non port: databases/db5/pkg-plist |
Number of commits found: 9 |
Wednesday, 26 Jan 2022
|
22:59 Matthias Andree (mandree)
databases/db5: nuke SQL option and abandon port
Security: CVE-2019-8457
The SQL option is vulnerable, and since this feature was always marked
experimental, nuke it, and backport to 2022Q1.
If someone needs the SQL interface in spite of its vulnerability,
please use: pkg lock -y db5.
MFH: 2022Q1
I am marking the port for expiry and abandoning it because I will no
longer spend the increasing efforts to play hide and seek with Oracle's
patches, or backport sometimes bigger Linux distro patches (Red Hat,
Debian, who else?), or otherwise put up with how they have changed
availability of patches, documentation, or important information.
FOR db5 USERS:
One option is to upgrade to db18, but note that db versions 6 and 18
are under the Affero GNU GPL v3 license, with implications for,
among others, software-as-a-service, and distributability of packages
linking against db. This is in stark contrast with db5's Sleepycat license.
POTENTIAL MAINTAINERS:
If someone wants to adopt this, review all the various patches in the
major other BSD distros and Linux distros, check if their patches can be
licensed under a sufficiently liberal license (ideally, MIT-like or
Sleepycat) and see what you need to import.
64fde89 |
Monday, 23 May 2016
|
22:07 mandree
Modernize Makefile and chase new requisites.
* Modernize Makefile [1].
* The Tcl changes suggested in the PR [1] are applied but commented out
because the code causes scary "warning: the value of the size argument
in 'strncat' is too large, might lead to a buffer overflow
[-Wstrncat-size]" in lang/tcl/tcl_*.c on FreeBSD 10.3 amd64.
* Other than what is suggested in the PR,
refuse to add the TCL option, and leave --disable-tcl in.
* JAVA option: restrict to Java versions 1.6 and 1.7 because the port
fails to compile with JAVA option enabled and openjdk8
(IllegalArgument exception).
portlint cleanups:
* Set PATCH_WRKSRC, and refresh patches with "make makepatch".
* Use Space (not HTab) after WWW: tag in pkg-descr
* Drop "The" from COMMENT.
PR: 208740 [1]
Submitted by: gahr@ [1]
|
Monday, 20 Oct 2014
|
10:41 bapt
Cleanup plist
|
Sunday, 31 Aug 2014
|
10:32 tijl
Add USES=libtool
|
Monday, 16 Dec 2013
|
23:47 mandree
Update to 5.3.28, fixing nearly two dozen bugs.
While at it, re-enable the db185 compatibility interface that some ports use.
|
Monday, 18 Jun 2012
|
23:28 mandree
Forced commit to note correct URL for ChangeLog in CVS (missing l in .html):
http://download.oracle.com/otndocs/products/berkeleydb/html/changelog_5_3.html
|
23:23 mandree
- Update to new upstream release 5.3.21. Please see UPDATING!
http://download.oracle.com/otndocs/products/berkeleydb/html/changelog_5_3.htm
- Convert to OptionsNG.
Sunpoet, relative to the PR, there were more Makefile and pkg-plist changes,
as well as an update of Mk/bsd.database.mk and UPDATING.
Port and pkg-plist updates based on
PR: ports/165574
Submitted by: sunpoet@
|
Thursday, 25 Aug 2011
|
23:17 mandree
- Update databases/db5 to new upstream release 5.2.28.0. ChangeLog:
http://download.oracle.com/docs/cd/E17076_02/html/installation/changelog_5_2.html
- Remove databases/db51 (no hard dependencies), users having set db51
manually for their ports need to set db5 and rebuild dependent ports.
- Add OPTIONS for localization (default off) and crypto (default on).
- Install libdb*-5.so symlinks into $PREFIX/lib
- If WITH_DEBUG is set, pass --enable-umrw to pacify valgrind, and
--enable-debug.
|
21:43 mandree
Forced commit to note repocopy from ports/databases/db51.
PR: ports/159700
|
Number of commits found: 9 |