FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
opensaml2 Open source implementation of SAML2
2.6.0_1 security on this many watch lists=0 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: girgen@FreeBSD.org search for ports maintained by this maintainer
Port Added: 22 Nov 2008 15:54:44
License: not specified in port
OpenSAML 2, a re-rewrite of OpenSAML 1, supports SAML 1.0, 1.1, 2.0 but is
not backwards compatible with OpenSAML 1.

WWW: https://wiki.shibboleth.net/confluence/display/OpenSAML/Home
SVNWeb : Homepage : PortsMon

To install the port: cd /usr/ports/security/opensaml2/ && make install clean
To add the package: pkg install opensaml2

PKGNAME: opensaml2

distinfo:

TIMESTAMP = 1473589706
SHA256 (opensaml-2.6.0.tar.bz2) = 8bd2a7521dc372bcb92f8bc3fec301fb2ccecfad8bfb99052d6eb76b576250fd
SIZE (opensaml-2.6.0.tar.bz2) = 557977


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. boost-libs>=0 : devel/boost-libs
  2. gmake : devel/gmake
  3. pkgconf>=0.9.10 : devel/pkgconf
Library dependencies:
  1. libcurl.so : ftp/curl
  2. liblog4shib.so : devel/log4shib
  3. libxml-security-c.so : security/apache-xml-security-c
  4. libxerces-c.so : textproc/xerces-c3
  5. libxmltooling.so : devel/xmltooling

This port is required by:

for Libraries * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for opensaml2-2.6.0_1:
     DOCS=on: Build and/or install documentation
===> Use 'make config' to modify these settings

USES:
gmake libtool pkgconfig tar:bzip2

Master Sites:
  1. http://shibboleth.net/downloads/c++-opensaml/2.6.0/

Number of commits found: 33

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
23 Nov 2016 12:45:47
Original commit files touched by this commit  2.6.0_1
Revision:426908
jbeich search for other commits by this committer
devel/boost-*: update to 1.62.0

- Enable `long double` C99 math usage
- Switch 9.x back to building with GCC

Changes:	http://www.boost.org/users/history/
PR:		199601
Submitted by:	Chen Xu, bapt, amdmi3, truckman (based on)
Reviewed by:	rakuco (kde) (earlier version)
Exp-run by:	antoine (3 tries), truckman (consumers only, earlier versions)
Approved by:	bapt (office)
11 Sep 2016 21:52:18
Original commit files touched by this commit  2.6.0
Revision:421878
girgen search for other commits by this committer
Upgrade shibboleth-sp 2.6 and its tool chain
19 May 2016 10:53:06
Original commit files touched by this commit  2.5.5
Revision:415500
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-descrs, categories [p-x]*

Approved by:	portmgr blanket
01 Apr 2016 14:25:18
Original commit files touched by this commit  2.5.5
Revision:412349
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight
03 Sep 2015 14:09:18
Original commit files touched by this commit  2.5.5
Revision:395960
amdmi3 search for other commits by this committer
- Switch to options helpers
- Add some NO_ARCHes
- Fix and unsilence some installation commands
- Other minor fixes

Approved by:	portmgr blanket
23 Jul 2015 13:21:06
Original commit files touched by this commit  2.5.5
Revision:392720
girgen search for other commits by this committer
Shibboleth SP software crashes on well-formed but invalid XML.

The Service Provider software contains a code path with an uncaught
exception that can be triggered by an unauthenticated attacker by
supplying well-formed but schema-invalid XML in the form of SAML
metadata or SAML protocol messages. The result is a crash and so
causes a denial of service.

You must rebuild opensaml and shibboleth with xmltooling-1.5.5 or later.
The easiest way to do so is to update the whole chain including
shibboleth-2.5.5 an opensaml2.5.5.

URL:    	http://shibboleth.net/community/advisories/secadv_20150721.txt
Security:	CVE-2015-2684
22 May 2015 22:24:40
Original commit files touched by this commit  2.5.4
Revision:387087 This port version is marked as vulnerable.
girgen search for other commits by this committer
Update Shibboleth and opensaml to latest version.
22 May 2015 20:34:29
Original commit files touched by this commit  2.5.3_2
Revision:387082 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove $FreeBSD$ from patches files everywhere.

With hat:	portmgr
Sponsored by:	Absolight
08 May 2015 12:32:44
Original commit files touched by this commit  2.5.3_2
Revision:385773 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add empty directory to plist

Approved by:	portmgr blanket
16 Jan 2015 16:36:37
Original commit files touched by this commit  2.5.3_2
Revision:377188 This port version is marked as vulnerable.
tijl search for other commits by this committer
Add USES=libtool
14 Jul 2014 18:42:04
Original commit files touched by this commit  2.5.3_1
Revision:361812 This port version is marked as vulnerable.
bapt search for other commits by this committer
Modernize LIB_DEPENDS

With hat:	portmgr
04 Jul 2014 22:17:12
Original commit files touched by this commit  2.5.3_1
Revision:360671 This port version is marked as vulnerable.
adamw search for other commits by this committer
Remove NOPORTDOCS and NOPORTEXAMPLES.
09 Mar 2014 14:39:38
Original commit files touched by this commit  2.5.3_1
Revision:347614 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Stage support
20 Sep 2013 22:55:26
Original commit files touched by this commit  2.5.3_1
Revision:327769 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
02 Sep 2013 06:20:10
Original commit files touched by this commit  2.5.3_1
Revision:325939 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add an expicit dependency on pkgconf
11 Jul 2013 16:26:27
Original commit files touched by this commit  2.5.3_1
Revision:322783 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Update to 7.31.0
- Bump PORTREVISION for ftp/curl shlib change
- Add TEST_DEPENDS
- Convert to new options framework
- Adjust options:
  - Add COOKIES
  - Add CYASSL, NSS, POLARSSL, THREADED_RESOLVER, TLS_SRP [1]
  - Add GSSAPI and SPNEGO [2]
  - Remove KERBEROS4
  - Rename LIBIDN to IDN
  - Remove TRACKMEMORY [1]
- Sort option handler
- Add SLAVEDIRS: ftp/curl-hiphop
- Cosmetic change
- Cleanup Makefile header
- While I'm here, fix typo (PORTREVSION) in x11-wm/ede/Makefile

Changes:	http://curl.haxx.se/changes.html
PR:		ports/172325 (-exp run), ports/177369 (based on) [1]
Submitted by:	Hirohisa Yamaguchi <umq@ueo.co.jp> [1], hrs (via email) [2]
Exp run by:	miwi
18 Jun 2013 15:15:48
Original commit files touched by this commit  2.5.3
Revision:321194 This port version is marked as vulnerable.
girgen search for other commits by this committer
Security update for apache-xml-security-c.
Dependant ports, especially shibboleth2-sp, opensaml2, xmltooling
and log4shib should all be updated.

Security: CVE-2013-2156
09 Jun 2013 14:41:25
Original commit files touched by this commit  2.5.2
Revision:320338 This port version is marked as vulnerable.
girgen search for other commits by this committer
Add build dependency on boost for shibboleth and opensaml.
PR:	ports/179431
04 Jun 2013 17:29:21
Original commit files touched by this commit  2.5.2
Revision:319885 This port version is marked as vulnerable.
girgen search for other commits by this committer
Update Shibboleth-sp and its tool chain to 2.5.1.

Note that from 2.5, shibd is run as the user shibd.  The port tries to fix the
key file ownership but if you have changed the file name of the key from the
default sp-key.pem, make sure you chown your key file(s) to user shibd.

Also, take maintainership of the entire tool chain (approved by all previous
maintainers).

Incorporates the ideas suggested by Craig Leres [177668], making sure that the
ssl key is not added to the package.

PR:	177668, 178694
09 Jan 2013 19:50:06
Original commit files touched by this commit  2.4.3_1
Revision:310162 This port version is marked as vulnerable.
tabthorpe search for other commits by this committer
- Change MAINTAINER address
- Trim headers while I am here
- Clean up some trailing whitespace
02 Aug 2012 09:02:45
Original commit files touched by this commit  2.4.3_1
 This port version is marked as vulnerable.
cs search for other commits by this committer
- Fix typos in COMMENT
- Enforce the now clarified rules from the Porter's Handbook (e.g. no dots, no
  A/An, etc.)
13 Aug 2011 15:31:57
Original commit files touched by this commit  2.4.3_1
 This port version is marked as vulnerable.
swills search for other commits by this committer
- Use xerces-c 3 [1]
- Pass maintainership back to Janos Mohacsi <janos.mohacsi@bsd.hu> [2]

PR:             ports/159715 [1]
Submitted by:   Janos Mohacsi <janos.mohacsi@bsd.hu> [1]
Approved by:    maintainer (me) [2]
28 Jul 2011 11:50:51
Original commit files touched by this commit  2.4.3
 This port version is marked as vulnerable.
swills search for other commits by this committer
- Update to 2.4.3 to fix security issue
- Update home page while here
- Take maintainership while here

Approved by:    linimon
Security:       CVE-2011-1411
01 Jul 2011 00:49:48
Original commit files touched by this commit  2.4.1
 This port version is marked as vulnerable.
swills search for other commits by this committer
- Add another forgotten patch

Reported by:    pavmail
27 Jun 2011 02:57:29
Original commit files touched by this commit  2.4.1
 This port version is marked as vulnerable.
swills search for other commits by this committer
- Update to latest versions

PR:             ports/157822
Submited by:    Palle Girgensohn <girgen@FreeBSD.org>
Approved by:    maintainer timeout
03 Apr 2010 10:44:36
Original commit files touched by this commit  2.3_1
 This port version is marked as vulnerable.
roam search for other commits by this committer
Chase the ftp/curl shlib version bump.
24 Jan 2010 14:38:32
Original commit files touched by this commit  2.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 2.3

PR:             ports/142325
Submitted by:   Steve Wills <steve@mouf.net>
Approved by:    maintainer timeout
15 Jan 2010 18:34:31
Original commit files touched by this commit  2.2_1
 This port version is marked as vulnerable.
erwin search for other commits by this committer
Chase xmltooling shared lib

Forgotten by:   pgollucci
Submitted by:   pointyhat
10 Jul 2009 01:16:10
Original commit files touched by this commit  2.2
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 2.2

PR:             ports/136032
Submitted by:   Steve Wills <steve@mouf.net>
Approved by:    maintainer
23 Jan 2009 15:43:14
Original commit files touched by this commit  2.1_1
 This port version is marked as vulnerable.
roam search for other commits by this committer
Bump the version of the curl shared library after the ftp/curl update
to 7.19.2.
Bump PORTREVISION, even on the ports that do not have a versioned
dependency, since the binaries will most probably still stop working.
22 Nov 2008 15:56:15
Original commit files touched by this commit  2.1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Add missing patch
22 Nov 2008 15:55:56
Original commit files touched by this commit  2.1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 2.1

PR:             127400
Submitted by:   Janos Mohacsi <janos.mohacsi@bsd.hu>
22 Nov 2008 15:54:19
Original commit files touched by this commit  1.1.1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Force commit
        Repocopy from security/opensaml to security/opensaml2

Number of commits found: 33

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
firefoxDec 01
firefox-esrDec 01
libxulDec 01
linux-firefoxDec 01
linux-thunderbirdDec 01
thunderbirdDec 01
tsharkDec 01
tshark-liteDec 01
wiresharkDec 01
wireshark-liteDec 01
wireshark-qt5Dec 01
expat2*Nov 30
expat2*Nov 30
gnupg1*Nov 30
libgcrypt*Nov 30

18 vulnerabilities affecting 59 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26916
Broken 314
Deprecated 151
Ignore 577
Forbidden 1
Restricted 213
No CDROM 82
Vulnerable 58
Expired 13
Set to expire 130
Interactive 0
new 24 hours 6
new 48 hours23
new 7 days56
new fortnight116
new month279

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.