FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Please give me your LTO-4 or better tape library and I'll put it to good use.
Search FreshPorts using Google
not searching src

The FreshPorts Search


Include deleted ports Case sensitive search Sort by:
Include /src tree

Notes

  • Case sensitivity is ignored for "sounds like" and output is ordered by the soundex.
  • When searching on 'Message ID', the type of match is ignored.
  • When searching on 'Commit Message' only 'containing' is used.
  • When searching by 'Under a pathname', your path must start with something like /ports/, /doc/, or /src/. All commits under that point will be returned. The selected match type is ignored and defaults to 'Starts with'.
Number of commits: 1068 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  
Fri, 26 Jun 2015
[ 04:35 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document CVE-2014-3120, CVE-2014-6439, CVE-2015-1427, CVE-2015-3337,
and CVE-2015-4165 (various Elasticsearch vulnerabilities).

PR:		ports/201008
Submitted by:	Jason Unovitch
Thu, 25 Jun 2015
[ 19:41 delphij ] Original commit 
afl 1.83b security files touched by this commit Fast instrumented fuzzer
security/afl: Update to 1.83b

While at it, reset maintainer to ports@ as the port now
contains LICENSE goo whose meaning remains a mystery.

PR:		201107
Submitted by:	Fabian Keil <fk fabiankeil de> (maintainer)
Wed, 24 Jun 2015
[ 21:10 delphij ] Original commit 
logstash 1.5.1 sysutils files touched by this commit Tool for managing events and logs
Reinstate r384587 (Add CPE info).
[ 21:09 delphij ] Original commit 
logstash 1.5.1 sysutils files touched by this commit Tool for managing events and logs
Update to 1.5.1.

PR:		ports/201001
Submitted by:	maintainer (Enrico M. Crisostomo)
MFH:		2015Q2
Security:	CVE-2015-4152
[ 20:35 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Split CVE-2015-4152 to its own entry as the affected port is logstash only.

While there also document CVE-2014-4326 (already fixed) for logstash.

PR:		ports/201001
Submitted by:	Jason Unovitch
[ 20:27 delphij ] Original commit 
logstash-forwarder 0.4.0.20150507 sysutils files touched by this commit Collect logs locally in preparation for processing elsewhere!
Update to 0.4.0.20150507.

PR:		ports/201065
Submitted by:	maintainer (cheffo freebsd-bg org)
MFH:		2015Q2
[ 20:17 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add entry for logstash-forwarder/logstash.

PR:		ports/201065
Submitted by:	Jason Unovitch
Tue, 23 Jun 2015
[ 00:15 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix entry date.
[ 00:13 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document rubygem-bson DoS and possible injection vulnerability.

PR:		201061
Submitted by:	Jason Unovitch
Mon, 22 Jun 2015
[ 23:39 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document 3 vulnerabilities with PHP that affected 4 extensions.

PR:		200926
Submitted by:	Jason Unovitch
[ 23:22 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Reflect version range change after r390340.  While I'm there, also fix
the CVE-2015-4556 entry because it's not yet fixed in the ports tree and
add a reference to the PR while there.

PR:		200980
Submitted by:	Vitaly Magerya (with changes suggested by Jason Unovitch)
[ 23:18 delphij ] Original commit 
chicken 4.10.0.r1,1 lang files touched by this commit Scheme-to-C compiler
Change version format (from 4.10.0r1 to 4.10.0.r1) and bump PORTEPOCH.
This is because our current versioning system sees 4.10.0r1 > 4.10.0.

vuxml change would follow.

PR:		200980
Submitted by:	maintainer (Vitaly Magerya)
MFH:		2015Q2
[ 07:13 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document rubygem-paperclip validation bypass vulnerabilitiy.

PR:		200979
Submitted by:	Jason Unovitch
[ 07:08 delphij ] Original commit 
chicken 4.10.0r1 lang files touched by this commit Scheme-to-C compiler
Update to 4.10.0 RC1.

PR:		200980
Submitted by:	maintainer (Vitaly Magerya)
MFH:		2015Q2
Security:	0da404ad-1891-11e5-a1cf-002590263bf5,
		e7b7f2b5-177a-11e5-ad33-f8d111029e6a
[ 07:02 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document lang/chicken vulnerabilities CVE-2014-9651 and CVE-2015-4556.

PR:		200980
Submitted by:	Jason Unovitch
[ 06:52 delphij ] Original commit 
cacti 0.8.8d net-mgmt files touched by this commit Web-driven graphing interface for RRDTool
Update to 0.8.8d (security: fixes multiple XSS/SQL injection
vulnerabilities)

PR:		200963
Submitted by:	maintainer (freebsd-ports@dan.me.uk)
Security:	a3929112-181b-11e5-a1cf-002590263bf5
MFH:		2015Q2
[ 06:44 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document cacti multiple vulnerabilities (affects < 0.8.8c) and
multiple XSS/SQL injection vulnerabilities (affects < 0.8.8d).

PR:		200963
Submitted by:	Jason Unovitch
Fri, 19 Jun 2015
[ 00:42 delphij ] Original commit 
drupal6 6.36 www files touched by this commit Database driven web content management system (CMS)
Security update to 6.36.

PR:		ports/200957
Submitted by:	Simon Wright (maintainer)
MFH:		2015Q2
Security:	d605edb1-1616-11e5-a000-d050996490d0
[ 00:38 delphij ] Original commit 
drupal7 7.38 www files touched by this commit Database driven web content management system (CMS)
Security Update to 7.38.

PR:		ports/200956
Submitted by:	Simon Wright (maintainer)
MFH:		2015Q2
Security:	d605edb1-1616-11e5-a000-d050996490d0
[ 00:13 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document Drupal multiple vulnerabilities.
Thu, 18 Jun 2015
[ 00:51 delphij ] Original commit 
dokuwiki 20140929_5 www files touched by this commit Simple and easy to use wiki, no database required
This port does not contain any architecture dependent file so mark
it as so.
Wed, 17 Jun 2015
[ 21:40 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document two vulnerabilities of cURL.
[ 17:18 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Modify a5f160fa-deee-11e4-99f8-080027ef73ec so it covers ja-mailman too.

Submitted by:	Yasuhito FUTATSUKI
[ 01:05 delphij ] Original commit 
py-pgpdump 1.5 security files touched by this commit Python library for parsing PGP packets
A Python library for parsing PGP packets

WWW: https://pypi.python.org/pypi/pgpdump/

PR:		200364
Submitted by:	Yuri Victorovich <yuri@rawbw.com>
[ 00:44 delphij ] Original commit 
mailman 2.1.14.j7_2,1 japanese files touched by this commit Japanized mailman which is a mailing list manager with a web front-end
Apply patch for CVE-2015-2775.

PR:		ports/200562
Submitted by:	Yasuhito FUTATSUKI <freebsd-bug-report-yf yf bsdclub org>
Approved by:	maintainer timeout
[ 00:24 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document testdisk multiple vulnerabilities.

PR:		ports/200250
Submitted by:	Jason Unovitch
[ 00:23 delphij ] Original commit 
testdisk 7.0 sysutils files touched by this commit Tool to check and undelete partitions
Update to 7.0 (contains various security fixes)

PR:		ports/200250
Approved by:	maintainer timeout
[ 00:09 delphij ] Original commit 
py-openssl 0.15.1 security files touched by this commit Python interface to the OpenSSL library
Update to 0.15.1.

PR:		200473
Submitted by:	sef
Approved by:	maintainer timeout
Tue, 16 Jun 2015
[ 21:25 delphij ] Original commit 
mingw32-openssl 1.0.2c devel files touched by this commit The OpenSSL library cross-compiled for MinGW32
Update to 1.0.2c.
[ 01:29 delphij ] Original commit 
openvpn-devel 201523 security files touched by this commit Secure IP/Ethernet tunnel daemon
Update to 201523.

PR:		200774
Submitted by:	maintainer
[ 00:44 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document Tomcat multiple vulnerabilities.
[ 00:38 delphij ] Original commit 
tomcat6 6.0.44 www files touched by this commit Open-source Java web server by Apache, 6.x branch
Security update to 6.0.44.

PR:		200275
MFH:		2015Q2
Approved by:	maintainer timeout
Wed, 10 Jun 2015
[ 20:28 delphij ] Original commit 
pgbouncer 1.5.5 databases files touched by this commit Lightweight connection pooler for PostgreSQL
Security update to 1.5.5, while there also move the
upstream to github.

PR:		200537
Approved by:	maintainer
MFH:		2015Q2 (test)
[ 18:09 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document libzmq4 V3 protocol handler protocol downgrade vulnerability.

PR:		200502
Submitted by:	Jason Unovitch
[ 17:34 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document pgbouncer remote denial of service vulnerability.

PR:		200537
Submitted by:	Jason Unovitch
[ 05:33 delphij ] Original commit 
cups-base 2.0.3_2 print files touched by this commit Common UNIX Printing System: Server
Add a missing file to plist when Avahi is selected.
Tue, 9 Jun 2015
[ 23:41 delphij ] Original commit 
cups 2.0.3 print files touched by this commit Common UNIX Printing System: Metaport to install complete system
Bump version after cups-base update.

Noticed by:	jkim
MFH:		2015Q2
[ 23:17 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document cups multiple vulnerabilities.
[ 22:15 delphij ] Original commit 
cups-base 2.0.3 print files touched by this commit Common UNIX Printing System: Server
Security update to 2.0.3.
[ 08:23 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document two strongswan vulnerabilities.

PR:		200721
Submitted by:	Jason Unovitch (with changes: wrapped long line and changed
		CVE-2015-3991's coverage to cover only < 5.3.1 to reflect
		the reality).
Mon, 8 Jun 2015
[ 22:33 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document redis EVAL Lua sandbox escape vulnerability.
[ 22:33 delphij ] Original commit 
hgsvn 0.3.9 devel files touched by this commit Scripts to work locally on Subversion checkouts using Mercurial
Update to 0.3.9.
Sun, 7 Jun 2015
[ 21:07 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix typo and remove PHP from pcre vulnerabilities, as the bundled pcre
is not used.
[ 20:53 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document fixed version of pcre in e69af246-0ae2-11e5-90e4-d050996490d0.
[ 20:50 delphij ] Original commit 
pcre 8.37_1 devel files touched by this commit Perl Compatible Regular Expressions library
Apply upstream fixes of several buffer overflow issues:

r1555 Fix forward reference offset bug.
r1556 Fix forward referencing bugs.
r1557 Fix buffer overflow for repeated conditional when referencing a
      duplicate name.
r1558 Fix buffer overflow for named recursive back reference when the
      name is duplicated.
r1559 Fix named forward reference to duplicate group number overflow
      bug.
r1560 Fix buffer overflow for lookbehind within mutually recursive
      subroutines.
r1562 Fix another buffer overflow.

Note that regression tests were not included in this patchset, however
the actual test cases have been run against both old and new code to
make sure that the issues were fixed properly.

With hat:	so
Obtained from:	PCRE svn (revisions detalied above)
MFH:		2015Q2
Security:	CVE-2015-3210, CVE-2015-3217
Thu, 4 Jun 2015
[ 18:18 delphij ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document two recent pcre vulnerabilities that can be triggered by
specifically crafted *patterns* and would lead to stack or heap
overflow.
Number of commits: 1068 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11  »  
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
elasticsearchJun 26
elasticsearchJun 26
elasticsearchJun 26
elasticsearchJun 26
elasticsearchJun 26
logstashJun 26
qemuJun 26
qemu-develJun 26
qemu-sbrunoJun 26
cinepaint*Jun 24
darktable*Jun 24
dcraw*Jun 24
dcraw-m*Jun 24
exact-image*Jun 24
flphoto*Jun 24

26 vulnerabilities affecting 59 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24936
Broken 212
Deprecated 48
Ignore 509
Forbidden 1
Restricted 204
No CDROM 94
Vulnerable 34
Expired 0
Set to expire 36
Interactive 0
new 24 hours 8
new 48 hours11
new 7 days59
new fortnight78
new month173

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.