FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Please give me your LTO-4 or better tape library and I'll put it to good use.
Search FreshPorts using Google
not searching src

The FreshPorts Search


Include deleted ports Case sensitive search Sort by:
Include /src tree

Notes

  • Case sensitivity is ignored for "sounds like" and output is ordered by the soundex.
  • When searching on 'Message ID', the type of match is ignored.
  • When searching on 'Commit Message' only 'containing' is used.
  • When searching by 'Under a pathname', your path must start with something like /ports/, /doc/, or /src/. All commits under that point will be returned. The selected match type is ignored and defaults to 'Starts with'.
Number of commits: 1016 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  
Fri, 29 May 2015
[ 22:20 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document the issue with proxychains-ng which uses current directory when
searching for its own shared library (CVE-2015-3887).

PR:		200511
Submitted by:	Jason Unovitch
[ 21:39 delphij ] Original commit 
apache-solr 4.10.4 textproc files touched by this commit High performance search server built using Lucene Java
Update to 4.10.4.
Thu, 28 May 2015
[ 19:47 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document wireshark multiple vulnerabilities.
[ 17:48 delphij ] Original commit 
krb5-112 1.12.3_2 security files touched by this commit Authentication system developed at MIT, successor to Kerberos IV
Apply vendor patch for CVE-2015-2694 (changeset
b0c571e709c72da799ccc15fb5755f7910170e33) to prevent requires_preauth
bypass.

Approved by:	so
Obtained
from:	https://github.com/krb5/krb5/commit/b0c571e709c72da799ccc15fb5755f7910170e33.diff
Security:	CVE-2015-2694
Security:	0b040e24-f751-11e4-b24d-5453ed2e2b49
MFH:		2015Q2
[ 17:46 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document krb5 requires_preauth bypass in PKINIT-enabled KDC.
Wed, 27 May 2015
[ 22:08 delphij ] Original commit 
openldap24-server 2.4.40_4 net files touched by this commit Open source LDAP server implementation
Add a patch to resolve symbol conflict between SHA2 module with OpenSSL's
SHA2 implementation.

Without this, e.g. SSHA512 scheme would result in a crash due to stack
corruption, which is a result of different SHA512 context size in the
contributed SHA2 implementation and the OpenSSL one, plus the allocation
is on stack.

PR:		197004
MFH:		2015Q2
[ 20:23 delphij ] Original commit 
fusefs-ntfs 2015.3.14 sysutils files touched by this commit Mount NTFS partitions (read/write) and disk images
Update to 2015.3.14.
[ 19:32 delphij ] Original commit 
fusefs-libs 2.9.4 sysutils files touched by this commit FUSE allows filesystem implementation in userspace
Update to 2.9.4.
Tue, 26 May 2015
[ 22:15 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Retrofit document cURL multiple vulnerabilities.
Sun, 24 May 2015
[ 07:29 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document cassandra remote code execution vulnerability.

PR:		199091
Submitted by:	Jason Unovitch <jason unovitch gmail com>
[ 07:23 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix version range for previous commit.
[ 07:19 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Extend CVE-2015-3456 to cover xen-tools (4.5.0-4.5.0_5: we didn't supported
the feature in earlier version of this port) and VirtualBox cases as well.

PR:		200311
[ 07:11 delphij ] Original commit 
xen-tools 4.5.0_5 sysutils files touched by this commit Xen management tool, based on LibXenlight
Apply patch from XSA-133 to address CVE-2015-3456 "VENOM" attack.

Obtained from:	http://xenbits.xen.org/xsa/advisory-133.html
Security:	CVE-2015-3456
Fri, 22 May 2015
[ 23:46 delphij ] Original commit 
pcre 8.37 devel files touched by this commit Perl Compatible Regular Expressions library
Security update to 8.37.

Security:	CVE-2015-2325
Security:	CVE-2015-2326
MFH:		2015Q2
Approved by:	so
[ 22:49 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document PCRE and PHP multiple vulnerabilities.
[ 22:15 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct PR number.

Submitted by:	jason.unovitch gmail.com
[ 16:16 delphij ] Original commit 
gnutls 3.3.15 security files touched by this commit GNU Transport Layer Security library
Fix plist when LIBDANE is defined (PORTREVISION not bumped
because package wouldn't be successful in the case).

Pointy hat to:	delphij
Reported by:	sunpoet
MFH:		2015Q2
[ 15:46 delphij ] Original commit 
gnutls 3.3.15 security files touched by this commit GNU Transport Layer Security library
Update to 3.3.15.

PR:		198875
Approved by:	maintainer
[ 07:10 delphij ] Original commit 
sectok 20030825_2 security files touched by this commit ISO 7816 Smartcard Utility
Use new DES_ methods instead of the long deprecated des_ methods.

PR:		198366
Submitted by:	Bernard Spil <spil.oss gmail com>
[ 07:04 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Pass full path to the vuln.xml file to extra-validation.py.  Without this,
if .OBJDIR differs from .CURDIR, the validation would fail.

PR:		193923
Reported by:	jbeich
Thu, 21 May 2015
[ 00:58 delphij ] Original commit 
beansdb 0.6.0 databases files touched by this commit Yet another distributed key-value storage system from Douban Inc
Update to 0.6.0.

Submitted by:	KATO Tsuguru <tkato432 yahoo com>
[ 00:17 delphij ] Original commit 
aimage 3.2.5 sysutils files touched by this commit Advanced Disk Imager
Add license, fix website URL and pass maintainership to submitter.

PR:		198230
Submitted by:	Chris Hutchinson
Wed, 20 May 2015
[ 19:21 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document CVE-2015-3306 proftpd mod_copy unauthenticated copying of files
vulnerability.
[ 19:15 delphij ] Original commit 
proftpd 1.3.5_7 ftp files touched by this commit Highly configurable FTP daemon
Fix proftpd unauthenticated copying of files via SITE CPFR/CPTO
vulnerability.

MFH:		2015Q2
Security:	CVE-2015-3306
Tue, 19 May 2015
[ 07:54 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document ClamAV multiple vulnerabilities.
Mon, 18 May 2015
[ 19:48 delphij ] Original commit 
libinotify 20150516 devel files touched by this commit Kevent based inotify compatible library
Update to rev.20150516.

PR:		200253
Submitted by:	Yuri <yuri rawbw com>
Mon, 11 May 2015
[ 18:12 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Revert r385940,r385932,r385864:

The usage of * is actually valid, as pointed out at the FreeBSD porter's
handbook:

https://www.freebsd.org/doc/en/books/porters-handbook/security-notify.html

Which denotes "the smallest version number" (in other words, * < 0).

Requested by:	many
Pointy hat to:	delphij
Sun, 10 May 2015
[ 08:28 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct version range.

PR:		200089
Sat, 9 May 2015
[ 08:20 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
* is not valid for version number, replace all instances with 0 and bump
modification date.

Submitted by:	Chris Nehren <cnehren tenable com> (version number part)
Sat, 2 May 2015
[ 00:59 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix version range of two ancient items.

Submitted by:	Chris Nehren <cnehren tenable com>
Mon, 27 Apr 2015
[ 19:23 delphij ] Original commit 
openldap24-server 2.4.40_4 net files touched by this commit Open source LDAP server implementation
Don't hardcode STRIP unconditionally [1].  Instead, respect the build
environment's settings.

Add a DEBUG option.

Based on patch from:	tobik [1]
Requested by:	Leander Schafer <info netocean de>
Sun, 26 Apr 2015
[ 06:53 delphij ] Original commit 
php55 5.5.24 lang files touched by this commit PHP Scripting Language
Security update to 5.5.24.

With hat:	ports-secteam
Submitted by:	Bernard Spil <spil.oss gmail com> (with changes)
MFH:		2015Q2
[ 06:51 delphij ] Original commit 
php5 5.4.40 lang files touched by this commit PHP Scripting Language
Security update to 5.4.40.

Submitted by:	Bernard Spil <spil.oss gmail com> with changes.
MFH:		2015Q2
[ 06:34 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document PHP multiple vulnerabilities.

Submitted by:	Bernard Spil <spil.oss gmail com>
Tue, 14 Apr 2015
[ 18:01 delphij ] Original commit 
lmdb 0.9.14 databases files touched by this commit OpenLDAP Lightning Memory-Mapped Database
Update to 0.9.14.
Number of commits: 1016 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
proxychains-ngMay 29
krb5May 28
krb5-112May 28
tsharkMay 28
tshark-liteMay 28
wiresharkMay 28
wireshark-liteMay 28
curlMay 26
curlMay 26
cassandraMay 24
cassandra2May 24
py-saltMay 24
davmailMay 23
dnsmasqMay 23
dnsmasq-develMay 23

22 vulnerabilities affecting 39 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24833
Broken 231
Deprecated 70
Ignore 499
Forbidden 1
Restricted 204
No CDROM 95
Vulnerable 21
Expired 9
Set to expire 59
Interactive 0
new 24 hours 8
new 48 hours13
new 7 days48
new fortnight78
new month167

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.