for OpenSAML2 issue - Use official citation
Revision 1.2400: download - view: text, markup, annotated - select for diffs
Tue Jul 26 01:12:25 2011 UTC (22 months ago) by zi
Branches: MAIN
Diff to: previous 1.2399: preferred, colored
Changes since revision 1.2399: +47 -1 lines
Document phpmyadmin vulnerabilities Approved by: wxs (mentor)
Revision 1.2399: download - view: text, markup, annotated - select for diffs
Mon Jul 25 23:47:57 2011 UTC (22 months ago) by swills
Branches: MAIN
Diff to: previous 1.2398: preferred, colored
Changes since revision 1.2398: +30 -1 lines
Document OpenSAML2 issue
Revision 1.2398: download - view: text, markup, annotated - select for diffs
Wed Jul 20 20:50:18 2011 UTC (22 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2397: preferred, colored
Changes since revision 1.2397: +30 -1 lines
Document rsync DoS issue (CVE-2011-1097).
Revision 1.2397: download - view: text, markup, annotated - select for diffs
Tue Jul 5 23:39:46 2011 UTC (22 months, 2 weeks ago) by dougb
Branches: MAIN
Diff to: previous 1.2396: preferred, colored
Changes since revision 1.2396: +67 -1 lines
Document BIND vulnerabilities for ports. This was inspired by the PR, but re-formatted and edited by me, so responsibility for errors is mine. PR: ports/158672 Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
Revision 1.2396: download - view: text, markup, annotated - select for diffs
Sun Jul 3 13:32:49 2011 UTC (22 months, 3 weeks ago) by jlaffaye
Branches: MAIN
Diff to: previous 1.2395: preferred, colored
Changes since revision 1.2395: +51 -1 lines
Document phpMyAdmin multiple vulnerabilities Reviewed by: flo Approved by: rene (mentor vacation)
Revision 1.2395: download - view: text, markup, annotated - select for diffs
Wed Jun 29 10:15:17 2011 UTC (22 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2394: preferred, colored
Changes since revision 1.2394: +9 -4 lines
document one more vulnerability in the recent asterisk entry
Revision 1.2394: download - view: text, markup, annotated - select for diffs
Tue Jun 28 22:50:51 2011 UTC (22 months, 3 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2393: preferred, colored
Changes since revision 1.2393: +26 -3 lines
Document new vulnerabilities for www/chromium ( < 12.0.742.112) Security: CVE-2011-[2345-2351]
Revision 1.2393: download - view: text, markup, annotated - select for diffs
Tue Jun 28 00:57:09 2011 UTC (22 months, 4 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2392: preferred, colored
Changes since revision 1.2392: +2 -1 lines
Add modified tag to 8a5770b4-54b5-11db-a5ae-00508d6a62df. Noticed by: sahil@
Revision 1.2392: download - view: text, markup, annotated - select for diffs
Mon Jun 27 14:39:36 2011 UTC (22 months, 4 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2391: preferred, colored
Changes since revision 1.2391: +2 -2 lines
Now that www/mambo is updated, fix the range in 8a5770b4-54b5-11db-a5ae-00508d6a62df.
Revision 1.2391: download - view: text, markup, annotated - select for diffs
Sat Jun 25 22:48:00 2011 UTC (23 months ago) by flo
Branches: MAIN
Diff to: previous 1.2390: preferred, colored
Changes since revision 1.2390: +49 -1 lines
document recent asterisk vulnerabilities
Revision 1.2390: download - view: text, markup, annotated - select for diffs
Fri Jun 24 13:46:50 2011 UTC (23 months ago) by ashish
Branches: MAIN
Diff to: previous 1.2389: preferred, colored
Changes since revision 1.2389: +33 -2 lines
- Document ejabberd vulnerability fixed in 2.1.8 PR: ports/158137 Submitted by: Ruslan Mahamatkhanov <cvs-src@yandex.ru> Security: http://vuxml.org/freebsd/01d3ab7d-9c43-11e0-bc0f-0014a5e3cda6.html
Revision 1.2389: download - view: text, markup, annotated - select for diffs
Thu Jun 23 12:36:04 2011 UTC (23 months ago) by flo
Branches: MAIN
Diff to: previous 1.2388: preferred, colored
Changes since revision 1.2388: +3 -1 lines
- also mark firefox35 vulnerable
Revision 1.2388: download - view: text, markup, annotated - select for diffs
Tue Jun 21 20:26:57 2011 UTC (23 months ago) by flo
Branches: MAIN
Diff to: previous 1.2387: preferred, colored
Changes since revision 1.2387: +96 -1 lines
- document recent mozilla vulnerabilities [1] - while here also document an older samba Denial of service vulnerability [2] Security: http://www.vuxml.org/freebsd/dfe40cff-9c3f-11e0-9bec-6c626dd55a41.html [1] http://www.vuxml.org/freebsd/bfdbc7ec-9c3f-11e0-9bec-6c626dd55a41.html [2] Requested by: timur [2]
Revision 1.2387: download - view: text, markup, annotated - select for diffs
Tue Jun 21 17:49:59 2011 UTC (23 months ago) by culot
Branches: MAIN
Diff to: previous 1.2386: preferred, colored
Changes since revision 1.2386: +34 -1 lines
Document piwik remote command execution vulnerability.
Revision 1.2386: download - view: text, markup, annotated - select for diffs
Mon Jun 20 22:59:44 2011 UTC (23 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2385: preferred, colored
Changes since revision 1.2385: +32 -1 lines
Document dokuwiki XSS vulnerability.
Revision 1.2385: download - view: text, markup, annotated - select for diffs
Wed Jun 15 19:53:01 2011 UTC (23 months, 1 week ago) by nox
Branches: MAIN
Diff to: previous 1.2384: preferred, colored
Changes since revision 1.2384: +39 -1 lines
Update linux-f10-flashplugin to 10.3r181.26 . PR: ports/157900 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> Security: http://www.freebsd.org/ports/portaudit/55a528e8-9787-11e0-b24a-001b2134ef46.html
Revision 1.2384: download - view: text, markup, annotated - select for diffs
Wed Jun 15 12:43:36 2011 UTC (23 months, 1 week ago) by brix
Branches: MAIN
Diff to: previous 1.2383: preferred, colored
Changes since revision 1.2383: +30 -1 lines
- Document CVE-2011-1408 in www/ikiwiki
Revision 1.2383: download - view: text, markup, annotated - select for diffs
Sun Jun 12 05:15:31 2011 UTC (23 months, 2 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2382: preferred, colored
Changes since revision 1.2382: +13 -13 lines
- Cleanup
Revision 1.2382: download - view: text, markup, annotated - select for diffs
Wed Jun 8 20:49:56 2011 UTC (23 months, 2 weeks ago) by nox
Branches: MAIN
Diff to: previous 1.2381: preferred, colored
Changes since revision 1.2381: +41 -1 lines
Update to 10.3r181.22 . PR: ports/157696 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> Security: http://www.freebsd.org/ports/portaudit/57573136-920e-11e0-bdc9-001b2134ef46.html
Revision 1.2381: download - view: text, markup, annotated - select for diffs
Tue Jun 7 17:30:30 2011 UTC (23 months, 2 weeks ago) by rene
Branches: MAIN
Diff to: previous 1.2380: preferred, colored
Changes since revision 1.2380: +50 -4 lines
Document www/chromium vulnerabilities fixed in version 12.0.742.91
Security: CVE-2011-{1808-1819,2332,2342}
Revision 1.2380: download - view: text, markup, annotated - select for diffs
Tue Jun 7 00:24:35 2011 UTC (23 months, 2 weeks ago) by wxs
Branches: MAIN
Diff to: previous 1.2379: preferred, colored
Changes since revision 1.2379: +51 -1 lines
- Document CVE-2011-1910 PR: ports/157548 Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
Revision 1.2379: download - view: text, markup, annotated - select for diffs
Mon Jun 6 12:45:19 2011 UTC (23 months, 2 weeks ago) by mandree
Branches: MAIN
Diff to: previous 1.2378: preferred, colored
Changes since revision 1.2378: +43 -1 lines
Add CVE-2011-1947: fetchmail STARTTLS denial of service.
Revision 1.2378: download - view: text, markup, annotated - select for diffs
Fri Jun 3 03:36:15 2011 UTC (23 months, 3 weeks ago) by miwi
Branches: MAIN
Diff to: previous 1.2377: preferred, colored
Changes since revision 1.2377: +125 -126 lines
- Cleanup
Revision 1.2377: download - view: text, markup, annotated - select for diffs
Thu Jun 2 20:39:53 2011 UTC (23 months, 3 weeks ago) by flo
Branches: MAIN
Diff to: previous 1.2376: preferred, colored
Changes since revision 1.2376: +30 -1 lines
- document asterisk remote crash vulnerability Security: http://www.vuxml.org/freebsd/34ce5817-8d56-11e0-b5a2-6c626dd55a41.html
Revision 1.2376: download - view: text, markup, annotated - select for diffs
Thu Jun 2 14:19:28 2011 UTC (23 months, 3 weeks ago) by lev
Branches: MAIN
Diff to: previous 1.2375: preferred, colored
Changes since revision 1.2375: +51 -1 lines
Document CVE-2011-1752, CVE-2011-1783 and CVE-2011-1921 in devel/subversion
Revision 1.2375: download - view: text, markup, annotated - select for diffs
Thu May 26 13:54:07 2011 UTC (2 years ago) by wxs
Branches: MAIN
Diff to: previous 1.2374: preferred, colored
Changes since revision 1.2374: +36 -1 lines
Document drupal6 multiple vulnerabilities. Submitted by: Nick Hilliard <nick@foobar.org>
Revision 1.2374: download - view: text, markup, annotated - select for diffs
Wed May 25 21:14:43 2011 UTC (2 years ago) by olgeni
Branches: MAIN
Diff to: previous 1.2373: preferred, colored
Changes since revision 1.2373: +33 -1 lines
Document Erlang R14B02 ssh library vulnerability (cryptographically weak RNG). Security: CVE-2011-0766
Revision 1.2373: download - view: text, markup, annotated - select for diffs
Wed May 25 16:38:56 2011 UTC (2 years ago) by rene
Branches: MAIN
Diff to: previous 1.2372: preferred, colored
Changes since revision 1.2372: +18 -3 lines
Document latest www/chromium vulnerabilities. Security: CVE-2011-1801, -1804, -1806, -1807
Revision 1.2372: download - view: text, markup, annotated - select for diffs
Wed May 25 10:58:15 2011 UTC (2 years ago) by miwi
Branches: MAIN
Diff to: previous 1.2371: preferred, colored
Changes since revision 1.2371: +36 -35 lines
- Cleanup Part 1 PS: wonder when pplz start to ask ports-security for review ...
Revision 1.2371: download - view: text, markup, annotated - select for diffs
Wed May 25 09:44:01 2011 UTC (2 years ago) by sem
Branches: MAIN
Diff to: previous 1.2370: preferred, colored
Changes since revision 1.2370: +30 -1 lines
- Document the last unbound vulnerability
Revision 1.2370: download - view: text, markup, annotated - select for diffs
Tue May 24 23:51:21 2011 UTC (2 years ago) by ohauer
Branches: MAIN
Diff to: previous 1.2369: preferred, colored
Changes since revision 1.2369: +11 -8 lines
- revert last change of apr-* entry Broken build reported by wxs@
Revision 1.2369: download - view: text, markup, annotated - select for diffs
Tue May 24 22:59:52 2011 UTC (2 years ago) by ohauer
Branches: MAIN
Diff to: previous 1.2368: preferred, colored
Changes since revision 1.2368: +9 -12 lines
- use apr-* and add <gt></gt> entries for all apr0/apr1 issues (<gt> .. is needed else the parser cannot make a difference between apr0 and apr1) - lowercase ViewVC -> viewvc Thanks Jun Kuriyama ( kuriyama@ ) for the notice and the patch for the apr entries.
Revision 1.2368: download - view: text, markup, annotated - select for diffs
Tue May 24 16:05:57 2011 UTC (2 years ago) by brooks
Branches: MAIN
Diff to: previous 1.2367: preferred, colored
Changes since revision 1.2367: +2 -2 lines
Update the mod_pubcookie entry with an ap20 prefix. The port has alwasy has USE_APACHE=2.0 in it so we can avoid enumarating all values of APACHE_PKGNAMEPREFIX. Pointy hat: brooks
Revision 1.2367: download - view: text, markup, annotated - select for diffs
Tue May 24 06:19:13 2011 UTC (2 years ago) by simon
Branches: MAIN
Diff to: previous 1.2366: preferred, colored
Changes since revision 1.2366: +2 -2 lines
Unbreak VuXML web build by changing "ap*-" to "ap-" in package name for 1ca8228f-858d-11e0-a76c-000743057ca2 / mod_pubcookie -- Empty Authentication Security Advisory. While the new one is likely not correct, this fixes the build until somebody can put in the right thing.
Revision 1.2366: download - view: text, markup, annotated - select for diffs
Tue May 24 05:55:10 2011 UTC (2 years ago) by delphij
Branches: MAIN
Diff to: previous 1.2365: preferred, colored
Changes since revision 1.2365: +2 -2 lines
Fix build.
Revision 1.2365: download - view: text, markup, annotated - select for diffs
Mon May 23 23:04:41 2011 UTC (2 years ago) by brooks
Branches: MAIN
Diff to: previous 1.2364: preferred, colored
Changes since revision 1.2364: +67 -1 lines
Partially address several years of neglect of pubcookie. Indicate the security issues in two two ports. I've not use pubcookie in several year and given the lack of complaint about the deprication of mod_pubcookie, I doubt anyone else uses it from ports. The mod_pubcookie port has already expired and I've set a two week expriation for pubcookie-login-server. If not maintainer appears I will send both to the Attic on June 6th. While I'm here, address the use of CONF_FILES and CONF_DIRS in pubcookie-login-server to avoid getting in the way of progress. [0] PR: ports/157164 [0] Security: vuxml:115a1389-858e-11e0-a76c-000743057ca2 vuxml:1ca8228f-858d-11e0-a76c-000743057ca2
Revision 1.2364: download - view: text, markup, annotated - select for diffs
Mon May 23 22:22:43 2011 UTC (2 years ago) by ohauer
Branches: MAIN
Diff to: previous 1.2363: preferred, colored
Changes since revision 1.2363: +63 -8 lines
- add entry for ViewVC < 1.1.11 - add entry for apr1 (CVE-2011-1928) - correct version in previous apr1 entry - run tidy
Revision 1.2363: download - view: text, markup, annotated - select for diffs
Mon May 23 21:17:51 2011 UTC (2 years ago) by nox
Branches: MAIN
Diff to: previous 1.2362: preferred, colored
Changes since revision 1.2362: +53 -1 lines
Update to 10.3r181.14 . PR: ports/156996 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> Security: http://www.freebsd.org/ports/portaudit/d226626c-857f-11e0-95cc-001b2134ef46.html
Revision 1.2362: download - view: text, markup, annotated - select for diffs
Mon May 23 10:58:03 2011 UTC (2 years ago) by mandree
Branches: MAIN
Diff to: previous 1.2361: preferred, colored
Changes since revision 1.2361: +29 -1 lines
Document Opera Frameset unload code injection vulnerability.
Revision 1.2361: download - view: text, markup, annotated - select for diffs
Mon May 23 09:58:16 2011 UTC (2 years ago) by delphij
Branches: MAIN
Diff to: previous 1.2360: preferred, colored
Changes since revision 1.2360: +31 -1 lines
Document pure-ftpd multiple vulnerabilities prior to 1.0.32.
Revision 1.2360: download - view: text, markup, annotated - select for diffs
Sat May 14 17:48:33 2011 UTC (2 years ago) by rea
Branches: MAIN
Diff to: previous 1.2359: preferred, colored
Changes since revision 1.2359: +47 -1 lines
mail/exim: document CVE-2011-1764 and CVE-2011-1407 Both vulnerabilities are in the DKIM code and were fixed in 4.76. Approved-by: erwin (mentor) Feature-safe: yes
Revision 1.2359: download - view: text, markup, annotated - select for diffs
Fri May 13 23:33:16 2011 UTC (2 years ago) by ohauer
Branches: MAIN
Diff to: previous 1.2358: preferred, colored
Changes since revision 1.2358: +31 -1 lines
- document Apache APR DoS vulnerabilities
Revision 1.2358: download - view: text, markup, annotated - select for diffs
Fri May 13 15:06:00 2011 UTC (2 years ago) by glarkin
Branches: MAIN
Diff to: previous 1.2357: preferred, colored
Changes since revision 1.2357: +30 -1 lines
- Document www/zend-framework (potential SQL injection when using PDO_MySQL) Security: http://framework.zend.com/security/advisory/ZF2011-02
Revision 1.2357: download - view: text, markup, annotated - select for diffs
Thu May 12 23:46:14 2011 UTC (2 years ago) by wxs
Branches: MAIN
Diff to: previous 1.2356: preferred, colored
Changes since revision 1.2356: +30 -1 lines
Document mediawiki multiple vulnerabilities. PR: ports/156914 Submitted by: Ryan Steinmetz <rpsfa@rit.edu>
Revision 1.2356: download - view: text, markup, annotated - select for diffs
Thu May 12 20:13:50 2011 UTC (2 years ago) by rene
Branches: MAIN
Diff to: previous 1.2355: preferred, colored
Changes since revision 1.2355: +11 -3 lines
Document CVE-2011-1799 and CVE-2011-1800 for www/chromium
Revision 1.2355: download - view: text, markup, annotated - select for diffs
Thu May 12 18:09:28 2011 UTC (2 years ago) by wxs
Branches: MAIN
Diff to: previous 1.2354: preferred, colored
Changes since revision 1.2354: +5 -9 lines
Incorporate changes recommended by the tidy target. While here, properly label dc9f8335-2b3b-11e0-a91b-00e0815b8da8.
Revision 1.2354: download - view: text, markup, annotated - select for diffs
Mon May 9 13:11:11 2011 UTC (2 years ago) by sahil
Branches: MAIN
Diff to: previous 1.2353: preferred, colored
Changes since revision 1.2353: +39 -1 lines
Document CVE-2011-1720: Postfix memory corruption error.
Revision 1.2353: download - view: text, markup, annotated - select for diffs
Sat Apr 30 09:25:16 2011 UTC (2 years ago) by rene
Branches: MAIN
Diff to: previous 1.2352: preferred, colored
Changes since revision 1.2352: +85 -3 lines
Document www/chromium vulnerabilities fixed in version 11.0.696.57 Security: CVE-2011-[1303-1305, 1434-1452, 1454-1456]
Revision 1.2352: download - view: text, markup, annotated - select for diffs
Fri Apr 29 06:26:34 2011 UTC (2 years ago) by flo
Branches: MAIN
Diff to: previous 1.2351: preferred, colored
Changes since revision 1.2351: +60 -1 lines
Document mozilla -- multiple vulnerabilities
Revision 1.2351: download - view: text, markup, annotated - select for diffs
Thu Apr 21 22:41:44 2011 UTC (2 years, 1 month ago) by flo
Branches: MAIN
Diff to: previous 1.2350: preferred, colored
Changes since revision 1.2350: +50 -2 lines
- document recent asterisk vulnerabilities - fix topic in RT entry
Revision 1.2350: download - view: text, markup, annotated - select for diffs
Sun Apr 17 20:31:01 2011 UTC (2 years, 1 month ago) by jsa
Branches: MAIN
Diff to: previous 1.2349: preferred, colored
Changes since revision 1.2349: +27 -1 lines
Document VideoLAN-SA-1103. Heap corruption in MP4 demultiplexer in VLC.
Revision 1.2349: download - view: text, markup, annotated - select for diffs
Sun Apr 17 18:32:15 2011 UTC (2 years, 1 month ago) by nox
Branches: MAIN
Diff to: previous 1.2348: preferred, colored
Changes since revision 1.2348: +49 -1 lines
Update to 10.2r159.1 . Security: http://www.freebsd.org/ports/portaudit/32b05547-6913-11e0-bdc4-001b2134ef46.html
Revision 1.2348: download - view: text, markup, annotated - select for diffs
Sun Apr 17 10:59:04 2011 UTC (2 years, 1 month ago) by flo
Branches: MAIN
Diff to: previous 1.2347: preferred, colored
Changes since revision 1.2347: +39 -1 lines
Document multiple vulnerabilities in RT www/rt36 and www/rt38
Revision 1.2347: download - view: text, markup, annotated - select for diffs
Thu Apr 14 22:14:58 2011 UTC (2 years, 1 month ago) by rene
Branches: MAIN
Diff to: previous 1.2346: preferred, colored
Changes since revision 1.2346: +11 -3 lines
Document www/chromium vulnerabilities Security: CVE-2011-1301, CVE-2011-1302
Revision 1.2346: download - view: text, markup, annotated - select for diffs
Thu Apr 14 21:08:29 2011 UTC (2 years, 1 month ago) by simon
Branches: MAIN
Diff to: previous 1.2345: preferred, colored
Changes since revision 1.2345: +6 -6 lines
Unbreak file format: - Place <vuxml> tag at the start of the file. - Close topic tags. Pointy hat to: cy
Revision 1.2345: download - view: text, markup, annotated - select for diffs
Thu Apr 14 19:51:41 2011 UTC (2 years, 1 month ago) by cy
Branches: MAIN
Diff to: previous 1.2344: preferred, colored
Changes since revision 1.2344: +158 -1 lines
Add the following for security/krb5: MITKRB5-SA-2011-001 - kpropd denial of service MITKRB5-SA-2011-002 - KDC denial of service attacks MITKRB5-SA-2011-003 - KDC vulnerable to double-free when PKINIT enabled MITKRB5-SA-2011-004 - kadmind invalid pointer free()
Revision 1.2344: download - view: text, markup, annotated - select for diffs
Thu Apr 14 07:43:06 2011 UTC (2 years, 1 month ago) by kwm
Branches: MAIN
Diff to: previous 1.2343: preferred, colored
Changes since revision 1.2343: +33 -1 lines
Document a root exploit via rogue hostname in xrdb.
Revision 1.2343: download - view: text, markup, annotated - select for diffs
Wed Apr 13 11:01:08 2011 UTC (2 years, 1 month ago) by bapt
Branches: MAIN
Diff to: previous 1.2342: preferred, colored
Changes since revision 1.2342: +2 -2 lines
Limit affected mupdf version to <0.8 Submitted by: tobez@ (irc)
Revision 1.2342: download - view: text, markup, annotated - select for diffs
Tue Apr 12 17:52:28 2011 UTC (2 years, 1 month ago) by skv
Branches: MAIN
Diff to: previous 1.2341: preferred, colored
Changes since revision 1.2341: +33 -1 lines
Document "otrs" - several XSS attacks possible.
Revision 1.2341: download - view: text, markup, annotated - select for diffs
Tue Apr 12 15:36:44 2011 UTC (2 years, 1 month ago) by erwin
Branches: MAIN
Diff to: previous 1.2340: preferred, colored
Changes since revision 1.2340: +2 -2 lines
Fix typo Submitted by: Dan Langille <dan@langille.org>
Revision 1.2340: download - view: text, markup, annotated - select for diffs
Sun Apr 10 21:39:37 2011 UTC (2 years, 1 month ago) by wxs
Branches: MAIN
Diff to: previous 1.2339: preferred, colored
Changes since revision 1.2339: +35 -1 lines
Document isc-dhcp41-client and isc-dhcp31-client vulnerabilities. PR: ports/156246 Submitted by: Douglas Thrift <douglas@douglasthrift.net>
Revision 1.2339: download - view: text, markup, annotated - select for diffs
Sat Apr 9 01:41:36 2011 UTC (2 years, 1 month ago) by wxs
Branches: MAIN
Diff to: previous 1.2338: preferred, colored
Changes since revision 1.2338: +2 -1 lines
Add CVE entry for recent tinyproxy vulnerability.
Revision 1.2338: download - view: text, markup, annotated - select for diffs
Fri Apr 8 07:39:58 2011 UTC (2 years, 1 month ago) by pav
Branches: MAIN
Diff to: previous 1.2337: preferred, colored
Changes since revision 1.2337: +24 -1 lines
- tinyproxy
Revision 1.2337: download - view: text, markup, annotated - select for diffs
Fri Apr 1 18:03:50 2011 UTC (2 years, 1 month ago) by sem
Branches: MAIN
Diff to: previous 1.2336: preferred, colored
Changes since revision 1.2336: +34 -1 lines
Document two quagga DoS vulnerabilities
Revision 1.2336: download - view: text, markup, annotated - select for diffs
Tue Mar 29 13:50:13 2011 UTC (2 years, 1 month ago) by kwm
Branches: MAIN
Diff to: previous 1.2335: preferred, colored
Changes since revision 1.2335: +2 -2 lines
Add a missing </p>. Pointed out by: jadawin@
Revision 1.2335: download - view: text, markup, annotated - select for diffs
Tue Mar 29 13:38:24 2011 UTC (2 years, 1 month ago) by kwm
Branches: MAIN
Diff to: previous 1.2334: preferred, colored
Changes since revision 1.2334: +33 -1 lines
Document gdm privilege escalation vulnerability
Revision 1.2334: download - view: text, markup, annotated - select for diffs
Sat Mar 26 20:13:47 2011 UTC (2 years, 2 months ago) by rene
Branches: MAIN
Diff to: previous 1.2333: preferred, colored
Changes since revision 1.2333: +23 -3 lines
Document vulnerabilities before Chromium 10.0.648.204 Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates
Revision 1.2333: download - view: text, markup, annotated - select for diffs
Fri Mar 25 11:09:07 2011 UTC (2 years, 2 months ago) by ale
Branches: MAIN
Diff to: previous 1.2332: preferred, colored
Changes since revision 1.2332: +58 -1 lines
Add entries for php5-exif and php5-zip before 5.3.6 release. PR: ports/155922 Submitted by: Chris Tandiono <christandiono@tbp.berkeley.edu>
Revision 1.2332: download - view: text, markup, annotated - select for diffs
Thu Mar 24 18:40:35 2011 UTC (2 years, 2 months ago) by nox
Branches: MAIN
Diff to: previous 1.2331: preferred, colored
Changes since revision 1.2331: +45 -1 lines
Update to 10.2r153. Security: http://www.freebsd.org/ports/portaudit/501ee07a-5640-11e0-985a-001b2134ef46.html PR: ports/155874 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Revision 1.2331: download - view: text, markup, annotated - select for diffs
Thu Mar 24 00:56:30 2011 UTC (2 years, 2 months ago) by beat
Branches: MAIN
Diff to: previous 1.2330: preferred, colored
Changes since revision 1.2330: +47 -1 lines
- Document mozilla -- update to HTTPS certificate blacklist
Revision 1.2330: download - view: text, markup, annotated - select for diffs
Sat Mar 19 06:10:03 2011 UTC (2 years, 2 months ago) by sahil
Branches: MAIN
Diff to: previous 1.2329: preferred, colored
Changes since revision 1.2329: +39 -1 lines
Document CVE-2011-0411: Postfix "STARTTLS" Plaintext Injection Vulnerability. Reviewed by: miwi (secteam)
Revision 1.2329: download - view: text, markup, annotated - select for diffs
Thu Mar 17 17:42:19 2011 UTC (2 years, 2 months ago) by glarkin
Branches: MAIN
Diff to: previous 1.2328: preferred, colored
Changes since revision 1.2328: +33 -1 lines
- Documented integer overflow in hiawatha web server Submitted by: C-S <c-s@c-s.li>
Revision 1.2328: download - view: text, markup, annotated - select for diffs
Thu Mar 17 00:03:10 2011 UTC (2 years, 2 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2327: preferred, colored
Changes since revision 1.2327: +40 -1 lines
Document asterisk multiple vulnerabilities.
Revision 1.2327: download - view: text, markup, annotated - select for diffs
Mon Mar 14 18:34:08 2011 UTC (2 years, 2 months ago) by rene
Branches: MAIN
Diff to: previous 1.2326: preferred, colored
Changes since revision 1.2326: +58 -3 lines
Mark chromium-9.0.597.107 and chromium-10.0.648.127 as vulnerable.
Revision 1.2326: download - view: text, markup, annotated - select for diffs
Mon Mar 14 16:46:27 2011 UTC (2 years, 2 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2325: preferred, colored
Changes since revision 1.2325: +2 -2 lines
- Cleanup a bit
Revision 1.2325: download - view: text, markup, annotated - select for diffs
Mon Mar 14 16:25:12 2011 UTC (2 years, 2 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2324: preferred, colored
Changes since revision 1.2324: +10 -6 lines
- Add correct infos to the avahi issus - Add url to original advisory
Revision 1.2324: download - view: text, markup, annotated - select for diffs
Mon Mar 14 16:14:06 2011 UTC (2 years, 2 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2323: preferred, colored
Changes since revision 1.2323: +2 -2 lines
Fix date in avahi entry.
Revision 1.2323: download - view: text, markup, annotated - select for diffs
Mon Mar 14 16:04:07 2011 UTC (2 years, 2 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2322: preferred, colored
Changes since revision 1.2322: +36 -1 lines
Add avahi denial of services attack.
Revision 1.2322: download - view: text, markup, annotated - select for diffs
Thu Mar 10 15:01:11 2011 UTC (2 years, 2 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2321: preferred, colored
Changes since revision 1.2321: +2 -2 lines
Fix discovery for mailman XSS vulnerabilities. Noticed by: erwin@ Pointyhat to: wxs@
Revision 1.2321: download - view: text, markup, annotated - select for diffs
Thu Mar 10 14:31:36 2011 UTC (2 years, 2 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2320: preferred, colored
Changes since revision 1.2320: +30 -1 lines
Document mail/mailman XSS vulnerabilities.
Revision 1.2320: download - view: text, markup, annotated - select for diffs
Mon Mar 7 21:31:26 2011 UTC (2 years, 2 months ago) by decke
Branches: MAIN
Diff to: previous 1.2319: preferred, colored
Changes since revision 1.2319: +30 -1 lines
- Document redmine -- XSS vulnerability
Revision 1.2319: download - view: text, markup, annotated - select for diffs
Sat Mar 5 12:21:44 2011 UTC (2 years, 2 months ago) by lev
Branches: MAIN
Diff to: previous 1.2318: preferred, colored
Changes since revision 1.2318: +33 -1 lines
Document subversion -- remote HTTP DoS vulnerability Obtained from http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
Revision 1.2318: download - view: text, markup, annotated - select for diffs
Tue Mar 1 23:05:07 2011 UTC (2 years, 2 months ago) by beat
Branches: MAIN
Diff to: previous 1.2317: preferred, colored
Changes since revision 1.2317: +84 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2317: download - view: text, markup, annotated - select for diffs
Tue Mar 1 18:15:39 2011 UTC (2 years, 2 months ago) by rene
Branches: MAIN
Diff to: previous 1.2316: preferred, colored
Changes since revision 1.2316: +72 -3 lines
Document Chromium versions 9.0.597.[84,94,107] Obtained from: http://googlechromereleases.blogspot.com/search/label/Stable%20updates
Revision 1.2316: download - view: text, markup, annotated - select for diffs
Fri Feb 25 18:39:16 2011 UTC (2 years, 2 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2315: preferred, colored
Changes since revision 1.2315: +30 -1 lines
Add two OpenLDAP security by-pass vulnerabilities.
Revision 1.2315: download - view: text, markup, annotated - select for diffs
Fri Feb 25 14:01:14 2011 UTC (2 years, 2 months ago) by mandree
Branches: MAIN
Diff to: previous 1.2314: preferred, colored
Changes since revision 1.2314: +8 -4 lines
Fix broken linux-sun-jdk vulndb entries. VuXML: 18e5428f-ae7c-11d9-837d-000e0c2e438a VuXML: c93e4d41-75c5-11dc-b903-0016179b2dd5 PR: ports/154918
Revision 1.2314: download - view: text, markup, annotated - select for diffs
Wed Feb 23 14:43:41 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2313: preferred, colored
Changes since revision 1.2313: +9 -8 lines
- Cleanup previous entry
Revision 1.2313: download - view: text, markup, annotated - select for diffs
Tue Feb 22 21:30:18 2011 UTC (2 years, 3 months ago) by flo
Branches: MAIN
Diff to: previous 1.2312: preferred, colored
Changes since revision 1.2312: +39 -1 lines
- add asterisk -- Exploitable Stack and Heap Array Overflows
Revision 1.2312: download - view: text, markup, annotated - select for diffs
Sun Feb 20 05:04:28 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2311: preferred, colored
Changes since revision 1.2311: +35 -1 lines
Document PivotX administrator password reset vulnerability.
Revision 1.2311: download - view: text, markup, annotated - select for diffs
Tue Feb 15 08:18:21 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2310: preferred, colored
Changes since revision 1.2310: +12 -1 lines
- Update lastest tomcat entry (tomcat6/7 have the same problem) Note: Please ask for review at ports-security@ THX!
Revision 1.2310: download - view: text, markup, annotated - select for diffs
Tue Feb 15 08:00:38 2011 UTC (2 years, 3 months ago) by wen
Branches: MAIN
Diff to: previous 1.2309: preferred, colored
Changes since revision 1.2309: +29 -1 lines
- Document tomcat vulnerability
Revision 1.2309: download - view: text, markup, annotated - select for diffs
Fri Feb 11 22:23:47 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2308: preferred, colored
Changes since revision 1.2308: +38 -1 lines
Document two phpMyAdmin vulnerabilities.
Revision 1.2308: download - view: text, markup, annotated - select for diffs
Fri Feb 11 21:39:03 2011 UTC (2 years, 3 months ago) by nox
Branches: MAIN
Diff to: previous 1.2307: preferred, colored
Changes since revision 1.2307: +48 -1 lines
Update to 10.2r152. PR: ports/154630 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> Security: http://www.freebsd.org/ports/portaudit/4a3482da-3624-11e0-b995-001b2134ef46.html Feature safe: yes
Revision 1.2307: download - view: text, markup, annotated - select for diffs
Fri Feb 11 19:59:48 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2306: preferred, colored
Changes since revision 1.2306: +31 -1 lines
Document mupdf PDF handling remote code execution vulnerability. Submitted by: Tim Zingelman <tez netbsd.org>
Revision 1.2306: download - view: text, markup, annotated - select for diffs
Fri Feb 11 19:51:20 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2305: preferred, colored
Changes since revision 1.2305: +32 -1 lines
Document rubygem-mail Remote Arbitrary Shell Command Injection Vulnerability. Submitted by: Tim Zingelman <tez netbsd.org>
Revision 1.2305: download - view: text, markup, annotated - select for diffs
Fri Feb 11 19:48:03 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2304: preferred, colored
Changes since revision 1.2304: +37 -1 lines
Document plone remote security bypass vulnerability. Submitted by: Tim Zingelman <tez netbsd.org>
Revision 1.2304: download - view: text, markup, annotated - select for diffs
Fri Feb 11 19:40:12 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2303: preferred, colored
Changes since revision 1.2303: +36 -1 lines
Document exim local privilege escalasion vulnerability. Submitted by: Tim Zingelman <tez netbsd.org>
Revision 1.2303: download - view: text, markup, annotated - select for diffs
Fri Feb 11 19:36:45 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2302: preferred, colored
Changes since revision 1.2302: +47 -1 lines
Document OpenOffice multiple vulnerabilities. Submitted by: Tim Zingelman <tez netbsd.org>
Revision 1.2302: download - view: text, markup, annotated - select for diffs
Thu Feb 10 16:44:00 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2301: preferred, colored
Changes since revision 1.2301: +7 -7 lines
- Cleanup previous commit
Revision 1.2301: download - view: text, markup, annotated - select for diffs
Thu Feb 10 10:41:58 2011 UTC (2 years, 3 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2300: preferred, colored
Changes since revision 1.2300: +47 -1 lines
Document multiple webkit-gtk2 security vulnabilities, fixed in 1.2.7.
Revision 1.2300: download - view: text, markup, annotated - select for diffs
Thu Feb 10 00:44:26 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2299: preferred, colored
Changes since revision 1.2299: +37 -1 lines
Document awstat multiple vulnerability. Notified by: Tim Zingelman <tez netbsd.org>
Revision 1.2299: download - view: text, markup, annotated - select for diffs
Thu Feb 10 00:28:17 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2298: preferred, colored
Changes since revision 1.2298: +58 -1 lines
Document Opera multiple vulnerabilities. Notified by: Tim Zingelman <tez netbsd.org>
Revision 1.2298: download - view: text, markup, annotated - select for diffs
Wed Feb 9 21:37:55 2011 UTC (2 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2297: preferred, colored
Changes since revision 1.2297: +46 -1 lines
Document multiple vulnerabilities in Django. Notified by: Jesco Freund <jesco.freund my-universe.com>
Revision 1.2297: download - view: text, markup, annotated - select for diffs
Wed Feb 9 05:36:33 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2296: preferred, colored
Changes since revision 1.2296: +2 -2 lines
- S/seriuos/serious
Revision 1.2296: download - view: text, markup, annotated - select for diffs
Wed Feb 9 05:23:00 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2295: preferred, colored
Changes since revision 1.2295: +43 -1 lines
- Document mediawiki - multiple vulnerabilites
Revision 1.2295: download - view: text, markup, annotated - select for diffs
Wed Feb 9 04:53:12 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2294: preferred, colored
Changes since revision 1.2294: +4 -1 lines
- Add chinese/wordpress-zh_CN and chinese/wordpress-zh_TW to the previous wordpress entry
Revision 1.2294: download - view: text, markup, annotated - select for diffs
Sat Feb 5 04:36:36 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
CVS tags: RELEASE_8_2_0, RELEASE_7_4_0
Diff to: previous 1.2293: preferred, colored
Changes since revision 1.2293: +34 -1 lines
- Add entry for wordpress - SQL injection vulnerability PR: 153526 Submitted by: Mark Foster <mark@foster.cc> Feature safe: yes
Revision 1.2293: download - view: text, markup, annotated - select for diffs
Wed Feb 2 23:51:54 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2292: preferred, colored
Changes since revision 1.2292: +2 -2 lines
- Cleanup previous commit Feature safe: yes
Revision 1.2292: download - view: text, markup, annotated - select for diffs
Wed Feb 2 15:45:11 2011 UTC (2 years, 3 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2291: preferred, colored
Changes since revision 1.2291: +27 -1 lines
Add vlc - Insufficient input validation in MKV demuxer vulnability. Feature safe: yes
Revision 1.2291: download - view: text, markup, annotated - select for diffs
Mon Jan 31 14:02:34 2011 UTC (2 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2290: preferred, colored
Changes since revision 1.2290: +8 -8 lines
- Cleanup previous Entry Feature safe: yes
Revision 1.2290: download - view: text, markup, annotated - select for diffs
Mon Jan 31 09:47:54 2011 UTC (2 years, 3 months ago) by decke
Branches: MAIN
Diff to: previous 1.2289: preferred, colored
Changes since revision 1.2289: +35 -1 lines
- Document maradns -- denial of service when resolving a long DNS hostname Submitted by: n j <nino80 at gmail dot com> Feature safe: yes
Revision 1.2289: download - view: text, markup, annotated - select for diffs
Sat Jan 29 00:23:19 2011 UTC (2 years, 3 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2288: preferred, colored
Changes since revision 1.2288: +2 -2 lines
Adjust range for ISC DHCPv6 server crash. Feature safe: yes
Revision 1.2288: download - view: text, markup, annotated - select for diffs
Sat Jan 29 00:15:09 2011 UTC (2 years, 3 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2287: preferred, colored
Changes since revision 1.2287: +32 -1 lines
Document ISC DHCPv6 server crash. Feature safe: yes
Revision 1.2287: download - view: text, markup, annotated - select for diffs
Tue Jan 25 15:07:35 2011 UTC (2 years, 3 months ago) by skv
Branches: MAIN
Diff to: previous 1.2286: preferred, colored
Changes since revision 1.2286: +59 -1 lines
Document "bugzilla" - multiple seriuos vulnerabilities. Feature safe: yes
Revision 1.2286: download - view: text, markup, annotated - select for diffs
Mon Jan 24 23:00:50 2011 UTC (2 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2285: preferred, colored
Changes since revision 1.2285: +41 -1 lines
Add dokuwiki multiple ACL escalation vulnerabilities. Feature safe: yes
Revision 1.2285: download - view: text, markup, annotated - select for diffs
Sun Jan 23 23:29:29 2011 UTC (2 years, 4 months ago) by simon
Branches: MAIN
Diff to: previous 1.2284: preferred, colored
Changes since revision 1.2284: +2 -2 lines
Try to unbreak vuxml portaudit build by removing use of HTML entity. UTF-8 chars should be used. This is not a fix, just a hack to get it working for now. Feature safe: yes (really)
Revision 1.2284: download - view: text, markup, annotated - select for diffs
Sun Jan 23 13:41:34 2011 UTC (2 years, 4 months ago) by rene
Branches: MAIN
Diff to: previous 1.2283: preferred, colored
Changes since revision 1.2283: +54 -3 lines
Describe www/chromium vulnerabilities between 8.0.552.215 and 8.0.552.237 Obtained from: http://googlechromereleases.blogspot.com/ Feature safe: yes
Revision 1.2283: download - view: text, markup, annotated - select for diffs
Fri Jan 21 01:23:43 2011 UTC (2 years, 4 months ago) by flo
Branches: MAIN
Diff to: previous 1.2282: preferred, colored
Changes since revision 1.2282: +2 -2 lines
asterisk-1.8.2.1 is still vulnerable due to a botched merge upstream. Feature safe: yes
Revision 1.2282: download - view: text, markup, annotated - select for diffs
Wed Jan 19 09:19:48 2011 UTC (2 years, 4 months ago) by flo
Branches: MAIN
Diff to: previous 1.2281: preferred, colored
Changes since revision 1.2281: +2 -2 lines
- fix asterisk16 version string Approved by: fjoe (mentor) Feature safe: yes
Revision 1.2281: download - view: text, markup, annotated - select for diffs
Wed Jan 19 08:46:28 2011 UTC (2 years, 4 months ago) by flo
Branches: MAIN
Diff to: previous 1.2280: preferred, colored
Changes since revision 1.2280: +40 -1 lines
- Document Exploitable Stack Buffer Overflow in asterisk Approved by: fjoe (mentor) Feature safe: yes
Revision 1.2280: download - view: text, markup, annotated - select for diffs
Wed Jan 19 02:26:50 2011 UTC (2 years, 4 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2279: preferred, colored
Changes since revision 1.2279: +32 -1 lines
Document tarsnap cryptographic nonce reuse vulnerability. Discussed with: cperciva@ Feature safe: yes
Revision 1.2279: download - view: text, markup, annotated - select for diffs
Tue Jan 18 09:26:17 2011 UTC (2 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2278: preferred, colored
Changes since revision 1.2278: +38 -5 lines
Add entry for moinmoin XSS vulnerabilities. PR: ports/153898 Submitted by: Ruslan Mahmatkhanov <cvs-src yandex ru> Feature safe: yes
Revision 1.2278: download - view: text, markup, annotated - select for diffs
Tue Jan 18 02:14:52 2011 UTC (2 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2277: preferred, colored
Changes since revision 1.2277: +38 -1 lines
Document tor remote code execution and crash vulnerability. Submitted by: Janne Snabb <snabb epipe com> Feature safe: yes
Revision 1.2277: download - view: text, markup, annotated - select for diffs
Thu Jan 13 14:09:25 2011 UTC (2 years, 4 months ago) by rea
Branches: MAIN
Diff to: previous 1.2276: preferred, colored
Changes since revision 1.2276: +34 -1 lines
security/sudo: document privilege escalation, CVE-2011-0010 PR: 153939 Approved by: delphij (secteam), erwin (mentor) Feature safe: yes
Revision 1.2276: download - view: text, markup, annotated - select for diffs
Thu Jan 13 12:53:13 2011 UTC (2 years, 4 months ago) by rea
Branches: MAIN
Diff to: previous 1.2275: preferred, colored
Changes since revision 1.2275: +44 -1 lines
devel/subversion: document security fixes in 1.6.15 Two DoS conditions: - CVE-2010-4539, DoS via walking of SVNParentPath collections; - CVE-2010-4644, DoS via memory leaks triggered by the option "-g" of the blame command. Approved by: delphij (secteam), erwin (mentor) Feature safe: yes
Revision 1.2275: download - view: text, markup, annotated - select for diffs
Thu Jan 13 05:44:53 2011 UTC (2 years, 4 months ago) by rea
Branches: MAIN
Diff to: previous 1.2274: preferred, colored
Changes since revision 1.2274: +247 -42 lines
Split recent PHP entry into multiple ones Many reasons: - some vulnerabilities were present only in the specific PHP modules and not in the core PHP; - it is better to group vulnerabilities by-topic (DoS, code execution, etc); - PHAR vulnerability is present only in 5.3.x; - extract() vulnerability was fixed both in 5.2 and 5.3: http://www.mail-archive.com/php-cvs@lists.php.net/msg47722.html - NULL-byte poisoning was fixed only in 5.3, 5.2.x is still vulnerable to this design error; - DFS-related fixes are not relevant for FreeBSD, since DFS is Windows file system that is unsupported by us. PR: 153433 Approved by: remko (secteam), erwin (mentor) Feature safe: yes
Revision 1.2274: download - view: text, markup, annotated - select for diffs
Sun Jan 9 09:12:09 2011 UTC (2 years, 4 months ago) by ale
Branches: MAIN
Diff to: previous 1.2273: preferred, colored
Changes since revision 1.2273: +42 -1 lines
Add entry for CVE-2010-4645 (php). PR: ports/153766 Submitted by: Tom Judge <tom@tomjudge.com>
Revision 1.2273: download - view: text, markup, annotated - select for diffs
Sat Jan 8 06:54:14 2011 UTC (2 years, 4 months ago) by rea
Branches: MAIN
Diff to: previous 1.2272: preferred, colored
Changes since revision 1.2272: +31 -1 lines
Document CVE-2010-4345: local exim -> root escalation PR: 152983 Feature safe: yes Reviewed by: remko (secteam) Approved by: erwin (mentor), remko (secteam)
Revision 1.2272: download - view: text, markup, annotated - select for diffs
Thu Jan 6 07:01:46 2011 UTC (2 years, 4 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2271: preferred, colored
Changes since revision 1.2271: +17 -16 lines
- Cleanup
Revision 1.2271: download - view: text, markup, annotated - select for diffs
Thu Jan 6 06:35:37 2011 UTC (2 years, 4 months ago) by wen
Branches: MAIN
Diff to: previous 1.2270: preferred, colored
Changes since revision 1.2270: +32 -1 lines
- Document the Clickjacking vulnerabilities of mediawiki
Revision 1.2270: download - view: text, markup, annotated - select for diffs
Sat Jan 1 14:31:38 2011 UTC (2 years, 4 months ago) by erwin
Branches: MAIN
Diff to: previous 1.2269: preferred, colored
Changes since revision 1.2269: +2 -2 lines
Bump copyright year.
Revision 1.2269: download - view: text, markup, annotated - select for diffs
Thu Dec 30 17:13:32 2010 UTC (2 years, 4 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2268: preferred, colored
Changes since revision 1.2268: +38 -1 lines
Document webkit-gtk2 multiple vulnerabilities < 1.2.6. Document some CVE's that didn't make it to release notes from older releases.
Revision 1.2268: download - view: text, markup, annotated - select for diffs
Wed Dec 29 19:50:56 2010 UTC (2 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2267: preferred, colored
Changes since revision 1.2267: +68 -1 lines
Document django multiple vulnerabilities.
Revision 1.2267: download - view: text, markup, annotated - select for diffs
Tue Dec 28 06:34:32 2010 UTC (2 years, 4 months ago) by remko
Branches: MAIN
Diff to: previous 1.2266: preferred, colored
Changes since revision 1.2266: +39 -2 lines
Add Drupal views plugin - Cross Site Scripting (XSS). While here, improve previously added vuln entry by following style a bit better. PR: 153474 Submitted by: rea
Revision 1.2266: download - view: text, markup, annotated - select for diffs
Thu Dec 23 14:12:21 2010 UTC (2 years, 5 months ago) by decke
Branches: MAIN
Diff to: previous 1.2265: preferred, colored
Changes since revision 1.2265: +34 -1 lines
- Document redmine -- multiple vulnerabilities
Revision 1.2265: download - view: text, markup, annotated - select for diffs
Wed Dec 22 16:10:45 2010 UTC (2 years, 5 months ago) by remko
Branches: MAIN
Diff to: previous 1.2264: preferred, colored
Changes since revision 1.2264: +39 -1 lines
Add Tor remote crash and the possibility of remote code execution. Submitted by: Janne Snabb <snabb at epipe dot com>
Revision 1.2264: download - view: text, markup, annotated - select for diffs
Thu Dec 16 18:11:27 2010 UTC (2 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2263: preferred, colored
Changes since revision 1.2263: +3 -2 lines
Update to properly cover php52. Noticed by: Chris St Denis <chris smartt com>
Revision 1.2263: download - view: text, markup, annotated - select for diffs
Wed Dec 15 23:48:53 2010 UTC (2 years, 5 months ago) by glarkin
Branches: MAIN
Diff to: previous 1.2262: preferred, colored
Changes since revision 1.2262: +35 -1 lines
- Document JavaScript injection exploits in Yahoo UI (YUI) library
Revision 1.2262: download - view: text, markup, annotated - select for diffs
Mon Dec 13 23:44:31 2010 UTC (2 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2261: preferred, colored
Changes since revision 1.2261: +65 -1 lines
Document PHP multiple vulnerabilities
Revision 1.2261: download - view: text, markup, annotated - select for diffs
Fri Dec 10 11:48:30 2010 UTC (2 years, 5 months ago) by beat
Branches: MAIN
Diff to: previous 1.2260: preferred, colored
Changes since revision 1.2260: +89 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2260: download - view: text, markup, annotated - select for diffs
Fri Dec 10 01:02:04 2010 UTC (2 years, 5 months ago) by stas
Branches: MAIN
Diff to: previous 1.2259: preferred, colored
Changes since revision 1.2259: +190 -1 lines
- Document recent MIT krb5 checksum handling vulnerabilities.
Revision 1.2259: download - view: text, markup, annotated - select for diffs
Tue Dec 7 18:02:47 2010 UTC (2 years, 5 months ago) by rene
Branches: MAIN
Diff to: previous 1.2258: preferred, colored
Changes since revision 1.2258: +100 -1 lines
Document the known vulnerabilities for www/chromium. The [numbers] in the entry represent bug numbers which are clickable at the referenced site, but most of them give a 403.
Revision 1.2258: download - view: text, markup, annotated - select for diffs
Sat Dec 4 04:29:19 2010 UTC (2 years, 5 months ago) by osa
Branches: MAIN
Diff to: previous 1.2257: preferred, colored
Changes since revision 1.2257: +30 -1 lines
Document ProFTPD compromised source packages backdoor security issue.
Revision 1.2257: download - view: text, markup, annotated - select for diffs
Tue Nov 30 03:00:12 2010 UTC (2 years, 5 months ago) by sunpoet
Branches: MAIN
CVS tags: RELEASE_6_EOL
Diff to: previous 1.2256: preferred, colored
Changes since revision 1.2256: +34 -1 lines
- Document phpMyAdmin XSS attack in database search
Revision 1.2256: download - view: text, markup, annotated - select for diffs
Wed Nov 24 18:27:03 2010 UTC (2 years, 6 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2255: preferred, colored
Changes since revision 1.2255: +31 -1 lines
Document net/isc-dhcp41-server DHCPv6 DoS. The update to the port is coming shortly.
Revision 1.2255: download - view: text, markup, annotated - select for diffs
Wed Nov 24 06:07:01 2010 UTC (2 years, 6 months ago) by danfe
Branches: MAIN
Diff to: previous 1.2254: preferred, colored
Changes since revision 1.2254: +32 -1 lines
Add entry for CVE-2010-4168: denial of service (server/client) via invalid read in OpenTTD. PR: ports/152529 Submitted by: kwm
Revision 1.2254: download - view: text, markup, annotated - select for diffs
Wed Nov 24 04:54:24 2010 UTC (2 years, 6 months ago) by danfe
Branches: MAIN
Diff to: previous 1.2253: preferred, colored
Changes since revision 1.2253: +109 -120 lines
- Kill EOL whitespace and reformat to fit in standard terminal width better - Clean up the way <p>...</p> tags are used throughout the file for consistency
Revision 1.2253: download - view: text, markup, annotated - select for diffs
Tue Nov 23 19:02:12 2010 UTC (2 years, 6 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2252: preferred, colored
Changes since revision 1.2252: +28 -1 lines
Add an entry for www/horde-base VCARD attachments XSS vulnerability. Security: VuXML: a3314314-f731-11df-a757-0011098ad87f
Revision 1.2252: download - view: text, markup, annotated - select for diffs
Tue Nov 23 17:42:24 2010 UTC (2 years, 6 months ago) by simon
Branches: MAIN
Diff to: previous 1.2251: preferred, colored
Changes since revision 1.2251: +2 -2 lines
Fix discovery date in last entry. Pointy hat to: remko
Revision 1.2251: download - view: text, markup, annotated - select for diffs
Tue Nov 23 16:38:51 2010 UTC (2 years, 6 months ago) by remko
Branches: MAIN
Diff to: previous 1.2250: preferred, colored
Changes since revision 1.2250: +38 -1 lines
Add proftpd remote root vulnerability. Based on: Vladimir Nikolic <vladimir dot nikolic at amis dot net> Feature proof: yes With hat: secteam
Revision 1.2250: download - view: text, markup, annotated - select for diffs
Wed Nov 17 11:09:34 2010 UTC (2 years, 6 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2249: preferred, colored
Changes since revision 1.2249: +36 -1 lines
- add security/openssl CVE-2010-3864
Revision 1.2249: download - view: text, markup, annotated - select for diffs
Sat Nov 6 17:55:51 2010 UTC (2 years, 6 months ago) by nox
Branches: MAIN
Diff to: previous 1.2248: preferred, colored
Changes since revision 1.2248: +56 -1 lines
- Update to 10.1r102 resp. 9.0r289. - Drop MD5 hashes from distinfos Security: http://www.freebsd.org/ports/portaudit/76b597e4-e9c6-11df-9e10-001b2134ef46.html Reported by: Matthias Apitz on -emulation
Revision 1.2248: download - view: text, markup, annotated - select for diffs
Sat Nov 6 04:08:59 2010 UTC (2 years, 6 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2247: preferred, colored
Changes since revision 1.2247: +54 -1 lines
Add wireshark CVE-2010-3445. PR: ports/151891 Submitted by: Eygene Ryabinkin
Revision 1.2247: download - view: text, markup, annotated - select for diffs
Thu Nov 4 01:50:23 2010 UTC (2 years, 6 months ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2246: preferred, colored
Changes since revision 1.2246: +2 -2 lines
- Limit affected version of dovecot to 1.2.* before 1.2.8 (vid: 30211c45-e52a-11de-b5cd-00e0815b8da8) Reported by: Adam McDougall <mcdouga9@egr.msu.edu> Reference: http://www.dovecot.org/list/dovecot-news/2009-November/000143.html
Revision 1.2246: download - view: text, markup, annotated - select for diffs
Wed Nov 3 20:29:56 2010 UTC (2 years, 6 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2245: preferred, colored
Changes since revision 1.2245: +37 -1 lines
Document mailman XSS. PR: ports/151918 Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Revision 1.2245: download - view: text, markup, annotated - select for diffs
Wed Nov 3 15:45:50 2010 UTC (2 years, 6 months ago) by skv
Branches: MAIN
Diff to: previous 1.2244: preferred, colored
Changes since revision 1.2244: +50 -1 lines
Document "otrs" - multiple XSS and denial of service vulnerabilities.
Revision 1.2244: download - view: text, markup, annotated - select for diffs
Thu Oct 28 09:17:23 2010 UTC (2 years, 6 months ago) by beat
Branches: MAIN
Diff to: previous 1.2243: preferred, colored
Changes since revision 1.2243: +57 -1 lines
- Document mozilla -- Heap buffer overflow mixing document.write and DOM insertion
Revision 1.2243: download - view: text, markup, annotated - select for diffs
Tue Oct 26 16:46:27 2010 UTC (2 years, 6 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2242: preferred, colored
Changes since revision 1.2242: +42 -1 lines
- www/opera PR: 151471 Submitted by: Arjan van Leeuwen
Revision 1.2242: download - view: text, markup, annotated - select for diffs
Mon Oct 25 16:03:49 2010 UTC (2 years, 7 months ago) by sunpoet
Branches: MAIN
Diff to: previous 1.2241: preferred, colored
Changes since revision 1.2241: +37 -1 lines
- Add bzip2 integer overflow vulnerability Approved by: pgollucci (mentor, implicit)
Revision 1.2241: download - view: text, markup, annotated - select for diffs
Mon Oct 25 14:58:40 2010 UTC (2 years, 7 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2240: preferred, colored
Changes since revision 1.2240: +320 -1 lines
Add the missing FreeBSD SA entries. We used to add these but stopped a while back. This should catch us up. According to cperciva@ the reason we stopped was that it was causing a lot of false positives. I ran portaudit with these changes and did not see any false positives but if it turns out to be too noisy I will remove them. Submitted by: Christopher J. Umina (private mail) Approved by: cperciva@
Revision 1.2240: download - view: text, markup, annotated - select for diffs
Sun Oct 24 17:08:03 2010 UTC (2 years, 7 months ago) by rene
Branches: MAIN
Diff to: previous 1.2239: preferred, colored
Changes since revision 1.2239: +31 -1 lines
Add monotone denial of service. Security: http://www.monotone.ca/NEWS
Revision 1.2239: download - view: text, markup, annotated - select for diffs
Wed Oct 20 21:13:40 2010 UTC (2 years, 7 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2238: preferred, colored
Changes since revision 1.2238: +7 -3 lines
- Add devel/apr0 to list of packages that is affect.
Revision 1.2238: download - view: text, markup, annotated - select for diffs
Wed Oct 20 15:12:52 2010 UTC (2 years, 7 months ago) by beat
Branches: MAIN
Diff to: previous 1.2237: preferred, colored
Changes since revision 1.2237: +76 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2237: download - view: text, markup, annotated - select for diffs
Wed Oct 20 12:42:50 2010 UTC (2 years, 7 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2236: preferred, colored
Changes since revision 1.2236: +38 -1 lines
Add multiple vulnabilities in webkit-gtk2.
Revision 1.2236: download - view: text, markup, annotated - select for diffs
Wed Oct 6 05:44:00 2010 UTC (2 years, 7 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2235: preferred, colored
Changes since revision 1.2235: +2 -1 lines
- set modified date
Revision 1.2235: download - view: text, markup, annotated - select for diffs
Wed Oct 6 05:41:27 2010 UTC (2 years, 7 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2234: preferred, colored
Changes since revision 1.2234: +1 -3 lines
- these 2 urls are covered by the <cvename/> tags Suggested by: stas
Revision 1.2234: download - view: text, markup, annotated - select for diffs
Wed Oct 6 05:36:56 2010 UTC (2 years, 7 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2233: preferred, colored
Changes since revision 1.2233: +2 -2 lines
- Fix a minor typo Reported by: stas
Revision 1.2233: download - view: text, markup, annotated - select for diffs
Wed Oct 6 05:29:49 2010 UTC (2 years, 7 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2232: preferred, colored
Changes since revision 1.2232: +40 -1 lines
Document devel/apr1's apr-util vunerabilities Security: http://secunia.com/advisories/41701 Reviewed by: secteam (cperciva) via irc
Revision 1.2232: download - view: text, markup, annotated - select for diffs
Sat Oct 2 11:16:58 2010 UTC (2 years, 7 months ago) by niels
Branches: MAIN
Diff to: previous 1.2231: preferred, colored
Changes since revision 1.2231: +33 -1 lines
Documented phpMyFaq XSS vulnerability PR: ports/151055 Submitted by: Florian Smeets <flo@smeets.im> Approved by: itetcu (mentor, implicit) Security: http://www.phpmyfaq.de/advisory_2010-09-28.php
Revision 1.2231: download - view: text, markup, annotated - select for diffs
Tue Sep 28 18:04:45 2010 UTC (2 years, 7 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2230: preferred, colored
Changes since revision 1.2230: +13 -12 lines
Report an XSS vulnerability in ftp/horde-gollem.
Revision 1.2230: download - view: text, markup, annotated - select for diffs
Tue Sep 28 17:48:19 2010 UTC (2 years, 7 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2229: preferred, colored
Changes since revision 1.2229: +28 -1 lines
Report a XSS vulnerability in mail/horde-dimp.
Revision 1.2229: download - view: text, markup, annotated - select for diffs
Tue Sep 28 17:30:09 2010 UTC (2 years, 7 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2228: preferred, colored
Changes since revision 1.2228: +30 -1 lines
Report a XSS vulnerability in mail/horde-imp.
Revision 1.2228: download - view: text, markup, annotated - select for diffs
Tue Sep 28 17:09:35 2010 UTC (2 years, 7 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2227: preferred, colored
Changes since revision 1.2227: +35 -1 lines
Report 2 vulnerabilities in www/horde-base.
Revision 1.2227: download - view: text, markup, annotated - select for diffs
Sun Sep 26 13:32:10 2010 UTC (2 years, 7 months ago) by niels
Branches: MAIN
Diff to: previous 1.2226: preferred, colored
Changes since revision 1.2226: +32 -1 lines
Documented remote code execution vulnerability in OpenX PR: ports/150610 Approved by: itetcu (mentor, implicit) Security: ttp://blog.openx.org/09/security-update/
Revision 1.2226: download - view: text, markup, annotated - select for diffs
Fri Sep 24 20:24:37 2010 UTC (2 years, 8 months ago) by niels
Branches: MAIN
Diff to: previous 1.2225: preferred, colored
Changes since revision 1.2225: +32 -1 lines
Documented squid denial of service vulnerability PR: ports/150364 Submitted by: Thomas-Martin Seck <tmseck@web.de> Approved by: itetcu (mentor, implicit) Security: CVE-2010-3072 Security: http://www.squid-cache.org/Advisories/SQUID-2010_3.txt
Revision 1.2225: download - view: text, markup, annotated - select for diffs
Wed Sep 22 17:45:55 2010 UTC (2 years, 8 months ago) by nox
Branches: MAIN
Diff to: previous 1.2224: preferred, colored
Changes since revision 1.2224: +45 -1 lines
Update to 10.1r85 resp. 9.0r283 [1]. Security: http://www.freebsd.org/ports/portaudit/8a34d9e6-c662-11df-b2e1-001b2134ef46.html PR: ports/150832 [2] Submitted by: pointyhat via pav [1], Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> [2]
Revision 1.2224: download - view: text, markup, annotated - select for diffs
Fri Sep 17 20:07:07 2010 UTC (2 years, 8 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2223: preferred, colored
Changes since revision 1.2223: +2 -2 lines
Correct discovery date, my bad :(
Revision 1.2223: download - view: text, markup, annotated - select for diffs
Fri Sep 17 19:31:59 2010 UTC (2 years, 8 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2222: preferred, colored
Changes since revision 1.2222: +48 -1 lines
Document django XSS vulnerability.
Revision 1.2222: download - view: text, markup, annotated - select for diffs
Wed Sep 15 15:37:24 2010 UTC (2 years, 8 months ago) by decke
Branches: MAIN
Diff to: previous 1.2221: preferred, colored
Changes since revision 1.2221: +6 -1 lines
- Add libxul as affected package to the latest mozilla entry Approved by: beat (co-mentor)
Revision 1.2221: download - view: text, markup, annotated - select for diffs
Fri Sep 10 13:41:57 2010 UTC (2 years, 8 months ago) by jadawin
Branches: MAIN
Diff to: previous 1.2220: preferred, colored
Changes since revision 1.2220: +12 -12 lines
- Fix CVE name for webkit-gtk2
Revision 1.2220: download - view: text, markup, annotated - select for diffs
Fri Sep 10 13:03:19 2010 UTC (2 years, 8 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2219: preferred, colored
Changes since revision 1.2219: +39 -1 lines
Document webkit-gtk2 - multiple vulnerabilities. Also add 1 extra CVE to the previous webkit-gtk2 entry that was fixed but didn't make it to the release notes.
Revision 1.2219: download - view: text, markup, annotated - select for diffs
Thu Sep 9 03:13:09 2010 UTC (2 years, 8 months ago) by shaun
Branches: MAIN
Diff to: previous 1.2218: preferred, colored
Changes since revision 1.2218: +31 -1 lines
Belatedly (and perhaps pointlessly) document [1]: vim6 -- heap-based overflow while parsing shell metacharacters While here, prepare this old port for termination with DEPRECATED. PR: ports/129300 [1] Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru> [1]
Revision 1.2218: download - view: text, markup, annotated - select for diffs
Wed Sep 8 06:51:06 2010 UTC (2 years, 8 months ago) by beat
Branches: MAIN
Diff to: previous 1.2217: preferred, colored
Changes since revision 1.2217: +87 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2217: download - view: text, markup, annotated - select for diffs
Tue Sep 7 18:11:49 2010 UTC (2 years, 8 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2216: preferred, colored
Changes since revision 1.2216: +37 -1 lines
Document sudo Runas group vulnerability.
Revision 1.2216: download - view: text, markup, annotated - select for diffs
Sat Sep 4 16:20:33 2010 UTC (2 years, 8 months ago) by bapt
Branches: MAIN
Diff to: previous 1.2215: preferred, colored
Changes since revision 1.2215: +2 -2 lines
- wget 1.12_1 is also concerned
Revision 1.2215: download - view: text, markup, annotated - select for diffs
Fri Sep 3 13:57:14 2010 UTC (2 years, 8 months ago) by bapt
Branches: MAIN
Diff to: previous 1.2214: preferred, colored
Changes since revision 1.2214: +58 -1 lines
- Add wget entry CVE-2010-2252 - Add lftp entry CVE-2010-2251
Revision 1.2214: download - view: text, markup, annotated - select for diffs
Tue Aug 31 14:53:00 2010 UTC (2 years, 8 months ago) by jadawin
Branches: MAIN
Diff to: previous 1.2213: preferred, colored
Changes since revision 1.2213: +29 -1 lines
- Document p5-libwww vulnerability (remote servers can create .(dot) files)
Revision 1.2213: download - view: text, markup, annotated - select for diffs
Wed Aug 25 07:49:07 2010 UTC (2 years, 9 months ago) by niels
Branches: MAIN
Diff to: previous 1.2212: preferred, colored
Changes since revision 1.2212: +39 -1 lines
Documented quagga vulnerabilities (stack overflow, DoS) Approved by: itetcu (mentor,implicit) Security: http://www.openwall.com/lists/oss-security/2010/08/24/3 Security: http://www.quagga.net/news2.php?y=2010&m=8&d=19#id1282241100
Revision 1.2212: download - view: text, markup, annotated - select for diffs
Tue Aug 24 16:26:54 2010 UTC (2 years, 9 months ago) by skv
Branches: MAIN
Diff to: previous 1.2211: preferred, colored
Changes since revision 1.2211: +63 -1 lines
Document "bugzilla" - information disclosure, denial of service.
Revision 1.2211: download - view: text, markup, annotated - select for diffs
Mon Aug 23 07:12:57 2010 UTC (2 years, 9 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2210: preferred, colored
Changes since revision 1.2210: +3 -3 lines
- Fix version range of phpMyAdmin Submitted by: Marko Njezic <mr.max AT maxempire.com>
Revision 1.2210: download - view: text, markup, annotated - select for diffs
Sun Aug 22 17:19:50 2010 UTC (2 years, 9 months ago) by danfe
Branches: MAIN
Diff to: previous 1.2209: preferred, colored
Changes since revision 1.2209: +3 -3 lines
Adjust the version range in previous entry: 1.0.1 is also vulnerable, and fix minor whitespace nit while here.
Revision 1.2209: download - view: text, markup, annotated - select for diffs
Sun Aug 22 12:30:06 2010 UTC (2 years, 9 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2208: preferred, colored
Changes since revision 1.2208: +31 -1 lines
Add entry for OpenTTD denial of server vulnability. Reviewed by: danfe@ (OpenTTD maintainer)
Revision 1.2208: download - view: text, markup, annotated - select for diffs
Sat Aug 21 21:30:32 2010 UTC (2 years, 9 months ago) by niels
Branches: MAIN
Diff to: previous 1.2207: preferred, colored
Changes since revision 1.2207: +28 -2 lines
- Added corkscrew: overflow condition due to insecure sscanf usage - Fixed SLiM title: /SLiM/slim/ Approved by: itetcu (mentor, implicit) Security: http://people.freebsd.org/~niels/issues/corkscrew-20100821.txt
Revision 1.2207: download - view: text, markup, annotated - select for diffs
Sat Aug 21 12:42:18 2010 UTC (2 years, 9 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2206: preferred, colored
Changes since revision 1.2206: +32 -1 lines
- Add phpMyAdmin's CVE-2010-3056 entry
Revision 1.2206: download - view: text, markup, annotated - select for diffs
Fri Aug 20 23:34:13 2010 UTC (2 years, 9 months ago) by stas
Branches: MAIN
Diff to: previous 1.2205: preferred, colored
Changes since revision 1.2205: +3 -2 lines
- Fix date of the latest ruby entry.
Revision 1.2205: download - view: text, markup, annotated - select for diffs
Fri Aug 20 21:00:34 2010 UTC (2 years, 9 months ago) by niels
Branches: MAIN
Diff to: previous 1.2204: preferred, colored
Changes since revision 1.2204: +3 -1 lines
Added CVE to SLiM vulnerability Approved by: itetcu (mentor, implicit) Security: CVE-2010-2945
Revision 1.2204: download - view: text, markup, annotated - select for diffs
Thu Aug 19 21:11:53 2010 UTC (2 years, 9 months ago) by niels
Branches: MAIN
Diff to: previous 1.2203: preferred, colored
Changes since revision 1.2203: +27 -2 lines
- Document SLiM insecure PATH assignment issue - Removed space from vlc title Approved by: itetcu (implicit, mentor) Security: http://seclists.org/oss-sec/2010/q3/198
Revision 1.2203: download - view: text, markup, annotated - select for diffs
Wed Aug 18 06:36:26 2010 UTC (2 years, 9 months ago) by stas
Branches: MAIN
Diff to: previous 1.2202: preferred, colored
Changes since revision 1.2202: +35 -1 lines
- Document recent WEBrick XSS vulnerability in ruby.
Revision 1.2202: download - view: text, markup, annotated - select for diffs
Tue Aug 17 12:50:38 2010 UTC (2 years, 9 months ago) by bapt
Branches: MAIN
Diff to: previous 1.2201: preferred, colored
Changes since revision 1.2201: +30 -1 lines
- Add security/isolate entry PR: ports/148911 Submitted by: Steve Wills <steve _at_ mouf.net> (maintainer) Approved by: tabthorpe (mentor)
Revision 1.2201: download - view: text, markup, annotated - select for diffs
Sun Aug 15 17:10:53 2010 UTC (2 years, 9 months ago) by shaun
Branches: MAIN
Diff to: previous 1.2200: preferred, colored
Changes since revision 1.2200: +2 -3 lines
Fix krb5 entry (86b8b655-4d1a-11df-83fb-0015587e2cc1) version range mark-up. Submitted by: Peggy Wilkins via freebsd-ports
Revision 1.2200: download - view: text, markup, annotated - select for diffs
Sat Aug 14 22:43:51 2010 UTC (2 years, 9 months ago) by gabor
Branches: MAIN
Diff to: previous 1.2199: preferred, colored
Changes since revision 1.2199: +2 -2 lines
- Fix last entry by adding the forgotten package name. (Hint: always run make validate before committing to this file) Forgotten by: jsa, kwm
Revision 1.2199: download - view: text, markup, annotated - select for diffs
Sat Aug 14 20:51:52 2010 UTC (2 years, 9 months ago) by jsa
Branches: MAIN
Diff to: previous 1.2198: preferred, colored
Changes since revision 1.2198: +30 -1 lines
Document VLC CVE-2010-2937. Approved by: kwm (mentor)
Revision 1.2198: download - view: text, markup, annotated - select for diffs
Fri Aug 13 20:15:53 2010 UTC (2 years, 9 months ago) by nox
Branches: MAIN
Diff to: previous 1.2197: preferred, colored
Changes since revision 1.2197: +41 -1 lines
Update to 10.1r82 resp. 9.0r280. Security: http://www.freebsd.org/ports/portaudit/e19e74a4-a712-11df-b234-001b2134ef46.html
Revision 1.2197: download - view: text, markup, annotated - select for diffs
Fri Aug 13 15:23:18 2010 UTC (2 years, 9 months ago) by shaun
Branches: MAIN
Diff to: previous 1.2196: preferred, colored
Changes since revision 1.2196: +36 -1 lines
Document opera -- multiple vulnerabilities.
Revision 1.2196: download - view: text, markup, annotated - select for diffs
Mon Aug 9 09:10:11 2010 UTC (2 years, 9 months ago) by beat
Branches: MAIN
Diff to: previous 1.2195: preferred, colored
Changes since revision 1.2195: +31 -1 lines
- Belatedly document firefox -- Dangling pointer crash regression from plugin parameter array fix Approved by: miwi
Revision 1.2195: download - view: text, markup, annotated - select for diffs
Wed Aug 4 14:47:39 2010 UTC (2 years, 9 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2194: preferred, colored
Changes since revision 1.2194: +4 -4 lines
Whitespace fixes.
Revision 1.2194: download - view: text, markup, annotated - select for diffs
Wed Aug 4 09:32:27 2010 UTC (2 years, 9 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2193: preferred, colored
Changes since revision 1.2193: +2 -2 lines
- Fix Piwik entry's <name> tag Pointed out by: jadawin
Revision 1.2193: download - view: text, markup, annotated - select for diffs
Wed Aug 4 09:18:12 2010 UTC (2 years, 9 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2192: preferred, colored
Changes since revision 1.2192: +35 -1 lines
- Add Piwik CVE-2010-2786 entry
Revision 1.2192: download - view: text, markup, annotated - select for diffs
Sat Jul 31 12:00:23 2010 UTC (2 years, 9 months ago) by kuriyama
Branches: MAIN
Diff to: previous 1.2191: preferred, colored
Changes since revision 1.2191: +2 -2 lines
Previous vuln affects only apache-2.2.x
Revision 1.2191: download - view: text, markup, annotated - select for diffs
Thu Jul 29 23:03:53 2010 UTC (2 years, 9 months ago) by gabor
Branches: MAIN
Diff to: previous 1.2190: preferred, colored
Changes since revision 1.2190: +36 -1 lines
- Document libmspack and cabextract vulnerability
Revision 1.2190: download - view: text, markup, annotated - select for diffs
Mon Jul 26 01:42:20 2010 UTC (2 years, 10 months ago) by kuriyama
Branches: MAIN
Diff to: previous 1.2189: preferred, colored
Changes since revision 1.2189: +29 -1 lines
Add entry for apache.
Revision 1.2189: download - view: text, markup, annotated - select for diffs
Fri Jul 23 00:37:11 2010 UTC (2 years, 10 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2188: preferred, colored
Changes since revision 1.2188: +31 -2 lines
Document buffer overflow when parsing gitdir. While here, tidy up a whitespace problem.
Revision 1.2188: download - view: text, markup, annotated - select for diffs
Wed Jul 21 22:25:34 2010 UTC (2 years, 10 months ago) by glarkin
Branches: MAIN
Diff to: previous 1.2187: preferred, colored
Changes since revision 1.2187: +30 -1 lines
- Document www/codeigniter file upload class vulnerability Approved by: secteam (timeout - 1 week) Security: http://codeigniter.com/news/codeigniter_1.7.2_security_patch/
Revision 1.2187: download - view: text, markup, annotated - select for diffs
Wed Jul 21 12:46:17 2010 UTC (2 years, 10 months ago) by beat
Branches: MAIN
Diff to: previous 1.2186: preferred, colored
Changes since revision 1.2186: +85 -1 lines
- Document mozilla -- multiple vulnerabilities Approved by: remko
Revision 1.2186: download - view: text, markup, annotated - select for diffs
Mon Jul 19 00:07:22 2010 UTC (2 years, 10 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2185: preferred, colored
Changes since revision 1.2185: +2 -2 lines
Add vte as package name, instead of empty.
Revision 1.2185: download - view: text, markup, annotated - select for diffs
Sun Jul 18 23:28:32 2010 UTC (2 years, 10 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2184: preferred, colored
Changes since revision 1.2184: +54 -1 lines
Document vte title set+query attack vulnerability. While here add the CVE numbers to the webkit-gtk2 entry I forgot in the previous commit. PR: ports/148678 Submitted by: Janne Snabb <snabb@epipe.com>
Revision 1.2184: download - view: text, markup, annotated - select for diffs
Sun Jul 18 22:44:04 2010 UTC (2 years, 10 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2183: preferred, colored
Changes since revision 1.2183: +29 -1 lines
Document webkit-gtk2 vulnerabilities. Security: http://blog.kov.eti.br/?p=116
Revision 1.2183: download - view: text, markup, annotated - select for diffs
Sat Jul 10 08:34:15 2010 UTC (2 years, 10 months ago) by decke
Branches: MAIN
Diff to: previous 1.2182: preferred, colored
Changes since revision 1.2182: +28 -1 lines
- Document redmine vulnerabilities Approved by: miwi (secteam) Security: http://www.redmine.org/news/41
Revision 1.2182: download - view: text, markup, annotated - select for diffs
Wed Jul 7 09:13:02 2010 UTC (2 years, 10 months ago) by nemoliu
Branches: MAIN
CVS tags: RELEASE_8_1_0
Diff to: previous 1.2181: preferred, colored
Changes since revision 1.2181: +29 -1 lines
- Update to 3.1.1 - VuXML entry for PNG decoder security vulnerability - License information PR: ports/147871 Approved by: Pavel Pankov <pankov_p@mail.ru> (maintainer) Feature safe: yes
Revision 1.2181: download - view: text, markup, annotated - select for diffs
Tue Jul 6 21:39:09 2010 UTC (2 years, 10 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2180: preferred, colored
Changes since revision 1.2180: +41 -3 lines
Add bogofilter heap underrun on malformed base64 input. Submitted by: mandree PR: ports/148408 Feature safe: yes
Revision 1.2180: download - view: text, markup, annotated - select for diffs
Tue Jul 6 04:38:12 2010 UTC (2 years, 10 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2179: preferred, colored
Changes since revision 1.2179: +14 -14 lines
- Cleanup a bit Feature safe: yes
Revision 1.2179: download - view: text, markup, annotated - select for diffs
Mon Jul 5 15:41:26 2010 UTC (2 years, 10 months ago) by skv
Branches: MAIN
Diff to: previous 1.2178: preferred, colored
Changes since revision 1.2178: +44 -1 lines
Document "bugzilla" - information disclosure. Feature safe: yes
Revision 1.2178: download - view: text, markup, annotated - select for diffs
Wed Jun 30 21:00:06 2010 UTC (2 years, 10 months ago) by makc
Branches: MAIN
Diff to: previous 1.2177: preferred, colored
Changes since revision 1.2177: +35 -1 lines
Document multiple vulnerabilities in irc/kvirc* Approved by: remko@ Feature safe: yes
Revision 1.2177: download - view: text, markup, annotated - select for diffs
Mon Jun 28 17:38:12 2010 UTC (2 years, 10 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2176: preferred, colored
Changes since revision 1.2176: +3 -1 lines
Add bid reference for libpng entry. Feature safe: yes
Revision 1.2176: download - view: text, markup, annotated - select for diffs
Mon Jun 28 16:18:53 2010 UTC (2 years, 10 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2175: preferred, colored
Changes since revision 1.2175: +38 -1 lines
- graphics/png CVE-2010-1205 Feature safe: yes
Revision 1.2175: download - view: text, markup, annotated - select for diffs
Mon Jun 28 00:46:12 2010 UTC (2 years, 10 months ago) by wen
Branches: MAIN
Diff to: previous 1.2174: preferred, colored
Changes since revision 1.2174: +25 -1 lines
- Document moodle -- multiple vulnerabilities Reviewed by: delphij@, miwi@ Feature safe: yes
Revision 1.2174: download - view: text, markup, annotated - select for diffs
Sun Jun 27 21:14:28 2010 UTC (2 years, 10 months ago) by rene
Branches: MAIN
Diff to: previous 1.2173: preferred, colored
Changes since revision 1.2173: +32 -1 lines
Document mDNSResponder -- corrupted stack crash when parsing bad resolv.conf This only happens on a system where one has a system where resolv.conf is writable by an untrusted user or where mdnsd is setuid and can be tricked into opening an alternate resolv.conf. PR: ports/147007 Submitted by: jmallett@ Approved by: tabthorpe (mentor) Feature safe: yes
Revision 1.2173: download - view: text, markup, annotated - select for diffs
Fri Jun 25 23:29:50 2010 UTC (2 years, 11 months ago) by shaun
Branches: MAIN
Diff to: previous 1.2172: preferred, colored
Changes since revision 1.2172: +34 -1 lines
Document opera -- Data URIs can be used to allow cross-site scripting. Assume opera-devel is vulnerable too, although snapshots aren't mentioned in the advisory, and it's months out of date. Feature safe: yes
Revision 1.2172: download - view: text, markup, annotated - select for diffs
Thu Jun 24 12:54:49 2010 UTC (2 years, 11 months ago) by niels
Branches: MAIN
Diff to: previous 1.2171: preferred, colored
Changes since revision 1.2171: +37 -62 lines
- Cancelled movemail symlink vulnerability (doesnt affect our ports) - Added entry for multiple vulnerabilities in cacti 0.8.7f - Updated ziproxy entry to satisfy "make tidy" Approved by: itetcu (mentor, implicit) Feature safe: yes
Revision 1.2171: download - view: text, markup, annotated - select for diffs
Wed Jun 23 18:01:08 2010 UTC (2 years, 11 months ago) by beat
Branches: MAIN
Diff to: previous 1.2170: preferred, colored
Changes since revision 1.2170: +67 -1 lines
- Document mozilla -- multiple vulnerabilities Feature safe: yes Approved by: delphij
Revision 1.2170: download - view: text, markup, annotated - select for diffs
Fri Jun 18 00:38:36 2010 UTC (2 years, 11 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2169: preferred, colored
Changes since revision 1.2169: +3 -3 lines
vuln 4e8344a3-ca52-11de-8ee8-00215c6a37bb has been fixed with php4-gd-4.4.9_4. Requested by: Michael Gmelin <mg bindone de>
Revision 1.2169: download - view: text, markup, annotated - select for diffs
Wed Jun 16 12:42:09 2010 UTC (2 years, 11 months ago) by erwin
Branches: MAIN
Diff to: previous 1.2168: preferred, colored
Changes since revision 1.2168: +2 -2 lines
Fix typo in previous revision.
Revision 1.2168: download - view: text, markup, annotated - select for diffs
Wed Jun 16 12:13:30 2010 UTC (2 years, 11 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2167: preferred, colored
Changes since revision 1.2167: +12 -13 lines
- Cleanup, Formating
Revision 1.2167: download - view: text, markup, annotated - select for diffs
Wed Jun 16 09:31:34 2010 UTC (2 years, 11 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2166: preferred, colored
Changes since revision 1.2166: +37 -1 lines
add CVE-2009-2347 tiff
Revision 1.2166: download - view: text, markup, annotated - select for diffs
Tue Jun 15 19:46:46 2010 UTC (2 years, 11 months ago) by nox
Branches: MAIN
Diff to: previous 1.2165: preferred, colored
Changes since revision 1.2165: +67 -1 lines
Document linux-flashplugin -- multiple vulnerabilities. Reviewed by: tmclaugh
Revision 1.2165: download - view: text, markup, annotated - select for diffs
Mon Jun 14 03:04:21 2010 UTC (2 years, 11 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2164: preferred, colored
Changes since revision 1.2164: +15 -16 lines
- Cleanup / Whitespace fixes
Revision 1.2164: download - view: text, markup, annotated - select for diffs
Sat Jun 12 17:22:38 2010 UTC (2 years, 11 months ago) by erwin
Branches: MAIN
Diff to: previous 1.2163: preferred, colored
Changes since revision 1.2163: +1 -5 lines
Remove empty package in previous revision.
Revision 1.2163: download - view: text, markup, annotated - select for diffs
Sat Jun 12 16:44:33 2010 UTC (2 years, 11 months ago) by dinoex
Branches: MAIN
Diff to: previous 1.2162: preferred, colored
Changes since revision 1.2162: +41 -1 lines
- report FAX3 decoder buffer overrun
Revision 1.2162: download - view: text, markup, annotated - select for diffs
Thu Jun 3 00:10:56 2010 UTC (2 years, 11 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2161: preferred, colored
Changes since revision 1.2161: +38 -1 lines
Document sudo secure path vulnerability. We are not vulnerable to this by default but a user could build sudo with SUDO_SECURE_PATH defined or turn it on in sudoers.
Revision 1.2161: download - view: text, markup, annotated - select for diffs
Wed Jun 2 11:24:44 2010 UTC (2 years, 11 months ago) by pav
Branches: MAIN
Diff to: previous 1.2160: preferred, colored
Changes since revision 1.2160: +28 -1 lines
- Update to 3.0.1 PR: ports/147195 Submitted by: Pavel Pankov <pankov_p@mail.ru> (maintainer)
Revision 1.2160: download - view: text, markup, annotated - select for diffs
Wed Jun 2 06:20:29 2010 UTC (2 years, 11 months ago) by wen
Branches: MAIN
Diff to: previous 1.2159: preferred, colored
Changes since revision 1.2159: +35 -1 lines
- Document two mediawiki security vulnerabilities Approved by: delphij@(ports-security override)
Revision 1.2159: download - view: text, markup, annotated - select for diffs
Fri May 14 18:28:43 2010 UTC (3 years ago) by decke
Branches: MAIN
Diff to: previous 1.2158: preferred, colored
Changes since revision 1.2158: +27 -1 lines
- Document multiple redmine vulnerabilities Approved by: miwi (secteam), beat (co-mentor) Security: http://www.redmine.org/news/39
Revision 1.2158: download - view: text, markup, annotated - select for diffs
Thu May 13 09:12:02 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2157: preferred, colored
Changes since revision 1.2157: +3 -3 lines
Updated tomcat entry (CVE-2010-1157) with fixed version information. This makes sure that the correct older versions are marked vulnerable Approved by: itetcu (mentor, implicit) Security: http://www.vuxml.org/freebsd/3383e706-4fc3-11df-83fb-0015587e2cc1.html
Revision 1.2157: download - view: text, markup, annotated - select for diffs
Wed May 12 09:46:12 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2156: preferred, colored
Changes since revision 1.2156: +172 -25 lines
- Added 109 missing CVE names to 60 VuXML entries - Fixed Tomcat55 entry to mark current PORTREVISION vulnerable PR: ports/146418 Approved by: itetcu (mentor, implicit) Security: http://people.freebsd.org/~niels/vuxml/
Revision 1.2156: download - view: text, markup, annotated - select for diffs
Fri May 7 19:53:26 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2155: preferred, colored
Changes since revision 1.2155: +58 -1 lines
Added wireshark (DoS) and piwik (XSS) issues Approved by: itetcu (mentor, implicit) Security: http://www.wireshark.org/security/wnpa-sec-2010-03.html Security: http://www.wireshark.org/security/wnpa-sec-2010-04.html Security: http://piwik.org/blog/2010/04/piwik-0-6-security-advisory/
Revision 1.2155: download - view: text, markup, annotated - select for diffs
Thu May 6 19:44:56 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2154: preferred, colored
Changes since revision 1.2154: +32 -2 lines
Added spamass-milter remote command execution vulnerability Approved by: itetcu (mentor, implicit) Security: CVE-2010-1132 Security: http://archives.neohapsis.com/archives/fulldisclosure/2010-03/0139.html
Revision 1.2154: download - view: text, markup, annotated - select for diffs
Wed May 5 19:12:36 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2153: preferred, colored
Changes since revision 1.2153: +69 -2 lines
- Added mediawiki and lxr vulnerabilities - Fixed vlc topic format (lower case, portname first) PR: ports/146337 Approved by: itetcu (mentor, implicit) Security: http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-April/000090.html Security: http://sourceforge.net/mailarchive/message.php?msg_name=E1NS2s4-0001PE-F2%403bkjzd1.ch3.sourceforge.com
Revision 1.2153: download - view: text, markup, annotated - select for diffs
Tue May 4 20:46:06 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2152: preferred, colored
Changes since revision 1.2152: +63 -6 lines
Added 38 missing CVE names to 24 VuXML entries (256 CVE names to go) Approved by: itetcu (mentor, implicit) Security: http://people.freebsd.org/~niels/vuxml/
Revision 1.2152: download - view: text, markup, annotated - select for diffs
Sun May 2 15:32:40 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2151: preferred, colored
Changes since revision 1.2151: +61 -8 lines
Added 34 missing CVE names to 24 VuXML entries (294 CVE names to go) Approved by: miwi (secteam) Security: http://people.freebsd.org/~niels/vuxml/
Revision 1.2151: download - view: text, markup, annotated - select for diffs
Sun May 2 00:52:40 2010 UTC (3 years ago) by sylvio
Branches: MAIN
Diff to: previous 1.2150: preferred, colored
Changes since revision 1.2150: +28 -1 lines
- VideoLAN has released 1.0.6 to address serveral vulnerabilities they discoverd while working towards the 1.1.0 release. These vulnerabilities could potentially allow for a specially crafted file to execute code. PR: ports/146099 Submitted by: Joseph S. Atkinson <jsa@wickedmachine.net> (maintainer)
Revision 1.2150: download - view: text, markup, annotated - select for diffs
Fri Apr 30 04:25:33 2010 UTC (3 years ago) by dinoex
Branches: MAIN
Diff to: previous 1.2149: preferred, colored
Changes since revision 1.2149: +2 -2 lines
- fix version for apache+mod_ssl
Revision 1.2149: download - view: text, markup, annotated - select for diffs
Fri Apr 30 04:24:30 2010 UTC (3 years ago) by dinoex
Branches: MAIN
Diff to: previous 1.2148: preferred, colored
Changes since revision 1.2148: +2 -2 lines
- fix info for apache+mod_ssl
Revision 1.2148: download - view: text, markup, annotated - select for diffs
Wed Apr 28 21:09:45 2010 UTC (3 years ago) by makc
Branches: MAIN
Diff to: previous 1.2147: preferred, colored
Changes since revision 1.2147: +2 -2 lines
Mark kdebase3 as safe now.
Revision 1.2147: download - view: text, markup, annotated - select for diffs
Tue Apr 27 05:46:00 2010 UTC (3 years ago) by niels
Branches: MAIN
Diff to: previous 1.2146: preferred, colored
Changes since revision 1.2146: +53 -1 lines
- Documented multiple Joomla! vulnerabilities - Added new reference to the recent cacti issue Approved by: remko (secteam) Security: http://developer.joomla.org/security/
Revision 1.2146: download - view: text, markup, annotated - select for diffs
Sat Apr 24 21:14:57 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2145: preferred, colored
Changes since revision 1.2145: +95 -1 lines
Documented vulnerabilities in moodle, tomcat55, tomcat66 and cacti PR: ports/146021 PR: ports/146022 Approved by: remko (secteam) Security: http://seclists.org/bugtraq/2010/Apr/200 Security: http://docs.moodle.org/en/Moodle_1.9.8_release_notes Security: http://www.bonsai-sec.com/en/research/vulnerability.php
Revision 1.2145: download - view: text, markup, annotated - select for diffs
Fri Apr 23 18:16:18 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2144: preferred, colored
Changes since revision 1.2144: +68 -1 lines
Documented emacs movemail vulnerability and marked the seperate mail/movemail port vulnerable to an old format string vulnerability. Approved by: remko (secteam) Security: http://www.ubuntu.com/usn/USN-919-1
Revision 1.2144: download - view: text, markup, annotated - select for diffs
Wed Apr 21 20:19:11 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2143: preferred, colored
Changes since revision 1.2143: +31 -1 lines
Added krb5 double free vulnerability Approved by: remko (secteam) Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-004.txt Security: CVE-2010-1320
Revision 1.2143: download - view: text, markup, annotated - select for diffs
Tue Apr 20 21:03:51 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2142: preferred, colored
Changes since revision 1.2142: +162 -1 lines
Documented the following vulnerabilities: - png: libpng decompression denial of service - e107: code execution and XSS vulnerabilities - pidgin: multiple remote denial of service vulnerabilities - fetchmail: denial of service vulnerability PR: ports/145885 PR: ports/145857 Approved by: remko (secteam) Security: CVE-2010-0996 Security: CVE-2010-0997 Security: CVE-2010-1167 Security: CVE-2010-0277 Security: CVE-2010-0420 Security: CVE-2010-0423 Security: CVE-2010-0205
Revision 1.2142: download - view: text, markup, annotated - select for diffs
Mon Apr 19 19:06:22 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2141: preferred, colored
Changes since revision 1.2141: +112 -1 lines
Documented the following vulnerabilities: - curl: libcurl buffer overflow vulnerability - irssi: multiple vulnerabilities - ejabberd: queue overload denial of service vulnerability Approved by: remko (secteam) Security: http://curl.haxx.se/docs/adv_20100209.html Security: http://support.process-one.net/browse/EJAB-1173 Security: http://xforce.iss.net/xforce/xfdb/57790 Security: http://xforce.iss.net/xforce/xfdb/57791
Revision 1.2141: download - view: text, markup, annotated - select for diffs
Mon Apr 19 07:13:42 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2140: preferred, colored
Changes since revision 1.2140: +81 -7 lines
- Added three krb5 vulnerabilities - Fixed indent on mahara entry - Fixed title of KDM entry Approved by: remko (secteam) Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-001.txt Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-002.txt Security: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-003.txt
Revision 1.2140: download - view: text, markup, annotated - select for diffs
Sun Apr 18 19:00:29 2010 UTC (3 years, 1 month ago) by niels
Branches: MAIN
Diff to: previous 1.2139: preferred, colored
Changes since revision 1.2139: +33 -1 lines
Document mahara sql injection vulnerability Approved by: remko (secteam) Security: http://www.debian.org/security/2010/dsa-2030
Revision 1.2139: download - view: text, markup, annotated - select for diffs
Fri Apr 16 02:25:07 2010 UTC (3 years, 1 month ago) by wxs
Branches: MAIN
Diff to: previous 1.2138: preferred, colored
Changes since revision 1.2138: +2 -2 lines
Correct CVE entry. The advisory from Todd[0] says CVE 2010-0426, which is the entry assigned to the original sudoedit vulnerability[1]. The new one (CVE-2010-1163) was just assigned. I believe the one assigned by CVE folks is the proper one to use. [0]: http://sudo.ws/sudo/alerts/sudoedit_escalate2.html [1]: 018a84d0-2548-11df-b4a3-00e0815b8da8
Revision 1.2138: download - view: text, markup, annotated - select for diffs
Thu Apr 15 20:53:03 2010 UTC (3 years, 1 month ago) by wxs
Branches: MAIN
Diff to: previous 1.2137: preferred, colored
Changes since revision 1.2137: +37 -1 lines
- Document sudo privilege escalation bug. This is similar to 018a84d0-2548-11df-b4a3-00e0815b8da8.
Revision 1.2137: download - view: text, markup, annotated - select for diffs
Wed Apr 14 21:46:52 2010 UTC (3 years, 1 month ago) by avilla
Branches: MAIN
Diff to: previous 1.2136: preferred, colored
Changes since revision 1.2136: +3 -2 lines
- Do not match x11/kdebase4 in latest KDM vulnerability. Approved by: tabthorpe (mentor)
Revision 1.2136: download - view: text, markup, annotated - select for diffs
Wed Apr 14 19:04:39 2010 UTC (3 years, 1 month ago) by avilla
Branches: MAIN
Diff to: previous 1.2135: preferred, colored
Changes since revision 1.2135: +36 -1 lines
- Document KDM local privilege escalation vulnerability. Approved by: tabthorpe (mentor), delphij (secteam)
Revision 1.2135: download - view: text, markup, annotated - select for diffs
Tue Apr 6 17:53:39 2010 UTC (3 years, 1 month ago) by glarkin
Branches: MAIN
Diff to: previous 1.2134: preferred, colored
Changes since revision 1.2134: +73 -1 lines
- Document dojo - cross-site scripting and other vulnerabilities - Document ZendFramework - security issues in bundled Dojo library Approved by: secteam (remko) Security: http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/ Security: http://framework.zend.com/security/advisory/ZF2010-07
Revision 1.2134: download - view: text, markup, annotated - select for diffs
Tue Apr 6 07:36:30 2010 UTC (3 years, 1 month ago) by beat
Branches: MAIN
Diff to: previous 1.2133: preferred, colored
Changes since revision 1.2133: +27 -1 lines
- Document firefox -- Re-use of freed object due to scope confusion Submitted by: Florian Smeets <flo AT smeets.im> Approved by: miwi
Revision 1.2133: download - view: text, markup, annotated - select for diffs
Tue Mar 30 22:25:05 2010 UTC (3 years, 1 month ago) by beat
Branches: MAIN
Diff to: previous 1.2132: preferred, colored
Changes since revision 1.2132: +68 -1 lines
- Document mozilla -- multiple vulnerabilities Approved by: delphij
Revision 1.2132: download - view: text, markup, annotated - select for diffs
Thu Mar 25 21:45:55 2010 UTC (3 years, 2 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2131: preferred, colored
Changes since revision 1.2131: +38 -1 lines
Document postgresql bitsubstr overflow vulnerability
Revision 1.2131: download - view: text, markup, annotated - select for diffs
Wed Mar 24 18:48:01 2010 UTC (3 years, 2 months ago) by naddy
Branches: MAIN
Diff to: previous 1.2130: preferred, colored
Changes since revision 1.2130: +28 -1 lines
Document a buffer overflow in gtar's rmt client functionality.
Revision 1.2130: download - view: text, markup, annotated - select for diffs
Tue Mar 23 08:36:57 2010 UTC (3 years, 2 months ago) by beat
Branches: MAIN
Diff to: previous 1.2129: preferred, colored
Changes since revision 1.2129: +27 -1 lines
- Document firefox -- WOFF heap corruption due to integer overflow Approved by: miwi
Revision 1.2129: download - view: text, markup, annotated - select for diffs
Mon Mar 22 21:30:59 2010 UTC (3 years, 2 months ago) by niels
Branches: MAIN
Diff to: previous 1.2128: preferred, colored
Changes since revision 1.2128: +3 -3 lines
Updated the xzgv entry: 0.9 version (now in portstree) is not vulnerable Approved by: itetcu (mentor), miwi (secteam) Security: http://www.vuxml.org/freebsd/a813a219-d2d4-11da-a672-000e0c2e438a.html Security: http://www.gentoo.org/security/en/glsa/glsa-200604-10.xml
Revision 1.2128: download - view: text, markup, annotated - select for diffs
Fri Mar 19 10:16:03 2010 UTC (3 years, 2 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2127: preferred, colored
Changes since revision 1.2127: +11 -11 lines
- Fix build
Revision 1.2127: download - view: text, markup, annotated - select for diffs
Fri Mar 19 07:39:28 2010 UTC (3 years, 2 months ago) by beat
Branches: MAIN
Diff to: previous 1.2126: preferred, colored
Changes since revision 1.2126: +53 -2 lines
- Document mozilla -- multiple vulnerabilities - Fix a typo Approved by: miwi
Revision 1.2126: download - view: text, markup, annotated - select for diffs
Fri Mar 12 01:45:48 2010 UTC (3 years, 2 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2125: preferred, colored
Changes since revision 1.2125: +34 -1 lines
Document eGroupware vulnerabilities. Submitted by: wenheping
Revision 1.2125: download - view: text, markup, annotated - select for diffs
Mon Mar 8 22:50:43 2010 UTC (3 years, 2 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2124: preferred, colored
Changes since revision 1.2124: +46 -1 lines
- Document drupal -- multiple vulnerabilities Feature safe: yep
Revision 1.2124: download - view: text, markup, annotated - select for diffs
Mon Mar 1 17:47:04 2010 UTC (3 years, 2 months ago) by wxs
Branches: MAIN
CVS tags: RELEASE_7_3_0
Diff to: previous 1.2123: preferred, colored
Changes since revision 1.2123: +41 -1 lines
- Document sudo privilege escalation vulnerability when using pseudo-command sudoedit Feature safe: yes
Revision 1.2123: download - view: text, markup, annotated - select for diffs
Sun Feb 28 20:25:10 2010 UTC (3 years, 2 months ago) by nox
Branches: MAIN
Diff to: previous 1.2122: preferred, colored
Changes since revision 1.2122: +4 -1 lines
Attempt to properly take care of the ooo3 -RC and -devel ports too (doh!) Feature safe: yes
Revision 1.2122: download - view: text, markup, annotated - select for diffs
Sun Feb 28 13:07:54 2010 UTC (3 years, 2 months ago) by beat
Branches: MAIN
Diff to: previous 1.2121: preferred, colored
Changes since revision 1.2121: +6 -1 lines
- Document thunderbird3 vulnerabilities Approved by: miwi Feature safe: yes
Revision 1.2121: download - view: text, markup, annotated - select for diffs
Fri Feb 26 21:20:05 2010 UTC (3 years, 2 months ago) by nox
Branches: MAIN
Diff to: previous 1.2120: preferred, colored
Changes since revision 1.2120: +51 -1 lines
Document openoffice -- multiple vulnerabilities Reviewed by: delphij Feature safe: yes
Revision 1.2120: download - view: text, markup, annotated - select for diffs
Thu Feb 18 10:02:50 2010 UTC (3 years, 3 months ago) by beat
Branches: MAIN
Diff to: previous 1.2119: preferred, colored
Changes since revision 1.2119: +52 -1 lines
- Document mozilla -- multiple vulnerabilities Approved by: miwi (secteam) Feature safe: yes
Revision 1.2119: download - view: text, markup, annotated - select for diffs
Tue Feb 16 18:06:33 2010 UTC (3 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2118: preferred, colored
Changes since revision 1.2118: +31 -1 lines
Document lighttpd remote DoS vulnerability. Reported by: Dan Rowe <dan dracosplace com> Feature safe: yes
Revision 1.2118: download - view: text, markup, annotated - select for diffs
Mon Feb 15 06:29:30 2010 UTC (3 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2117: preferred, colored
Changes since revision 1.2117: +32 -1 lines
Update www/squid and www/squid30 to address Squid HTCP Packet Processing NULL Pointer Dereference vulnerability (SQUID-2010:2)
Revision 1.2117: download - view: text, markup, annotated - select for diffs
Sat Feb 13 21:55:50 2010 UTC (3 years, 3 months ago) by nox
Branches: MAIN
Diff to: previous 1.2116: preferred, colored
Changes since revision 1.2116: +37 -1 lines
Document linux-flashplugin -- multiple vulnerabilities. Reviewed by: miwi
Revision 1.2116: download - view: text, markup, annotated - select for diffs
Sat Feb 13 10:29:49 2010 UTC (3 years, 3 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2115: preferred, colored
Changes since revision 1.2115: +35 -1 lines
Add CVE-2010-0414 and CVE-2010-0422 for gnome-screensaver. Reviewed by: miwi@
Revision 1.2115: download - view: text, markup, annotated - select for diffs
Fri Feb 12 14:25:39 2010 UTC (3 years, 3 months ago) by mandree
Branches: MAIN
Diff to: previous 1.2114: preferred, colored
Changes since revision 1.2114: +2 -3 lines
Fix range for fetchmail CVE-2010-0562. Approved by: miwi@ (mentor)
Revision 1.2114: download - view: text, markup, annotated - select for diffs
Fri Feb 12 09:56:30 2010 UTC (3 years, 3 months ago) by mandree
Branches: MAIN
Diff to: previous 1.2113: preferred, colored
Changes since revision 1.2113: +36 -1 lines
Add CVE-2010-0562 entry for mail/fetchmail. Approved by: miwi (mentor).
Revision 1.2113: download - view: text, markup, annotated - select for diffs
Wed Feb 10 00:47:00 2010 UTC (3 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2112: preferred, colored
Changes since revision 1.2112: +33 -1 lines
Document wireshark lwres buffer overflow vulnerability. Reported by: Andreas <akoga hawaii edu>
Revision 1.2112: download - view: text, markup, annotated - select for diffs
Mon Feb 8 16:38:40 2010 UTC (3 years, 3 months ago) by skv
Branches: MAIN
Diff to: previous 1.2111: preferred, colored
Changes since revision 1.2111: +35 -1 lines
Document "otrs" - SQL injection.
Revision 1.2111: download - view: text, markup, annotated - select for diffs
Wed Feb 3 23:25:15 2010 UTC (3 years, 3 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2110: preferred, colored
Changes since revision 1.2110: +45 -3 lines
- add the rest of the apache 1.3.x packages to the list that are vulnerable - add a missing ) to the <topic> Reviewed by: secteam (miwi)
Revision 1.2110: download - view: text, markup, annotated - select for diffs
Wed Feb 3 22:24:54 2010 UTC (3 years, 3 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2109: preferred, colored
Changes since revision 1.2109: +33 -1 lines
- document chunk-size integer overflow in apache 1.3.x
Revision 1.2109: download - view: text, markup, annotated - select for diffs
Wed Feb 3 21:47:32 2010 UTC (3 years, 3 months ago) by pgollucci
Branches: MAIN
Diff to: previous 1.2108: preferred, colored
Changes since revision 1.2108: +2 -2 lines
- remove extraneou '>' as reported by make tidy
Revision 1.2108: download - view: text, markup, annotated - select for diffs
Tue Feb 2 22:42:45 2010 UTC (3 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2107: preferred, colored
Changes since revision 1.2107: +2 -2 lines
- Mark squid30 now as safe
Revision 1.2107: download - view: text, markup, annotated - select for diffs
Tue Feb 2 09:44:10 2010 UTC (3 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2106: preferred, colored
Changes since revision 1.2106: +4 -3 lines
- Update 296ecb59-0f6b-11df-8bab-0019996bc1f7 entry and makr squid3* as safe
Revision 1.2106: download - view: text, markup, annotated - select for diffs
Mon Feb 1 20:25:56 2010 UTC (3 years, 3 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2105: preferred, colored
Changes since revision 1.2105: +32 -1 lines
Security patch for Squid advisory 2010:1, denial of service. Submitted by: maintainer (Thomas-Martin Seck <tmseck web de>)
Revision 1.2105: download - view: text, markup, annotated - select for diffs
Mon Feb 1 16:45:21 2010 UTC (3 years, 3 months ago) by skv
Branches: MAIN
Diff to: previous 1.2104: preferred, colored
Changes since revision 1.2104: +34 -1 lines
Document "bugzilla" - information leak.
Revision 1.2104: download - view: text, markup, annotated - select for diffs
Thu Jan 28 21:20:45 2010 UTC (3 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2103: preferred, colored
Changes since revision 1.2103: +2 -2 lines
- Correct fixed version from previous entry
Revision 1.2103: download - view: text, markup, annotated - select for diffs
Thu Jan 28 21:15:20 2010 UTC (3 years, 3 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2102: preferred, colored
Changes since revision 1.2102: +37 -1 lines
- Document irc-ratbox -- multiple vulnerabilities PR: based on 143242 Submitted by: moggie <moggie@elasticmind.net>
Revision 1.2102: download - view: text, markup, annotated - select for diffs
Thu Jan 21 19:52:23 2010 UTC (3 years, 4 months ago) by beat
Branches: MAIN
Diff to: previous 1.2101: preferred, colored
Changes since revision 1.2101: +6 -1 lines
- Document thunderbird3 vulnerabilities Reviewed by: miwi
Revision 1.2101: download - view: text, markup, annotated - select for diffs
Mon Jan 18 17:45:54 2010 UTC (3 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2100: preferred, colored
Changes since revision 1.2100: +35 -1 lines
Document dokuwiki multiple vulnerabilities.
Revision 1.2100: download - view: text, markup, annotated - select for diffs
Thu Jan 14 03:32:42 2010 UTC (3 years, 4 months ago) by glarkin
Branches: MAIN
Diff to: previous 1.2099: preferred, colored
Changes since revision 1.2099: +59 -6 lines
- Added entry for multiple vulnerabilities in www/zend-framework - Cleaned up some entries reported by "make tidy" Reviewed by: secteam (delphij via email) Approved by: secteam (delphij via email) Security: http://framework.zend.com/security/advisory/ZF2010-06 Security: http://framework.zend.com/security/advisory/ZF2010-05 Security: http://framework.zend.com/security/advisory/ZF2010-04 Security: http://framework.zend.com/security/advisory/ZF2010-03 Security: http://framework.zend.com/security/advisory/ZF2010-02 Security: http://framework.zend.com/security/advisory/ZF2010-01 Security: http://framework.zend.com/security/advisory/ZF2009-02 Security: http://framework.zend.com/security/advisory/ZF2009-01
Revision 1.2099: download - view: text, markup, annotated - select for diffs
Sat Jan 9 10:55:09 2010 UTC (3 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2098: preferred, colored
Changes since revision 1.2098: +34 -1 lines
Document powerdns-recursor multiple vulnerabilities.
Revision 1.2098: download - view: text, markup, annotated - select for diffs
Mon Jan 4 23:23:31 2010 UTC (3 years, 4 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2097: preferred, colored
Changes since revision 1.2097: +38 -1 lines
Document pear-Net_Ping and pear-Net_Traceroute arbitrary command execution vulnerability.
Revision 1.2097: download - view: text, markup, annotated - select for diffs
Sat Jan 2 16:29:32 2010 UTC (3 years, 4 months ago) by erwin
Branches: MAIN
Diff to: previous 1.2096: preferred, colored
Changes since revision 1.2096: +2 -2 lines
Bump copyright year to 2010
Revision 1.2096: download - view: text, markup, annotated - select for diffs
Fri Dec 25 19:19:35 2009 UTC (3 years, 4 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2095: preferred, colored
Changes since revision 1.2095: +39 -1 lines
- Document drupal -- multiple cross-site scripting
Revision 1.2095: download - view: text, markup, annotated - select for diffs
Mon Dec 21 21:48:57 2009 UTC (3 years, 5 months ago) by stas
Branches: MAIN
Diff to: previous 1.2094: preferred, colored
Changes since revision 1.2094: +27 -1 lines
- Document sysutils/fuser privileges check vulnerability.
Revision 1.2094: download - view: text, markup, annotated - select for diffs
Mon Dec 21 18:19:53 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2093: preferred, colored
Changes since revision 1.2093: +31 -1 lines
Document monkey remote DoS vulnerability.
Revision 1.2093: download - view: text, markup, annotated - select for diffs
Mon Dec 21 10:45:26 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2092: preferred, colored
Changes since revision 1.2092: +3 -2 lines
- Fix a typo (s/opensll/openssl) Reported by: pluknet <pluknet@gmail.com>
Revision 1.2092: download - view: text, markup, annotated - select for diffs
Thu Dec 17 22:40:17 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2091: preferred, colored
Changes since revision 1.2091: +52 -1 lines
Document php multiple vulnerabilities. Sponsored by: iXsystems, Inc.
Revision 1.2091: download - view: text, markup, annotated - select for diffs
Thu Dec 17 00:24:20 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2090: preferred, colored
Changes since revision 1.2090: +53 -1 lines
Document PostgreSQL multiple vulnerabilities. Sponsored by: iXsystems, Inc.
Revision 1.2090: download - view: text, markup, annotated - select for diffs
Thu Dec 17 00:04:43 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2089: preferred, colored
Changes since revision 1.2089: +30 -1 lines
Add tptest pwd remote buffer overflow vulnerability. Submitted by: Mark Foster <mark foster cc> PR: ports/131938
Revision 1.2089: download - view: text, markup, annotated - select for diffs
Wed Dec 16 10:44:01 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2088: preferred, colored
Changes since revision 1.2088: +62 -1 lines
- Document mozilla -- multiple vulnerabilities
Revision 1.2088: download - view: text, markup, annotated - select for diffs
Tue Dec 15 02:27:13 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2087: preferred, colored
Changes since revision 1.2087: +3 -2 lines
Make the problem more visible by choosing a more descriptive subject.
Revision 1.2087: download - view: text, markup, annotated - select for diffs
Tue Dec 15 00:39:19 2009 UTC (3 years, 5 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2086: preferred, colored
Changes since revision 1.2086: +36 -1 lines
Document freeradius remote packet of death exploit (CVE 2009-3111) Submitted by: "Danilo G. Baio" <dbaio bs2 com br> PR: ports/141318
Revision 1.2086: download - view: text, markup, annotated - select for diffs
Mon Dec 14 16:12:57 2009 UTC (3 years, 5 months ago) by beat
Branches: MAIN
Diff to: previous 1.2085: preferred, colored
Changes since revision 1.2085: +3 -2 lines
- Mark Seamonkey 2.0 as safe Reviewed by: miwi
Revision 1.2085: download - view: text, markup, annotated - select for diffs
Sat Dec 12 18:12:17 2009 UTC (3 years, 5 months ago) by beat
Branches: MAIN
Diff to: previous 1.2084: preferred, colored
Changes since revision 1.2084: +15 -17 lines
- Mark linux-firefox-devel as safe Reviewed by: miwi
Revision 1.2084: download - view: text, markup, annotated - select for diffs
Sat Dec 12 11:08:15 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2083: preferred, colored
Changes since revision 1.2083: +1 -2 lines
- Fix build
Revision 1.2083: download - view: text, markup, annotated - select for diffs
Sat Dec 12 10:58:58 2009 UTC (3 years, 5 months ago) by wen
Branches: MAIN
Diff to: previous 1.2082: preferred, colored
Changes since revision 1.2082: +41 -1 lines
- Document pligg -- Cross-Site Scripting and Cross-Site Request Forgery
Revision 1.2082: download - view: text, markup, annotated - select for diffs
Fri Dec 11 15:27:17 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2081: preferred, colored
Changes since revision 1.2081: +33 -1 lines
- Document piwik -- php code execution Requested by: wen
Revision 1.2081: download - view: text, markup, annotated - select for diffs
Fri Dec 11 15:14:30 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2080: preferred, colored
Changes since revision 1.2080: +23 -23 lines
- Fix previous entrys (formating etc)
Revision 1.2080: download - view: text, markup, annotated - select for diffs
Thu Dec 10 15:27:42 2009 UTC (3 years, 5 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2079: preferred, colored
Changes since revision 1.2079: +31 -1 lines
- Document dovecot insecure directory permissions
Revision 1.2079: download - view: text, markup, annotated - select for diffs
Thu Dec 10 00:32:12 2009 UTC (3 years, 5 months ago) by nox
Branches: MAIN
Diff to: previous 1.2078: preferred, colored
Changes since revision 1.2078: +44 -1 lines
Document linux-flashplugin -- multiple vulnerabilities. Reviewed by: miwi
Revision 1.2078: download - view: text, markup, annotated - select for diffs
Wed Dec 9 23:39:48 2009 UTC (3 years, 5 months ago) by stas
Branches: MAIN
Diff to: previous 1.2077: preferred, colored
Changes since revision 1.2077: +29 -1 lines
- Document ruby 1.9.1 heap overflow vulnerability.
Revision 1.2077: download - view: text, markup, annotated - select for diffs
Wed Dec 9 15:07:45 2009 UTC (3 years, 5 months ago) by skreuzer
Branches: MAIN
Diff to: previous 1.2076: preferred, colored
Changes since revision 1.2076: +32 -1 lines
Document session fixation vulnerability in RequestTracker < 3.8.6 Reviewed by: simon@, wxs@
Revision 1.2076: download - view: text, markup, annotated - select for diffs
Tue Dec 8 01:44:59 2009 UTC (3 years, 5 months ago) by kuriyama
Branches: MAIN
Diff to: previous 1.2075: preferred, colored
Changes since revision 1.2075: +61 -1 lines
- Add two CVE entries for expat2.
Revision 1.2075: download - view: text, markup, annotated - select for diffs
Tue Dec 1 20:09:39 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2074: preferred, colored
Changes since revision 1.2074: +38 -1 lines
- Document opera -- multiple vulnerabilities Request by: itetcu
Revision 1.2074: download - view: text, markup, annotated - select for diffs
Sat Nov 28 22:48:13 2009 UTC (3 years, 5 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2073: preferred, colored
Changes since revision 1.2073: +2 -2 lines
Fix the libtool entry to include 2.2.6a as vulnerable.
Revision 1.2073: download - view: text, markup, annotated - select for diffs
Sat Nov 28 21:03:00 2009 UTC (3 years, 5 months ago) by kwm
Branches: MAIN
Diff to: previous 1.2072: preferred, colored
Changes since revision 1.2072: +29 -1 lines
Document libtool vulnerability. Reviewed by: miwi@
Revision 1.2072: download - view: text, markup, annotated - select for diffs
Thu Nov 26 14:51:00 2009 UTC (3 years, 5 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2071: preferred, colored
Changes since revision 1.2071: +5 -5 lines
- Cleanup (whitespaces/tabs)
Revision 1.2071: download - view: text, markup, annotated - select for diffs
Tue Nov 24 21:34:57 2009 UTC (3 years, 6 months ago) by naddy
Branches: MAIN
Diff to: previous 1.2070: preferred, colored
Changes since revision 1.2070: +32 -1 lines
document: libvorbis -- multiple vulnerabilities
Revision 1.2070: download - view: text, markup, annotated - select for diffs
Mon Nov 23 18:07:14 2009 UTC (3 years, 6 months ago) by skv
Branches: MAIN
Diff to: previous 1.2069: preferred, colored
Changes since revision 1.2069: +34 -1 lines
Document "bugzilla" - information leak.
Revision 1.2069: download - view: text, markup, annotated - select for diffs
Mon Nov 23 15:47:15 2009 UTC (3 years, 6 months ago) by sem
Branches: MAIN
Diff to: previous 1.2068: preferred, colored
Changes since revision 1.2068: +28 -1 lines
- Report a XSS vulnerability in net-mgmt/cacti port
Revision 1.2068: download - view: text, markup, annotated - select for diffs
Sat Nov 14 12:41:44 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2067: preferred, colored
Changes since revision 1.2067: +2 -2 lines
- fix german wordpress name
Revision 1.2067: download - view: text, markup, annotated - select for diffs
Sat Nov 14 12:20:25 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2066: preferred, colored
Changes since revision 1.2066: +42 -1 lines
- Document wordpress -- multiple vulnerabilities
Revision 1.2066: download - view: text, markup, annotated - select for diffs
Mon Nov 9 17:14:53 2009 UTC (3 years, 6 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2065: preferred, colored
Changes since revision 1.2065: +3 -3 lines
Mark php5-gd 5.2.11_2 as safe.
Revision 1.2065: download - view: text, markup, annotated - select for diffs
Sun Nov 8 23:33:42 2009 UTC (3 years, 6 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2064: preferred, colored
Changes since revision 1.2064: +3 -2 lines
- Note that CVE-2009-3546 has been fixed in graphics/gd. Noticed by: N.J. Mann <njm@njm.me.uk>
Revision 1.2064: download - view: text, markup, annotated - select for diffs
Fri Nov 6 09:43:39 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2063: preferred, colored
Changes since revision 1.2063: +3 -3 lines
- Fix previous commit
Revision 1.2063: download - view: text, markup, annotated - select for diffs
Fri Nov 6 08:22:46 2009 UTC (3 years, 6 months ago) by jadawin
Branches: MAIN
Diff to: previous 1.2062: preferred, colored
Changes since revision 1.2062: +31 -1 lines
- Document HTML-Parser denial of service
Revision 1.2062: download - view: text, markup, annotated - select for diffs
Thu Nov 5 21:40:57 2009 UTC (3 years, 6 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2061: preferred, colored
Changes since revision 1.2061: +42 -1 lines
Document remote buffer overflow vulnerability in gd.
Revision 1.2061: download - view: text, markup, annotated - select for diffs
Thu Nov 5 21:25:24 2009 UTC (3 years, 6 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2060: preferred, colored
Changes since revision 1.2060: +41 -1 lines
Document typo3 multiple vulnerabilities. Notified by: Wennrich, Markus <Markus Wennrich f-i-ts de>
Revision 1.2060: download - view: text, markup, annotated - select for diffs
Tue Nov 3 21:18:59 2009 UTC (3 years, 6 months ago) by thierry
Branches: MAIN
Diff to: previous 1.2059: preferred, colored
Changes since revision 1.2059: +31 -2 lines
Add an entry for VideoLAN-SA-0901, about multimedia/vlc.
Revision 1.2059: download - view: text, markup, annotated - select for diffs
Mon Nov 2 20:12:26 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2058: preferred, colored
Changes since revision 1.2058: +48 -1 lines
- Document KDE -- multiple vulnerabilities Reported by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
Revision 1.2058: download - view: text, markup, annotated - select for diffs
Sat Oct 31 12:52:22 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2057: preferred, colored
Changes since revision 1.2057: +6 -5 lines
- Fix previous entry
Revision 1.2057: download - view: text, markup, annotated - select for diffs
Sat Oct 31 12:41:44 2009 UTC (3 years, 6 months ago) by itetcu
Branches: MAIN
Diff to: previous 1.2056: preferred, colored
Changes since revision 1.2056: +35 -1 lines
Add two opera vulnerabilities PR: 140101 Submitted by: Arjan van Leeuwen
Revision 1.2056: download - view: text, markup, annotated - select for diffs
Thu Oct 29 21:59:05 2009 UTC (3 years, 6 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2055: preferred, colored
Changes since revision 1.2055: +25 -16 lines
- Fix latest entrys
Revision 1.2055: download - view: text, markup, annotated - select for diffs
Thu Oct 29 14:21:35 2009 UTC (3 years, 6 months ago) by flz
Branches: MAIN
Diff to: previous 1.2054: preferred, colored
Changes since revision 1.2054: +35 -1 lines
Document vulnerability in net-p2p/ctorrent < 3.3.2_2 (CVE-2009-1759). PR: ports/139635 Submitted by: Eygene Ryabinkin Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1759
Revision 1.2054: download - view: text, markup, annotated - select for diffs
Wed Oct 28 23:04:35 2009 UTC (3 years, 6 months ago) by stas
Branches: MAIN
Diff to: previous 1.2053: preferred, colored
Changes since revision 1.2053: +10 -3 lines
- Fix linux-opera vuxml entry (it uses different version numbering scheme) [1] - Add entry for opera-devel as well. PR: ports/140038 [1] Submitted by: Sato Kuro <poyopoyo@puripuri.plala.or.jp> [1]
Revision 1.2053: download - view: text, markup, annotated - select for diffs
Wed Oct 28 15:22:37 2009 UTC (3 years, 6 months ago) by beat
Branches: MAIN
Diff to: previous 1.2052: preferred, colored
Changes since revision 1.2052: +80 -1 lines
- Document mozilla -- multiple vulnerabilities Approved by: miwi (secteam)
Revision 1.2052: download - view: text, markup, annotated - select for diffs
Sun Oct 25 14:53:33 2009 UTC (3 years, 7 months ago) by gabor
Branches: MAIN
Diff to: previous 1.2051: preferred, colored
Changes since revision 1.2051: +2 -2 lines
- Fix discovery date of a recent entry
Revision 1.2051: download - view: text, markup, annotated - select for diffs
Sun Oct 25 14:23:33 2009 UTC (3 years, 7 months ago) by stas
Branches: MAIN
Diff to: previous 1.2050: preferred, colored
Changes since revision 1.2050: +34 -1 lines
- Document elinks < 0.11.4 buffer overflow vulnerability.
Revision 1.2050: download - view: text, markup, annotated - select for diffs
Thu Oct 22 23:04:37 2009 UTC (3 years, 7 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2049: preferred, colored
Changes since revision 1.2049: +3 -1 lines
Add CVE reference provided by author via maintainer for the squidguard issue.
Revision 1.2049: download - view: text, markup, annotated - select for diffs
Thu Oct 22 23:01:53 2009 UTC (3 years, 7 months ago) by delphij
Branches: MAIN
Diff to: previous 1.2048: preferred, colored
Changes since revision 1.2048: +42 -1 lines
Apply vendor fixes 20091015 and 20091019 to fix multiple vulnerabilities of squidGuard 1.4. Requested by: maintainer Security: 692ab645-bf5d-11de-849b-00151797c2d4
Revision 1.2048: download - view: text, markup, annotated - select for diffs
Tue Oct 20 11:03:35 2009 UTC (3 years, 7 months ago) by araujo
Branches: MAIN
Diff to: previous 1.2047: preferred, colored
Changes since revision 1.2047: +32 -1 lines
- Add an entry for Xpdf -- Multiple Vulnerabilities.
Revision 1.2047: download - view: text, markup, annotated - select for diffs
Fri Oct 16 17:42:21 2009 UTC (3 years, 7 months ago) by lwhsu
Branches: MAIN
Diff to: previous 1.2046: preferred, colored
Changes since revision 1.2046: +47 -1 lines
- Document django -- denial-of-service attack
Revision 1.2046: download - view: text, markup, annotated - select for diffs
Tue Oct 13 22:12:16 2009 UTC (3 years, 7 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2045: preferred, colored
Changes since revision 1.2045: +35 -1 lines
- Document phpmyadmin -- XSS and SQL injection vulnerabilities
Revision 1.2045: download - view: text, markup, annotated - select for diffs
Mon Oct 12 17:22:18 2009 UTC (3 years, 7 months ago) by wxs
Branches: MAIN
Diff to: previous 1.2044: preferred, colored
Changes since revision 1.2044: +34 -1 lines
- Document php5 multiple security vulnerabilities. PR: ports/139196 Submitted by: Mark Foster <mark@foster.cc>
Revision 1.2044: download - view: text, markup, annotated - select for diffs
Wed Oct 7 10:18:17 2009 UTC (3 years, 7 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2043: preferred, colored
Changes since revision 1.2043: +30 -1 lines
- Document virtualbox -- privilege escalation
Revision 1.2043: download - view: text, markup, annotated - select for diffs
Tue Oct 6 09:37:49 2009 UTC (3 years, 7 months ago) by remko
Branches: MAIN
Diff to: previous 1.2042: preferred, colored
Changes since revision 1.2042: +40 -1 lines
Add FreeBSD-SA-09:14.devfs to the VuXML list. Hat: secteam Facilitated by: Snow B.V.
Revision 1.2042: download - view: text, markup, annotated - select for diffs
Tue Oct 6 09:33:27 2009 UTC (3 years, 7 months ago) by remko
Branches: MAIN
Diff to: previous 1.2041: preferred, colored
Changes since revision 1.2041: +41 -1 lines
Add FreeBSD-SA-09:13.pipe to the VuXML list. Hat: secteam Facilitated by: Snow B.V.
Revision 1.2041: download - view: text, markup, annotated - select for diffs
Thu Oct 1 12:01:16 2009 UTC (3 years, 7 months ago) by stas
Branches: MAIN
Diff to: previous 1.2040: preferred, colored
Changes since revision 1.2040: +3 -2 lines
- linux-f10-pango is affected by 4b172278-3f46-11de-becb-001cc0377035 too. Reported by: "Edward Sanford Sutton, III" <mirror176@cox.net>
Revision 1.2040: download - view: text, markup, annotated - select for diffs
Wed Sep 30 15:32:53 2009 UTC (3 years, 7 months ago) by miwi
Branches: MAIN
Diff to: previous 1.2039: preferred, colored
Changes since revision 1.2039: +35 -1 lines
- Document mybb -- multiple vulnerabilities P