FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Please give me your LTO-4 or better tape library and I'll put it to good use.
Search FreshPorts using Google
not searching src

The FreshPorts Search


Include deleted ports Case sensitive search Sort by:
Include /src tree

Notes

  • Case sensitivity is ignored for "sounds like" and output is ordered by the soundex.
  • When searching on 'Message ID', the type of match is ignored.
  • When searching on 'Commit Message' only 'containing' is used.
  • When searching by 'Under a pathname', your path must start with something like /ports/, /doc/, or /src/. All commits under that point will be returned. The selected match type is ignored and defaults to 'Starts with'.
Number of commits: 600 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6  »  
Sat, 29 Aug 2015
[ 15:23 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document graphics/graphviz vulnerability
No CVE assigned
Thu, 27 Aug 2015
[ 15:15 feld ] Original commit 
dnscrypt-proxy 1.6.0 dns files touched by this commit Boost privacy and security of DNS
dns/dnscrypt-proxy: Update to 1.6.0

rc script is also updated to change default dnscrypt server to "cisco"
which is the new name for the opendns dnscrypt service

PR:		202414
Wed, 26 Aug 2015
[ 14:25 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
graphics/libpgf was assigned a CVE

Security:	9a71953a-474a-11e5-adde-14dae9d210b8
Security:	CVE-2015-6673
Tue, 25 Aug 2015
[ 17:41 feld ] Original commit 
pcre2 10.20 devel new! files touched by this commit Perl Compatible Regular Expressions library, version 2
Make LIBEDIT and READLINE radio options
[ 17:31 feld ] Original commit 
pcre2 10.20 devel new! files touched by this commit Perl Compatible Regular Expressions library, version 2
New port: devel/pcre2

PCRE2 is the name used for a revised API for the PCRE library, which is
a set of functions, written in C, that implement regular expression
pattern matching using the same syntax and semantics as Perl, with just
a few differences.
[ 14:39 feld ] Original commit 
plexmediaserver-plexpass 0.9.12.11.1406 multimedia files touched by this commit Plex Media Server component
multimedia/plexmediaserver-plexpass: Update to 0.9.12.11.1406

Relnotes:	https://forums.plex.tv/discussion/comment/1002923/#Comment_1002923
Mon, 24 Aug 2015
[ 16:25 feld ] Original commit 
pcre 8.37_4 devel files touched by this commit Perl Compatible Regular Expressions library
devel/pcre: Add patch to resolve heap overflow vulnerability

Obtained from:	http://vcs.pcre.org/pcre?view=revision&revision=1594
Security:	6900e6f1-4a79-11e5-9ad8-14dae9d210b8
[ 16:10 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document devel/pcre vulnerability

Security:	6900e6f1-4a79-11e5-9ad8-14dae9d210b8
Fri, 21 Aug 2015
[ 14:23 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document sysutils/tarsnap security announcement
Thu, 20 Aug 2015
[ 15:12 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
graphics/jasper new CVE added to entry

Security:	f1692469-45ce-11e5-adde-14dae9d210b8
Security:	CVE-2015-5221
[ 14:56 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document vulnerability in graphics/libpgf
No CVE assigned yet
Wed, 19 Aug 2015
[ 15:22 feld ] Original commit 
py-django 1.8.4 www files touched by this commit High-level Python Web framework
py-django14 1.4.22 www files touched by this commit High-level Python Web Framework (1.4.x LTS)
py-django17 1.7.10 www files touched by this commit High-level Python Web Framework (1.7.x)
www/py-django: Update to 1.8.4
www/py-django17: Update to 1.7.10
www/py-django14: Update to 1.14.22

MFH:		2015Q3
Relnotes:	https://www.djangoproject.com/weblog/2015/aug/18/security-releases/
Security:	b0e54dc1-45d2-11e5-adde-14dae9d210b8
Security:	CVE-2015-5963
Security:	CVE-2015-5964
Tue, 18 Aug 2015
[ 18:44 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
irc/unreal fix <name> to be capitalized

Security:	0ecc1f55-45d0-11e5-adde-14dae9d210b8
[ 18:33 feld ] Original commit 
freexl 1.0.2 textproc files touched by this commit Library to extract valid data from within an Excel (.xls) spreadsheet
textproc/freexl update to 1.0.2
This update resolves an integer overflow still awaiting CVE assignment

Security:	a59e263a-45cd-11e5-adde-14dae9d210b8
[ 18:24 feld ] Original commit 
unreal 3.2.10.5 irc files touched by this commit Unreal - the next generation ircd
Update irc/unreal to 3.2.10.5
This release fixes a SASL Denial of Service issue

Security:	0ecc1f55-45d0-11e5-adde-14dae9d210b8
[ 18:12 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document django vulnerabilities

Security:	CVE-2015-5963
Security:	CVE-2015-5964
[ 17:45 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document irc/unreal denial of service
No CVE assigned yet
[ 17:37 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document graphics/jasper vulnerability

Security:	CVE-2015-5203
[ 17:27 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document freexl multiple vulnerabilities. One is still awaiting CVE assignment.

Security:	CVE-2015-2776
[ 17:12 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
rt was assigned a CVE

Security:	83b38a2c-413e-11e5-bfcf-6805ca0b3d42
Security:	CVE-2015-6506
[ 17:10 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
ansible was assigned a CVE

Security:	72fccfdf-2061-11e5-a4a5-002590263bf5
Security:	CVE-2015-6240
[ 17:08 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
gnutls was assigned a CVE

Security:	ec6a2a1e-429d-11e5-9daa-14dae9d210b8
Security:	CVE-2015-6251
Mon, 17 Aug 2015
[ 16:25 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document mod_jk vulnerability

Security:	CVE-2014-8111
[ 14:13 feld ] Original commit 
chirp 0.4.1_3 comms files touched by this commit Free, open-source tool for programming your amateur radio
Last update was causing pollution of BUILD_DEPENDS into RUN_DEPENDS

PR:		202338
Sat, 15 Aug 2015
[ 14:21 feld ] Original commit 
chirp 0.4.1_2 comms files touched by this commit Free, open-source tool for programming your amateur radio
Add missing RUN_DEPENDS
Sort USES

PR:		202338
Fri, 14 Aug 2015
[ 20:38 feld ] Original commit 
gnutls 3.3.17.1 security files touched by this commit GNU Transport Layer Security library
Update MASTER_SITES to fix fetching problem due to abnormal version number

PR:		202332
[ 16:39 feld ] Original commit 
gnutls 3.3.17.1 security files touched by this commit GNU Transport Layer Security library
- Update to 3.3.17.1

MFH:		2015Q3
Relnotes:	http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/8268
Security:	ec6a2a1e-429d-11e5-9daa-14dae9d210b8
[ 16:34 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document freeradius3 vulnerability
[ 16:08 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document gnutls vulnerabilities
No CVEs assigned yet
Wed, 12 Aug 2015
[ 19:32 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document py-foolscap vulnerability
[ 16:10 feld ] Original commit 
moosefs-cgi 2.0.72 sysutils files touched by this commit MooseFS CGI interface
moosefs-cgiserv 2.0.72 sysutils files touched by this commit MooseFS CGI webserver
moosefs-chunkserver 2.0.72 sysutils files touched by this commit MooseFS data storage and synchronization component
moosefs-cli 2.0.72 sysutils files touched by this commit MooseFS command line interface
moosefs-client 2.0.72 sysutils files touched by this commit MooseFS client tools
moosefs-master 2.0.72 sysutils files touched by this commit Fault-tolerant distributed filesystem
moosefs-metalogger 2.0.72 sysutils files touched by this commit MooseFS metadata backup server
moosefs-netdump 2.0.72 sysutils files touched by this commit MooseFS network packet dump utility
sysutils/moosefs-* update to 2.0.72-1

The update to 2.0.72-1 includes splitting the sysutils/moosefs-master
port into several new ports to achieve better modularization. This
matches the approach upstream has taken with their own FreeBSD packages
which they were distributing via their own pkgng repository.

Further details are provided in the UPDATING entry.

Upstream MooseFS team is now taking maintainership of these ports.

PR:		199342
PR:		199343
PR:		199344
PR:		199345
PR:		199346
PR:		199347
PR:		199348
PR:		199349
Sun, 9 Aug 2015
[ 12:35 feld ] Original commit 
plexmediaserver-plexpass 0.9.12.10.1368 multimedia files touched by this commit Plex Media Server component
multimedia/plexmediaserver-plexpass: update to 0.9.12.10.1368

Relnotes:	https://forums.plex.tv/discussion/176124/plex-media-server-transcoder-preview-0-9-12-10
[ 12:24 feld ] Original commit 
plexmediaserver 0.9.12.8.1362 multimedia files touched by this commit Plex Media Server component
multimedia/plexmediaserver: update to 0.9.12.8.1362

The plugins are now versioned, so use %%PLEX_BUILD%% to cut down on
further pkg-plist churn.

Relnotes:	https://forums.plex.tv/discussion/comment/985893/#Comment_985893
Tue, 4 Aug 2015
[ 14:26 feld ] Original commit 
logstash 1.5.3 sysutils files touched by this commit Tool for managing events and logs
sysutils/logstash: update to 1.5.3

PR:		201893
Security:	CVE-2015-5378
Security:	c470bcc7-33fe-11e5-a4a5-002590263bf5

MFH:		2015Q3
[ 02:54 feld ] Original commit 
plexmediaserver-plexpass 0.9.12.8.1362 multimedia files touched by this commit Plex Media Server component
multimedia/plexmediaserver-plexpass: update to 0.9.12.8.1362

The plugins are now versioned, so use %%PLEX_BUILD%% to cut down on
further pkg-plist churn.

Relnotes:	https://forums.plex.tv/discussion/comment/985893/#Comment_985893
Sat, 1 Aug 2015
[ 23:24 feld ] Original commit 
sshguard 1.6.1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services
security/sshguard: update to 1.6.1
Fri, 31 Jul 2015
[ 16:36 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document older net-snmp DoS vulnerability

Security:	CVE-2014-3565
[ 15:57 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document net-snmp vulnerability

Security:	CVE-2015-5621
Thu, 30 Jul 2015
[ 17:12 feld ] Original commit 
aprsd 2.2.515_1 comms files touched by this commit Server daemon providing Internet access to APRS packet data
Add aprsd to dialer group in GIDs so membership is automatically handled
[ 15:48 feld ] Original commit 
aprsd 2.2.515_1 comms files touched by this commit Server daemon providing Internet access to APRS packet data
comms/aprsd: Modernize port
USE_RC_SUBR
USERS and GROUPS instead of custom script
Unmute some install steps
LICENSE
The rc script now passes rclint

Approved by:	db
Differential Revision:	https://reviews.freebsd.org/D3104
Wed, 29 Jul 2015
[ 17:00 feld ] Original commit 
v8 3.18.5_1 lang files touched by this commit Open source JavaScript engine by Google
v8-devel 3.27.7_3 lang files touched by this commit Open source JavaScript engine by Google
lang/v8, lang/v8-devel: Backport CVE fix

This fix has been backported instead of upgrading to a newer release as
the upstream release process is a complicated fast-moving target and the
current ports are using custom snapshots created by the port maintainer.

This will also limit the amount of potential fallout as we know the
existing v8 port works well enough to keep mongodb up to date.

PR:		201450
MFH:		2015Q3
Security:	CVE-2015-5380
Security:	864e6f75-2372-11e5-86ff-14dae9d210b8
[ 16:51 feld ] Original commit 
v8 devel  Deleted files touched by this commit 
v8-devel devel  Deleted files touched by this commit 
Mistakenly applied patches for v8 and v8-devel to devel/ instead of
lang/.

Delete.

Pointyhat:	me
[ 16:41 feld ] Original commit   Sanity Test Failure
v8 devel  Deleted Refresh files touched by this commit 
v8-devel devel  Deleted Refresh files touched by this commit 
devel/v8, devel/v8-devel: Backport CVE fix

This fix has been backported instead of upgrading to a newer release as
the upstream release process is a complicated fast-moving target and the
current ports are using custom snapshots created by the port maintainer.

This will also limit the amount of potential fallout as we know the
existing v8 port works well enough to keep mongodb up to date.

PR:		201450
MFH:		2015Q3
Security:	CVE-2015-5380
Security:	864e6f75-2372-11e5-86ff-14dae9d210b8
Tue, 28 Jul 2015
[ 20:23 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document bind CVE

Security:	CVE-2015-5477
[ 18:41 feld ] Original commit 
slurm-hpc 14.11.6_1 sysutils  Deleted files touched by this commit Simple Linux Utility for Resource Management
slurm-wlm 14.11.8 sysutils files touched by this commit Simple Linux Utility for Resource Management
Rename sysutils/slurm-hpc -> sysutils/slurm-wlm
Update to 14.11.8

Upstream is standardizing on "slurm-wlm", so we are renaming the port
accordingly.

PR:		200381
Approved by:	maintainer
[ 18:32 feld ] Original commit 
ganglia-webfrontend 3.7.0_1 sysutils files touched by this commit Ganglia cluster monitor, web frontend
Fix file permissions so WWWDIR is not writable by WWWOWN
Improve pkg-message notes on setting up Apache and Nginx

PR:	201908
[ 18:08 feld ] Original commit 
polarssl 1.2.14 security files touched by this commit Open Source embedded SSL/TLS cryptographic library
Update to 1.2.14
Includes backported security fixes

Changes:	https://tls.mbed.org/tech-updates/releases/polarssl-1.2.14-released

PR:		201603
Security:	d3216606-2b47-11e5-a668-080027ef73ec
Mon, 27 Jul 2015
[ 17:53 feld ] Original commit 
varnish4 4.0.3_7 www files touched by this commit High-performance HTTP accelerator
Fix startup script order:
varnishncsa and varnishlog require varnishd to start successfully

mat reported some latency between starting varnishd and creation of
the _.vsm file used for communication, so a start_precmd has been added
to varnishncsa and varnishlog.

PR:		201586
Differential Revision:	https://reviews.freebsd.org/D3208
[ 13:06 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document logstash SSL/TLS security vulnerability (FREAK attack)

PR:		201893
Security:	CVE-2015-5378
Security:	c470bcc7-33fe-11e5-a4a5-002590263bf5
Sun, 26 Jul 2015
[ 15:04 feld ] Original commit 
sshguard 1.6.0_1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services
sshguard-ipfilter 1.6.0_1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services using ipfilter
sshguard-ipfw 1.6.0_1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services using ipfw
sshguard-null 1.6.0_1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services
sshguard-pf 1.6.0_1 security files touched by this commit Protect hosts from brute force attacks against ssh and other services using pf
security/sshguard-null

portable do-nothing backend for applying detection but not prevention

PR:		201323
Sat, 25 Jul 2015
[ 13:09 feld ] Original commit 
plexmediaserver-plexpass 0.9.12.6.1347 multimedia files touched by this commit Plex Media Server component
Update to 0.9.12.6.1347
Fri, 24 Jul 2015
[ 16:58 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document shibboleth DoS

Security:	CVE-2015-2684
[ 14:18 feld ] Original commit 
wordpress 4.2.3,1 www files touched by this commit State-of-the-art semantic personal publishing platform
Update to 4.2.3, fixing CVEs
Add NO_ARCH

MFH:		2015Q3
Security:	CVE-2015-5622
Security:	CVE-2015-5623
Security:	c80b27a2-3165-11e5-8a1d-14dae9d210b8
[ 13:57 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Adjust wordpress range -- www/wordpress has PORTEPOCH

Security:	c80b27a2-3165-11e5-8a1d-14dae9d210b8
[ 13:41 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Update Wordpress entry to add CVEs

Security:	c80b27a2-3165-11e5-8a1d-14dae9d210b8
Security:	CVE-2015-5622
Security:	CVE-2015-5623
Thu, 23 Jul 2015
[ 18:24 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document wordpress XSS

Changes:	https://codex.wordpress.org/Version_4.2.3
[ 15:49 feld ] Original commit 
libidn 1.31 dns files touched by this commit Internationalized Domain Names command line tool
Update to 1.31
Add USES=gmake to build on all supported FreeBSD releases

PR:		201780
Security:	CVE-2015-2059
Security:	4caf01e2-30e6-11e5-a4a5-002590263bf5
MFH:		2015Q3
[ 15:44 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document libidn out-of-bounds read issue with invalid UTF-8 input

PR:		201780
Security:	CVE-2015-2059
Security:	4caf01e2-30e6-11e5-a4a5-002590263bf5
[ 15:39 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document buffer overflow vulnerabilities in SoX

PR:		201778
CVE:		CVE-2014-8145
Security:	9dd761ff-30cb-11e5-a4a5-002590263bf5
Security:	92cda470-30cb-11e5-a4a5-002590263bf5
Wed, 22 Jul 2015
[ 02:51 feld ] Original commit 
cacti 0.8.8f_1 net-mgmt files touched by this commit Web-driven graphing interface for RRDTool
Upstream re-rolled distfile.
Bump PORTREVISION to address it.

PR:		201702
MFH:		2015Q3
Mon, 20 Jul 2015
[ 16:37 feld ] Original commit 
apache22 2.2.29_6 www files touched by this commit Version 2.2.x of Apache web server with prefork MPM.
Backport patch for CVE and bump PORTREVISION

Approved by:	pgollucci
MFH:		2015Q3
Security:	CVE-2015-3183
Security:	29083f8e-2ca8-11e5-86ff-14dae9d210b8
[ 16:35 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Adjust range for apache22
We intended to commit 2.2.31 to ports but there are some issues. We will
instead backport the CVE fix to 2.2.29_6 for now.

Security:	CVE-2015-3183
[ 15:21 feld ] Original commit 
pcre 8.37_2 devel files touched by this commit Perl Compatible Regular Expressions library
Apply upstream fixes for a buffer overflow issue:
1571 Fix buffer overflow for forward reference within backward assertion
with excess closing parenthesis. Bugzilla 1651.

Obtained from:	PCRE svn (r1571)
MFH:		2015Q3
Security:	8a1d0e63-1e07-11e5-b43d-002590263bf5
Security:	CVE-2015-5073
[ 15:00 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document PCRE buffer overflow

PR:		201188
Security:	CVE-2015-5073
[ 14:52 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Fix moodle reference URL

PR:		201675
Security:	43891162-2d5e-11e5-a4a5-002590263bf5
[ 14:45 feld ] Original commit 
cacti 0.8.8f net-mgmt files touched by this commit Web-driven graphing interface for RRDTool
Update to 0.8.8f to resolve security and bug issues

PR:		201702
Security:	CVE-2015-4634
Security:	0bfda05f-2e6f-11e5-a4a5-002590263bf5
[ 14:35 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document Cacti Multiple XSS and SQL injection vulnerabilities

PR:		201702
Security:	CVE-2015-4634
Security:	0bfda05f-2e6f-11e5-a4a5-002590263bf5
Sat, 18 Jul 2015
[ 23:43 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document php-phar vulnerabilities

Add missing modified date to zenphoto entry

Security:	CVE-2015-5589
Security:	CVE-2015-5590
[ 23:26 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
zenphoto was assigned CVEs

Security:	5c399624-2bef-11e5-86ff-14dae9d210b8
[ 23:16 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document recent Moodle security advisories

Security:	CVE-2015-3272
Security:	CVE-2015-3273
Security:	CVE-2015-3274
Security:	CVE-2015-3275
Security:	43891162-2d5e-11e5-a4a5-002590263bf5

PR:		201675
[ 22:09 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
package name is mariadb100, not mariadb10

Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 22:02 feld ] Original commit 
mariadb55-server 5.5.44 databases files touched by this commit Multithreaded SQL database (server)
Update to 5.5.44
This resolves the BACKRONYM SSL stripping CVE

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 21:27 feld ] Original commit 
percona56-client 5.6.24.72.2_2 databases files touched by this commit Multithreaded SQL database (client)
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 21:23 feld ] Original commit 
percona55-client 5.5.43.37.2_1 databases files touched by this commit Multithreaded SQL database (client)
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 21:21 feld ] Original commit 
mysql56-client 5.6.25_2 databases files touched by this commit Multithreaded SQL database (client)
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 21:18 feld ] Original commit 
mysql55-client 5.5.44_1 databases files touched by this commit Multithreaded SQL database (client)
PKGMESSAGE was misdefined
[ 21:16 feld ] Original commit 
mysql55-client 5.5.44_1 databases files touched by this commit Multithreaded SQL database (client)
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 21:14 feld ] Original commit 
mariadb-client 5.3.12_7 databases files touched by this commit Database server - drop-in replacement for MySQL
mysql51-client 5.1.73_3 databases files touched by this commit Multithreaded SQL database (client)
PORTREVISION was in wrong order
[ 21:11 feld ] Original commit 
mysql51-client 5.1.73_3 databases files touched by this commit Multithreaded SQL database (client)
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 20:55 feld ] Original commit 
mariadb-client 5.3.12_7 databases files touched by this commit Database server - drop-in replacement for MySQL
mariadb-server 5.3.12_6 databases files touched by this commit Database server - drop-in replacement for MySQL
Bump PORTREVISION of the client and add pkg-message to warn about
CVE-2015-3152 which will not get patched

Security:	CVE-2015-3152
Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 20:21 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
MySQL SSL Downgrade affects the client not the server
Remove mention of MySQL & friends that are not getting patched:
We will update their packages with a pkg-message to notify users

Security:	36bd352d-299b-11e5-86ff-14dae9d210b8
[ 19:55 feld ] Original commit 
cd2mp3 0.82_4,1 audio files touched by this commit Easy to use CD Ripping and MP3 Encoding tool
Remove BROKEN; mirrors have been adjusted
Fri, 17 Jul 2015
[ 20:41 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add missing <cvename> to apache entry

Security:	29083f8e-2ca8-11e5-86ff-14dae9d210b8
[ 17:30 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Add missing apache22 packages for other "workers"

Security:	29083f8e-2ca8-11e5-86ff-14dae9d210b8
[ 17:26 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Apache 2.2.31 is now public, fixing CVE-2015-3183

Security:	CVE-2015-3183
[ 16:49 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
CVE now assigned to squid

Security:	150d1538-23fa-11e5-a4a5-002590263bf5
Security:	CVE-2015-5400
Thu, 16 Jul 2015
[ 20:05 feld ] Original commit 
libav 11.3_3 multimedia files touched by this commit Realtime audio/video conversion library
Add patch to resolve divide-by-zero CVE

Security:	CVE-2015-5479
Security:	a928960a-2bdc-11e5-86ff-14dae9d210b8
[ 19:40 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Correct range for libav
I was led to believe that 11.5 and 12.0 releases existed and included
the fix. They have not yet been issued by upstream. We will backport the
fix and bump PORTREVISION.

Security:	a928960a-2bdc-11e5-86ff-14dae9d210b8
[ 19:22 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document zenphoto vulnerabilities
No CVE assigned yet
[ 19:01 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document groovy vulnerability

Security:	CVE-2015-3253
[ 17:13 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document libav vulnerability

Security:	CVE-2015-5479
[ 16:47 feld ] Original commit 
libwmf 0.2.8.4_14 graphics files touched by this commit Tools and library for converting Microsoft WMF (windows metafile)
- Assign maintainership
- Resolve backlog of CVEs

PR:		201513
Reported by:	Sevan Janiyan
Submitted by:	Jason Unovitch (maintainer)
Security:	CVE-2004-0941 [1]
Security:	CVE-2007-0455 [1]
Security:	CVE-2007-2756 [1]
Security:	CVE-2007-3472 [1]
Security:	CVE-2007-3473 [1]
Security:	CVE-2007-3477 [1]
Security:	CVE-2009-3546 [1]
Security:	CVE-2015-4695 [2]
Security:	CVE-2015-4696 [3]
Security:	CVE-2015-0848 [4]
Security:	CVE-2015-4588 [4]
Security:	ca139c7f-2a8c-11e5-a4a5-002590263bf5
Obtained From:	CentOS libwmf RPM git [1]
Obtained From:	Debian Bug 784205 [2]
Obtained From:	Debian Bug 784192 [3]
Obtained From:	Red Hat Bug 1227243 [4]
MFH:		2015Q3
Wed, 15 Jul 2015
[ 15:50 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
- Document multiple security issues for libwmf

PR:		201513
Security:	CVE-2004-0941
Security:	CVE-2007-0455
Security:	CVE-2007-2756
Security:	CVE-2007-3472
Security:	CVE-2007-3473
Security:	CVE-2007-3477
Security:	CVE-2009-3546
Security:	CVE-2015-4695
Security:	CVE-2015-4696
Security:	CVE-2015-0848
Security:	CVE-2015-4588
Security:	ca139c7f-2a8c-11e5-a4a5-002590263bf5
[ 15:19 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Reference another URL for tidy's CVE

PR:		200631
Security:	bd1ab7a5-0e01-11e5-9976-a0f3c100ae18
[ 14:03 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
CVEs have been assigned for tidy

Security:	bd1ab7a5-0e01-11e5-9976-a0f3c100ae18
Security:	CVE-2015-5522
Security:	CVE-2015-5523
[ 13:40 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document multiple apache24 vulnerabilities

Security:	CVE-2015-3183
Security:	CVE-2015-3185
Security:	CVE-2015-0253
Security:	CVE-2015-0228
Mon, 13 Jul 2015
[ 21:05 feld ] Original commit 
vuxml 1.1_2 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Document php sqlite3 use-after-free vulnerability

Change previous entry title to be hyphenated
Number of commits: 600 (showing only 100 on this page) 1 | 2 | 3 | 4 | 5 | 6  »  
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
avidemuxSep 01
ffmpegSep 01
ffmpegSep 01
gstreamer1-libavSep 01
gstreamer1-libavSep 01
handbrakeSep 01
handbrakeSep 01
kodiSep 01
libavSep 01
libavSep 01
mencoderSep 01
mplayerSep 01
mythtvSep 01
mythtvSep 01
mythtv-frontendSep 01

21 vulnerabilities affecting 61 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 25191
Broken 188
Deprecated 34
Ignore 492
Forbidden 1
Restricted 205
No CDROM 89
Vulnerable 45
Expired 2
Set to expire 18
Interactive 0
new 24 hours 3
new 48 hours10
new 7 days25
new fortnight96
new month214

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.