FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
non port: head/devel/bugzilla3/distinfo
SVNWeb

Number of commits found: 10

Wed, 20 Feb 2013
[ 06:16 ohauer ] Original commit 
312611 devel/bugzilla/Makefile
312611 devel/bugzilla/distinfo
312611 devel/bugzilla3/Makefile
312611 devel/bugzilla3/distinfo
312611 devel/bugzilla42/Makefile
312611 devel/bugzilla42/distinfo
312611 security/vuxml/vuln.xml
- update bugzilla ports to latest version

  Bugzilla 4.0.10 and 3.6.13 are security updates for the 4.0
  branch and the 3.6 branch, respectively. 4.0.10 contains several
  useful bug fixes and 3.6.13 contains only security fixes.

Security:	CVE-2013-0785
		CVE-2013-0786
Wed, 14 Nov 2012
[ 19:29 ohauer ] Original commit 
307425 devel/bugzilla/Makefile
307425 devel/bugzilla/distinfo
307425 devel/bugzilla3/Makefile
307425 devel/bugzilla3/distinfo
307425 devel/bugzilla42/Makefile
307425 devel/bugzilla42/distinfo
307425 security/vuxml/vuln.xml
- bugzilla security updates to version(s)
  3.6.11, 4.0.8, 4.2.4

Summary
=======

The following security issues have been discovered in Bugzilla:

* Confidential product and component names can be disclosed to
  unauthorized users if they are used to control the visibility of
  a custom field.

* When calling the 'User.get' WebService method with a 'groups'
  argument, it is possible to check if the given group names exist
  or not.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 1 Sep 2012
[ 20:16 ohauer ] Original commit 
303519 devel/bugzilla/Makefile
303519 devel/bugzilla/distinfo
303519 devel/bugzilla3/Makefile
303519 devel/bugzilla3/distinfo
303519 devel/bugzilla42/Makefile
303519 german/bugzilla/Makefile
303519 german/bugzilla3/Makefile
303519 german/bugzilla42/Makefile
303519 german/bugzilla42/files
303519 german/bugzilla42/files/patch-402-403

(Only the first 10 of 17 ports in this commit are shown above. View all ports for this commit)
- update bugzilla bugzilla3 and bugzilla42
- use new bugzilla@ address (members skv@, tota@, ohauer@)
- patch russian/japanese/german bugzilla and bugzilla templates
  so the reflect the security updates in the original templates
- patch german/bugzilla42 templates
- adopt new Makefile header

	vuxml: 6ad18fe5-f469-11e1-920d-20cf30e32f6d
	CVE: CVE-2012-3981
	https://bugzilla.mozilla.org/show_bug.cgi?id=785470
	https://bugzilla.mozilla.org/show_bug.cgi?id=785522
	https://bugzilla.mozilla.org/show_bug.cgi?id=785511
Fri, 27 Jul 2012
[ 21:34 ohauer ] Original commit 
301625 devel/bugzilla/Makefile
301625 devel/bugzilla/distinfo
301625 devel/bugzilla3/Makefile
301625 devel/bugzilla3/distinfo
301625 devel/bugzilla42/Makefile
301625 devel/bugzilla42/distinfo
301625 security/vuxml/vuln.xml
- security update bugzilla
  new Versions: 3.6.10, 4.0.7, 4.2.2

  4.2.2

  This release fixes two security issues. See the Security Advisory for details.

  In addition, the following important fixes/changes have been made in this
release:

  o A regression introduced in Bugzilla 4.0 caused some login names to be
ignored
    when entered in the CC list of bugs. (Bug 756314)
  o Some queries could trigger an invalid SQL query if strings entered by the
user
    contained leading or trailing whitespaces. (Bug 760075)
  o The auto-completion form for keywords no longer automatically selects the
    first keyword in the list when the field is empty. (Bug 764517)
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 21 Apr 2012
[ 17:37 ohauer ] Original commit 
1.93 devel/bugzilla/Makefile
1.50 devel/bugzilla/distinfo
1.42 devel/bugzilla/pkg-plist
1.90 devel/bugzilla3/Makefile
1.49 devel/bugzilla3/distinfo
1.39 devel/bugzilla3/pkg-plist
1.7 german/bugzilla/Makefile
1.6 german/bugzilla3/Makefile
1.16 russian/bugzilla3-ru/Makefile
1.10 russian/bugzilla3-ru/distinfo

(Only the first 10 of 11 ports in this commit are shown above. View all ports for this commit)
- security update to bugzilla 3.0.9 and 4.0.6
- update russian/bugzilla3-ru template
- patch german templates so revision match and no warning is displayed
- add vuxml entry

Approved by:    skv (implicit)
Security:       https://bugzilla.mozilla.org/show_bug.cgi?id=728639
                https://bugzilla.mozilla.org/show_bug.cgi?id=745397
                CVE-2012-0465
                CVE-2012-0466
Mon, 6 Feb 2012
[ 12:08 skv ] Original commit 
1.89 devel/bugzilla3/Makefile
1.48 devel/bugzilla3/distinfo
1.2 devel/bugzilla3/files/patch-Bugzilla__WebService__Server__JSONRPC.pm
Update to 3.6.8

Changes:       
http://www.bugzilla.org/releases/3.6.8/release-notes.html#v36_point
Security:      
http://www.vuxml.org/freebsd/309542b5-50b9-11e1-b0d8-00151735203a.html
Thu, 5 Jan 2012
[ 17:25 ohauer ] Original commit 
1.88 devel/bugzilla3/Makefile
1.47 devel/bugzilla3/distinfo
1.1 devel/bugzilla3/files/patch-Bugzilla__WebService__Server__JSONRPC.pm
1.38 devel/bugzilla3/pkg-plist
- update to version 3.6.7
- CVE-2011-3657
- CVE-2011-3667

Summary
=======

The following security issues have been discovered in Bugzilla:

* When viewing tabular or graphical reports as well as new charts,
  an XSS vulnerability is possible in debug mode.

* The User.offer_account_by_email WebService method lets you create
  a new user account even if the active authentication method forbids
  users to create an account.

* A CSRF vulnerability in post_bug.cgi and in attachment.cgi could
  lead to the creation of unwanted bug reports and attachments.

All affected installations are encouraged to upgrade as soon as possible.

Full Release Notes:
http://www.bugzilla.org/security/3.4.12/

Approved by:    skv@ (explicit)
Sat, 13 Aug 2011
[ 18:25 skv ] Original commit 
1.86 devel/bugzilla3/Makefile
1.46 devel/bugzilla3/distinfo
Update to 3.6.6

Changes:        http://www.bugzilla.org/releases/3.6.6/release-notes.html
Security:      
http://www.vuxml.org/freebsd/dc8741b9-c5d5-11e0-8a8e-00151735203a.html
Mon, 18 Jul 2011
[ 21:56 ohauer ] Original commit 
1.86 devel/bugzilla/Makefile
1.3 devel/bugzilla/Makefile.common
1.45 devel/bugzilla/distinfo
1.39 devel/bugzilla/pkg-plist
1.3 devel/bugzilla3/Makefile.common
1.45 devel/bugzilla3/distinfo
1.2 german/bugzilla/Makefile
1.2 german/bugzilla3/Makefile
1.14 japanese/bugzilla/distinfo
1.15 japanese/bugzilla3/distinfo

(Only the first 10 of 12 ports in this commit are shown above. View all ports for this commit)
- create missing (empty) directory (bugzilla) so checksetup does not fail
- use DIST_SUBDIR for bugzilla and all translations
- sort pkg-plist (genplist)

OK from bugzilla maintainers per PM.

PR:             ports/158766
Submitted by:   ohauer
Tue, 7 Jun 2011
[ 13:30 skv ] Original commit 
1.4363 devel/Makefile
1.83 devel/bugzilla/Makefile
1.44 devel/bugzilla/distinfo
1.38 devel/bugzilla/pkg-plist
1.83 devel/bugzilla3/Makefile
1.44 devel/bugzilla3/distinfo
1.106 russian/Makefile
1.13 russian/bugzilla-ru/Makefile
1.7 russian/bugzilla-ru/distinfo
1.6 russian/bugzilla-ru/pkg-plist

(Only the first 10 of 12 ports in this commit are shown above. View all ports for this commit)
- Copy devel/bugzilla to devel/bugzilla3; russian/bugzilla-ru to
russian/bugzilla3-ru
- Update devel/bugzilla, russian/bugzilla-ru to 4.0.1
- Update devel/bugzilla3, russian/bugzilla3-ru to 3.6.5

Changes:        http://www.bugzilla.org/releases/4.0.1/release-notes.html
                http://www.bugzilla.org/releases/3.6.5/release-notes.html

Number of commits found: 10

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumAug 26
fileAug 21
py-djangoAug 21
py-django-develAug 21
py-django14Aug 21
py-django15Aug 21
php53Aug 18
phpmyadminAug 17
chromiumAug 13
serfAug 11
subversionAug 11
subversion17Aug 11
nginxAug 09
nginx-develAug 09
mingw32-opensslAug 06

6 vulnerabilities affecting 9 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24358
Broken 183
Deprecated 515
Ignore 483
Forbidden 17
Restricted 224
No CDROM 96
Vulnerable 23
Expired 430
Set to expire 504
Interactive 0
new 24 hours 5
new 48 hours9
new 7 days35
new fortnight92
new month262

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.