FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
krb5 1.12.2 security on this many watch lists=27 search for ports that depend on this port An older version of this port was marked as vulnerable.
Authentication system developed at MIT, successor to Kerberos IV
Maintained by: cy@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
License: MIT


Kerberos V5 is an authentication system developed at MIT.  
WWW: http://web.mit.edu/kerberos/

Abridged from the User Guide:
       Under Kerberos, a client sends a request for a ticket to the 
   Key Distribution Center (KDC). The KDC creates a ticket-granting 
   ticket (TGT) for the client, encrypts it using the client's 
   password as the key, and sends the encrypted TGT back to the 
   client. The client then attempts to decrypt the TGT, using
   its password. If the client successfully decrypts the TGT, it 
   keeps the decrypted TGT, which indicates proof of the client's 
   identity. The TGT permits the client to obtain additional tickets, 
   which give permission for specific services.
       Since Kerberos negotiates authenticated, and optionally encrypted,   
   communications between two points anywhere on the internet, it
   provides a layer of security that is not dependent on which side of a
   firewall either client is on.
       The Kerberos V5 package is designed to be easy to use. Most of the  
   commands are nearly identical to UNIX network programs you are already
   used to. Kerberos V5 is a single-sign-on system, which means that you 
   have to type your password only once per session, and Kerberos does   
   the authenticating and encrypting transparently.  

Jacques Vidrine <n@nectar.com>
SVNWeb : Main Web Site : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required To Build:
  1. devel/m4
  2. security/openssl
  3. devel/gmake
  4. devel/libtool
  5. security/openssl
  6. lang/perl5.16
Required To Run:
  1. security/openssl
  2. security/openssl
Required Libraries:
  1. devel/gettext

This port is required by:

for Build for Libraries for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

To install the port: cd /usr/ports/security/krb5/ && make install clean
To add the package: pkg install security/krb5


Configuration Options
===> The following configuration options are available for krb5-1.12.2:
     DNS_FOR_REALM=off: Enable DNS lookups for Kerberos realm names
     KRB5_HTML=on: Install krb5 HTML documentation
     KRB5_PDF=on: Install krb5 PDF documentation
     LDAP=off: LDAP protocol support
     READLINE=off: Command line editing via libreadline
===> Use 'make config' to modify these settings

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/
  2. http://web.mit.edu/kerberos/dist/krb5/1.12/

Number of commits found: 181 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
13 Aug 2014 18:32:03
Original commit files touched by this commit  1.12.2
Revision:364798
cy search for other commits by this committer
Update 1.12.1 --> 1.12.2.

Add readline non-default option.
29 Jul 2014 14:30:10
Original commit files touched by this commit  1.12.1_4
Revision:363328
adamw search for other commits by this committer
Rename security/ patches to reflect the files they modify.
24 Jul 2014 18:34:16
Original commit files touched by this commit  1.12.1_4
Revision:362835
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
27 May 2014 19:59:41
Original commit files touched by this commit  1.12.1_3
Revision:355569
cy search for other commits by this committer
Fix build when KRB5_HOME != LOCALBASE.

Submitted by:	hrs
06 May 2014 04:04:30
Original commit files touched by this commit  1.12.1_3
Revision:353055
cy search for other commits by this committer
Allow package build (make stage/make package) for non-root user.

Submitted by:	John Hein <john.hein@microsemi.com>
24 Apr 2014 03:53:30
Original commit files touched by this commit  1.12.1_3
Revision:351983
cy search for other commits by this committer
Finely tune KRB5_HOME test when using LIB_DEPENDS. in the case when
KRB5_HOME is set to LOCALBASE.
23 Apr 2014 02:55:24
Original commit files touched by this commit  1.12.1_3
Revision:351910
cy search for other commits by this committer
Remove extraneious MAN assignments.
21 Apr 2014 15:55:08
Original commit files touched by this commit  1.12.1_3
Revision:351689
brd search for other commits by this committer
- Add a startup script for kpropd

PR:		183502
Submitted by:	brd@
Approved by:	bdrewery@
19 Apr 2014 03:45:41
Original commit files touched by this commit  1.12.1_2
Revision:351580
cy search for other commits by this committer
Fix new patch.

Point hat to:	self
18 Apr 2014 02:21:57
Original commit files touched by this commit  1.12.1_1
Revision:351512
cy search for other commits by this committer
KRB5_HOME no longer works with LIB_DEPENDS. Mark broken when set.
17 Apr 2014 20:06:33
Original commit files touched by this commit  1.12.1_1
Revision:351495
cy search for other commits by this committer
1. Fix build when using clang 3.4.
2. RTM_OLDADD and RTM_OLDDEL were removed from -stable. Thanks alfred@ for
   this patch.
3. Stagify.

Submitted by:	alfred (#2)
16 Jan 2014 13:49:42
Original commit files touched by this commit  1.12.1
Revision:339911
cy search for other commits by this committer
Update 1.12 --> 1.12.1
12 Dec 2013 05:19:57
Original commit files touched by this commit  1.12
Revision:336247
cy search for other commits by this committer
Update krb5 to 1.12. Security/krb5 tracks MIT KRB5 current release.

Adjust the newly created krb5-maint with a new portname and conflicts.
Krb5-maint is a maintenance release for those who wish to use the previous
release of krb5. krb5-maint remains at 1.11.3.

Adjust CONFLICTS in security/heimdal and security/srp to account for the
newly repocopied krb5-maint.

Adjust security/Makefile to include krb5-maint.
11 Dec 2013 20:50:17
Original commit files touched by this commit  1.11.3_2
Revision:336221
cy search for other commits by this committer
pkg-plist fixup.
11 Dec 2013 03:45:23
Original commit files touched by this commit  1.11.3_2
Revision:336138
cy search for other commits by this committer
Add LDAP support.

PR:		184557
Submitted by:	Erick Turnquist <jhujhiti@adjectivism.org>
20 Sep 2013 22:55:26
Original commit files touched by this commit  1.11.3_1
Revision:327769
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
16 Sep 2013 16:58:42
Original commit files touched by this commit  1.11.3_1
Revision:327417
bapt search for other commits by this committer
Convert to new perl framework
Convert USE_GMAKE to USES=gmake
21 Jun 2013 16:40:56
Original commit files touched by this commit  1.11.3_1
Revision:321478
antoine search for other commits by this committer
Add an empty directory created by the port to pkg-plist

Approved by:	portmgr (miwi)
04 Jun 2013 04:45:23
Original commit files touched by this commit  1.11.3
Revision:319823
cy search for other commits by this committer
Update krb5 1.11.2 --> 1.11.3.

This is a bugfix release.

* Fix a UDP ping-pong vulnerability in the kpasswd (password changing)
  service.  [CVE-2002-2443]

* Improve interoperability with some Windows native PKINIT clients.

Security:	CVE-2002-2443
24 Apr 2013 18:10:32
Original commit files touched by this commit  1.11.2
Revision:316464 This port version is marked as vulnerable.
ak search for other commits by this committer
- Convert USE_GETTEXT to USES (part 3)

Approved by:	portmgr (bapt)
17 Apr 2013 00:41:38
Original commit files touched by this commit  1.11.2
Revision:315921 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.11.1 --> 1.11.2

Major changes in 1.11.2 (2013-04-12)
====================================

This is a bugfix release.

* Incremental propagation could erroneously act as if a slave's
  database were current after the slave received a full dump that
  failed to load.

* gss_import_sec_context incorrectly set internal state that
  identifies whether an imported context is from an interposer
  mechanism or from the underlying mechanism.

Feature safe:	yes
29 Mar 2013 19:33:42
Original commit files touched by this commit  1.11.1_1
Revision:315566 This port version is marked as vulnerable.
cs search for other commits by this committer
- Remove A/An in COMMENT
- Trim Header where applicable
05 Mar 2013 16:10:39
Original commit files touched by this commit  1.11.1_1
Revision:313458 This port version is marked as vulnerable.
cy search for other commits by this committer
Reset ulog if database load failed.
Avoids a slave reporting it is current when a full resync fails.

Obtained
from:	https://github.com/rbasch/krb5/commit/2ef5ae0607d1c317a936e439b4be7a6f5184dc
22 Feb 2013 20:03:17
Original commit files touched by this commit  1.11.1
Revision:312788 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.11 --> 1.11.1.

Security:	Fix a null pointer dereference in the KDC PKINIT code [CVE-2013-1415].
24 Jan 2013 14:15:26
Original commit files touched by this commit  1.11
Revision:310931 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix verto.h missing build error on some systems.

The following contributed by mandree@:
	- Header standardization.

	- Make use of OptionsNG.

	- Make portlint happy.
22 Jan 2013 04:03:18
Original commit files touched by this commit  1.11
Revision:310802 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.10.3 --> 1.11
04 Nov 2012 02:10:50
Original commit files touched by this commit  1.10.3_1
Revision:306950 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix plist.

Feature safe:	yes
03 Nov 2012 18:59:38
Original commit files touched by this commit  1.10.3
Revision:306935 This port version is marked as vulnerable.
cy search for other commits by this committer
Update krb5 1.9.2 --> 1.10.3

Feature safe:	yes
09 Jul 2012 19:20:09
Original commit files touched by this commit  1.9.2_3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix build of security/krb5 with clang.

PR:             169740
Submitted by:           Niclas Zeising <zeising@daemonic.se>
01 Jun 2012 05:26:28
Original commit files touched by this commit  1.9.2_3
 This port version is marked as vulnerable.
dinoex search for other commits by this committer
- update png to 1.5.10
06 Apr 2012 07:41:20
Original commit files touched by this commit  1.9.2_2
 This port version is marked as vulnerable.
pav search for other commits by this committer
- pointyhat kludge - tetex drags in port-OpenSSL on 7.X, but only as a build
  dependency. Yet this triggers autodetection code in bsd.openssl.mk and
  OpenSSL dependency is registered with the resulting package, creating a
  discord between INDEX and actual package. Work around by explicitly recording
  the dependency in a way that INDEX build will see.

OK'ed by:       cy (maintainer)
Feature safe:   yes
14 Dec 2011 04:33:23
Original commit files touched by this commit  1.9.2_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
PORTREVISION bump.

PR:             163272
Feature safe:   yes
14 Dec 2011 04:31:22
Original commit files touched by this commit  1.9.2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply patch for MITKRB5-SA-2011-007, KDC null pointer dereference in TGS
handling.

PR:             163272
Submitted by:   zi
Security:       6c7d9a35-2608-11e1-89b4-001ec9578670
Feature safe:   yes
16 Nov 2011 20:38:49
Original commit files touched by this commit  1.9.2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.9.1 --> 1.9.2. This is a bugfix release.

Feature safe:   yes
06 Sep 2011 15:55:36
Original commit files touched by this commit  1.9.1_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply patch from MIT KRB5 GIT tree commit: 043533c2f13d2bc69316.

libgssrpc was ignorant of the remote address of the kadmin socket,
even when it's IPv4.  This made old-style GSSAPI authentication fail
because it uses the wrong channel bindings.  Fix this problem by making
clnttcp_create() get the remote address from the socket using getpeername()
if the caller doesn't provide it and it's an IPv4 address.

PR:             160500
Submitted by:   Ben Kaduk <kaduk@mit.edu>
30 Jun 2011 04:03:11
Original commit files touched by this commit  1.9.1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.9 --> 1.9.1.

PR:             158520
Submitted by:   Ryan Steinmetz <rpsfa@rit.edu>
14 Apr 2011 00:39:26
Original commit files touched by this commit  1.9_5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply patch for MITKRB5-SA-2011-004, kadmind invalid pointer free()
[CVE-2011-0285]

Security:       MITKRB5-SA-2011-004, CVE-2011-0285
Feature safe:   yes
08 Apr 2011 21:03:14
Original commit files touched by this commit  1.9_4
 This port version is marked as vulnerable.
cy search for other commits by this committer
Bump PORTREVISION.
08 Apr 2011 21:02:41
Original commit files touched by this commit  1.9_3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Adjust krb5-config when $KRB5_HOME is specified. This will allow applications
linking aganst the MIT krb5 libraries to link using the correct ones.
25 Mar 2011 00:19:02
Original commit files touched by this commit  1.9_3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply patch for MITKRB5-SA-2011-003, KDC vulnerable to double-free when
PKINIT enabled.

Obtained from:  http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-003.txt
Security:       MITKRB5-SA-2011-003, CVE-2011-0284
Feature safe:   yes
11 Feb 2011 01:04:09
Original commit files touched by this commit  1.9_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply fixes for kpropd denial of service (MITKRB5-SA-2011-001) and KDC
denial of service (MITKRB5-SA-2011-002).

Security:       MITKRB5-SA-2011-001 (CVE-2010-4022),
                MITKRB5-SA-2011-002 (CVE-2011-0281)
18 Jan 2011 15:06:25
Original commit files touched by this commit  1.9_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Remove the OpenSSL port requirement. The base OpenSSL will work too.

Feature safe:   yes
23 Dec 2010 01:04:41
Original commit files touched by this commit  1.9
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update from 1.8.3_2 to 1.9.
04 Dec 2010 07:34:27
Original commit files touched by this commit  1.8.3_2
 This port version is marked as vulnerable.
ade search for other commits by this committer
Sync to new bsd.autotools.mk
02 Dec 2010 02:09:23
Original commit files touched by this commit  1.8.3_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix security vulnerabilities CVE-2010-1324, CVE-2010-1323, CVE-2010-4020,
CVE-2010-4021, and CVE-2010-1322.

PR:             152755
Submitted by:   wollman
Security:       CVE-2010-1324, CVE-2010-1323, CVE-2010-4020, CVE-2010-4021,
                and CVE-2010-1322.
Feature safe:   Yes
04 Nov 2010 04:37:36
Original commit files touched by this commit  1.8.3_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Enable ksu DEBUG (-D) flag.
05 Aug 2010 22:37:11
Original commit files touched by this commit  1.8.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update to 1.8.3.

PR:             149299
Submitted by:   gwollman
25 May 2010 05:14:16
Original commit files touched by this commit  1.8.1_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Apply patch for MIT KRB5 security vulnerability MITKRB5-SA-2010-005.

PR:             146939
Submitted by:   wollman
Security:       MIT krb5 Security Advisory 2010-005
24 May 2010 00:01:05
Original commit files touched by this commit  1.8.1
 This port version is marked as vulnerable.
pgollucci search for other commits by this committer
- No longer broken on -current b/c of utmpx changes

PR:             ports/146384
Submitted by:   pgollucci@ (myself), others
Approved by:    maintainer timeout (cy@, 16 days)
26 Apr 2010 03:48:43
Original commit files touched by this commit  1.8.1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Welcome the new krb5-1.8.1. Significant changes include the removal of
the MIT KRB5 applications (now in a separate tarball and port).
26 Apr 2010 03:23:08
Original commit files touched by this commit  1.7_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
MFkrb5-17.
14 Apr 2010 20:21:10
Original commit files touched by this commit  1.6.3_9
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Mark BROKEN: does not compile

Reported by:    pointyhat
28 Mar 2010 06:47:48
Original commit files touched by this commit  1.6.3_9
 This port version is marked as vulnerable.
dinoex search for other commits by this committer
- update to 1.4.1
Reviewed by:    exp8 run on pointyhat
Supported by:   miwi
17 Mar 2010 06:48:40
Original commit files touched by this commit  1.6.3_8
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Mark BROKEN: fails to build with new utmpx

Reported by:    pointyhat
05 Feb 2010 11:46:55
Original commit files touched by this commit  1.6.3_8
 This port version is marked as vulnerable.
dinoex search for other commits by this committer
- update to jpeg-8
13 Oct 2009 21:37:19
Original commit files touched by this commit  1.6.3_7
 This port version is marked as vulnerable.
cy search for other commits by this committer
Remove commented out option from a bygone era.
28 Aug 2009 20:02:01
Original commit files touched by this commit  1.6.3_7
 This port version is marked as vulnerable.
cy search for other commits by this committer
Remove redundant length check.
02 Aug 2009 19:36:34
Original commit files touched by this commit  1.6.3_6
 This port version is marked as vulnerable.
mezz search for other commits by this committer
-Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.
-Update libtool and libltdl to 2.2.6a.
-Remove devel/libtool15 and devel/libltdl15.
-Fix ports build with libtool22/libltdl22.
-Bump ports that depend on libltdl22 due to shared library version change.
-Explain what to do update in the UPDATING.

It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop
and applications in the runtime.

With help:      marcus and kwm
Pointyhat-exp:  a few times by pav
Tested by:      pgollucci, "Romain Tartière" <romain@blogreen.org>, and
                a few MarcusCom CVS users. Also, I might have missed a few.
Repocopy by:    marcus
Approved by:    portmgr
31 Jul 2009 13:57:52
Original commit files touched by this commit  1.6.3_6
 This port version is marked as vulnerable.
dinoex search for other commits by this committer
- bump all port that indirectly depends on libjpeg and have not yet been bumped
or updated
Requested by:   edwin
23 May 2008 21:01:58
Original commit files touched by this commit  1.6.3_5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Convert missing WANT_KRB5_DOC pieces.

Add HTML documentation OPTION knob.
14 May 2008 23:06:14
Original commit files touched by this commit  1.6.3_5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Implement OPTIONS menu.

Implement options that will allow the user to:

        - rename ftp and ftpd to kftp and kftpd
        - rename telnet and telnetd to ktelnet and ktelnetd
        - rename rlogin to krlogin
        - rename rsh to krsh
        - rename rcp to krcp

This avoids shadowing by or being shadowed by, depending on one's PATH,
system utilities of the same name.
19 Mar 2008 19:26:53
Original commit files touched by this commit  1.6.3_5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fixes for multiple vulnerabilities.

Security:       US-CERT Technical Cyber Security Alert TA08-079B --
                        MIT Kerberos Updates for Multiple Vulnerabilities
                US-CERT Vulnerability Note VU#895609,
                US-CERT Vulnerability Note VU#374121
                MIT krb5 Security Advisory 2008-001
                MIT krb5 Security Advisory 2008-002
06 Jan 2008 14:53:30
Original commit files touched by this commit  1.6.3_4
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix pkinit install brokenness under 5.5 and 6.2.

Approved by:    portmgr (linimon)
24 Nov 2007 23:14:35
Original commit files touched by this commit  1.6.3_3
 This port version is marked as vulnerable.
linimon search for other commits by this committer
Mark as broken: fails to install.

Approved by:    portmgr (self)
29 Oct 2007 23:23:27
Original commit files touched by this commit  1.6.3_3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix build for OpenSSL 0.9.8.

PR:             117552
Submitted by:   Hirohisa Yamaguchi <umq@umo.co.jp>
29 Oct 2007 22:49:49
Original commit files touched by this commit  1.6.3_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix build under 7.0-PRERELEASE.
25 Oct 2007 21:15:23
Original commit files touched by this commit  1.6.3_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix erroneous patch.

PR:             117469
Submitted by:   Karen Andrews <dearmiss@optusnet.com.au>
23 Oct 2007 03:41:37
Original commit files touched by this commit  1.6.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.6.2 --> 1.6.3

Security:       fix CVE-2007-3999, CVE-2007-4743 svc_auth_gss.c buffer overflow
                fix CVE-2007-4000 modify_policy vulnerability

Also:           add PKINIT support
11 Sep 2007 23:52:19
Original commit files touched by this commit  1.6.2_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Patch for MIT krb5 Security Advisory 2007-006 - kadmind RPC lib buffer
overflow, uninitialized pointer
Security:       MIT krb5 Security Advisory 2007-006
11 Jul 2007 16:51:31
Original commit files touched by this commit  1.6.2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.6.1 --> 1.6.2
26 Jun 2007 23:01:44
Original commit files touched by this commit  1.6.1_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Patches for:

MITKRB5-SA-2007-004: kadmind affected by multiple RPC library vulnerabilities
MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow

Security:       US CERT Technical Cyber Security Alert TA07-177A --
                MIT Kerberos Vulnerabilities
19 May 2007 20:32:57
Original commit files touched by this commit  1.6.1_1
 This port version is marked as vulnerable.
flz search for other commits by this committer
- Welcome X.org 7.2 \o/.
- Set X11BASE to ${LOCALBASE} for recent ${OSVERSION}.
- Bump PORTREVISION for ports intalling files in ${X11BASE}.
02 May 2007 21:17:33
Original commit files touched by this commit  1.6.1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Remove defunct (zero length) patch files.

Pointy hat to:          yours truly
23 Apr 2007 22:10:09
Original commit files touched by this commit  1.6.1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update from 1.6 to 1.6.1.
04 Apr 2007 21:12:17
Original commit files touched by this commit  1.6_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
MIT KRB5 Security patches:

1. MIT krb5 Security Advisory 2007-001: Telnetd allows login as arbitrary user
   CVE: CVE-2007-0956
   CERT: VU#220816

2. MIT krb5 Security Advisory 2007-002: KDC, kadmind stack overflow in
krb5_klog_syslog
   CVE: CVE-2007-0957
   CERT: VU#704024
04 Apr 2007 01:40:12
Original commit files touched by this commit  1.6_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix double-free vulnerability in kadmind (via GSS-API library).

Obtained from:  MIT krb5 Security Advisory 2007-003
Security:       US-CERT Technical Cyber Security Alert TA07-093B -- MIT Kerberos
Vulnerabilities
28 Mar 2007 17:32:00
Original commit files touched by this commit  1.6
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Fix after objformat removal

Reported by:    pointyhat
30 Jan 2007 10:25:34
Original commit files touched by this commit  1.6
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Remove support for a.out format and PORTOBJFORMAT variable from individual
  ports

With hat:       portmgr
15 Jan 2007 03:08:17
Original commit files touched by this commit  1.6
 This port version is marked as vulnerable.
cy search for other commits by this committer
Change a dependency from teTeX-base to the smaller texinfo.
14 Jan 2007 05:13:32
Original commit files touched by this commit  1.6
 This port version is marked as vulnerable.
cy search for other commits by this committer
Include new documentation dependencies.

Conditionally build and install documentation using a new knob.
10 Jan 2007 05:06:46
Original commit files touched by this commit  1.6
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.5.1 --> 1.6

Security:       MITKRB5-SA-2006-002,  MITKRB5-SA-2006-003, and
                US-CERT Technical Cyber Security Alert TA07-009B
14 Nov 2006 02:06:07
Original commit files touched by this commit  1.5.1_1
 This port version is marked as vulnerable.
laszlof search for other commits by this committer
Register conflicts for srp in security/heimdal, security/krb4, and
securiry/krb5.
Bump PORTREVISION accordingly.

PR:             ports/105442
Submitted by:   Ruben van Staveren <ruben@verweg.com>
Reviewed by:    shaun@, cy@
Approved by:    flz (mentor)
17 Sep 2006 00:48:42
Original commit files touched by this commit  1.5.1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update krb5-1.5 --> krb5-1.5.1

Submitted by:   Paul Vixie <paul@vix.com>
16 Jul 2006 17:49:46
Original commit files touched by this commit  1.5_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Cause the KDC to also listen on the loopback interface. This is useful
for situations when the database is replicated to a secure environment
that does not have network access, by hand.
16 Jul 2006 16:15:09
Original commit files touched by this commit  1.5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix plugin loader. This fixes krb5kdc and kdb5_util.
14 Jul 2006 18:37:11
Original commit files touched by this commit  1.5
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.4.3 --> 1.5
13 May 2006 04:15:53
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Remove USE_REINPLACE from all categories starting with S
23 Feb 2006 10:40:45
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
ade search for other commits by this committer
Conversion to a single libtool environment.

Approved by:    portmgr (kris)
24 Jan 2006 01:03:33
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
edwin search for other commits by this committer
SHA256ify

Approved by: krion@
05 Dec 2005 02:34:07
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Remove install-info from Makefile, it's automatically done when INFO is defined
04 Dec 2005 10:58:19
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Add INFO macro
25 Nov 2005 19:40:48
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Improve runtime performance on Sparc 64 platform.
23 Nov 2005 21:57:18
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix the Sparc 64 build.
22 Nov 2005 22:01:58
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Flag Sparc64 build as broken.
18 Nov 2005 00:38:05
Original commit files touched by this commit  1.4.3
 This port version is marked as vulnerable.
cy search for other commits by this committer
Update 1.4.2 --> 1.4.3
15 Nov 2005 06:52:12
Original commit files touched by this commit  1.4.2_2
 This port version is marked as vulnerable.
ade search for other commits by this committer
Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.
08 Nov 2005 18:51:23
Original commit files touched by this commit  1.4.2_2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix FreeBSD-4.11 build problem

PR:             87888
01 Nov 2005 04:01:11
Original commit files touched by this commit  1.4.2_1
 This port version is marked as vulnerable.
cy search for other commits by this committer
Fix makeinfo problem under FreeBSD-6.0.
31 Oct 2005 21:39:16
Original commit files touched by this commit  1.4.2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Makeinfo 4.8 problem.
29 Oct 2005 18:45:28
Original commit files touched by this commit  1.4.2
 This port version is marked as vulnerable.
cy search for other commits by this committer
Relocate BROKEN conditional.

Number of commits found: 181 (showing only 100 on this page)

1 | 2  »  

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
chromiumAug 26
fileAug 21
py-djangoAug 21
py-django-develAug 21
py-django14Aug 21
py-django15Aug 21
php53Aug 18
phpmyadminAug 17
chromiumAug 13
serfAug 11
subversionAug 11
subversion17Aug 11
nginxAug 09
nginx-develAug 09
mingw32-opensslAug 06

6 vulnerabilities affecting 9 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24040
Broken 145
Deprecated 174
Ignore 416
Forbidden 17
Restricted 212
No CDROM 94
Vulnerable 23
Expired 91
Set to expire 163
Interactive 0
new 24 hours 4
new 48 hours9
new 7 days34
new fortnight87
new month261

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.