notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Search FreshPorts using Google
not searching src

The FreshPorts Search


Include deleted ports Case sensitive search Sort by:
Include /src tree
Output format:
HTML
Plain Text
Maximum Effort Minimal output
Branch:

Notes

  • Case sensitivity is ignored for "sounds like" and output is ordered by the soundex.
  • When searching on 'Message ID', the type of match is ignored.
  • When searching on 'Commit Message' only 'containing' is used.
  • When searching by 'Under a pathname', your path must start with something like /ports/, /doc/, or /src/. All commits under that point will be returned. The selected match type is ignored and defaults to 'Starts with'.
  • Searching for 'sounds like' is only valid for Committer, Maintainer, Package Name, and Port Name.
Number of commits: 106 (showing only 100 on this page) 1 | 2  »  
Wed, 16 Oct 2019
[ 01:24 leres ] Original commit 
bro 2.6.4_1 security files touched by this commit System for detecting network intruders in real-time
security/bro: Deprecate BROCCOLI

Broccoli is deprecated in favor of broker; flag this in the BROCCOLI
option description and change the BROCTL option to imply BROKER.

PR:		240909
Submitted by:	Jeremy Baggs
Approved by:	ler (mentor, implicit)
Wed, 25 Sep 2019
[ 20:03 leres ] Original commit 
telegraf 1.12.1_1 net-mgmt files touched by this commit Time-series data collection
net-mgmt/telegraf: Add a rc.conf option for the --config-directory option

While we're here:

 - Sort ONLY_FOR_ARCHS as per portlint
 - Match "telegraf -h" usage message (-quiet, -config -> --quiet, --config)

PR:		239291
Approved by:	girgen (maintainer timeout, 9 weeks), matthew (mentor, implicit)
Wed, 18 Sep 2019
[ 17:16 leres ] Original commit 
bro 2.6.4 security files touched by this commit System for detecting network intruders in real-time
MFH: r512245

security/bro: Update to 2.6.4 and address a potential Denial of
Service vulnerability:

  
https://raw.githubusercontent.com/zeek/zeek/3b5a9f88ece1d274edee897837e280ef751bde94/NEWS

 - The NTLM analyzer did not properly handle AV Pair sequences that
   were either empty or unterminated, resulting in invalid memory
   access or heap buffer over-read.  The NTLM analyzer is enabled
   by default and used in the analysis of SMB, DCE/RPC, and GSSAPI
   protocols.

Approved by:	ler (mentor, implicit)
Security:	55571619-454e-4769-b1e5-28354659e152

Approved by:	ports-secteam (miwi)
Tue, 17 Sep 2019
[ 23:29 leres ] Original commit 
check_nwc_health 7.10.0.6 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Update to 7.10.0.6:

 - reduce runtime for nexus hardware-health

Reported by:	portscout
Approved by:	matthew (mentor, implicit)
[ 23:13 leres ] Original commit 
bro 2.6.4 security files touched by this commit System for detecting network intruders in real-time
security/bro: Update to 2.6.4 and address a potential Denial of
Service vulnerability:

  
https://raw.githubusercontent.com/zeek/zeek/3b5a9f88ece1d274edee897837e280ef751bde94/NEWS

 - The NTLM analyzer did not properly handle AV Pair sequences that
   were either empty or unterminated, resulting in invalid memory
   access or heap buffer over-read.  The NTLM analyzer is enabled
   by default and used in the analysis of SMB, DCE/RPC, and GSSAPI
   protocols.

Approved by:	ler (mentor, implicit)
MFH:		2019Q3
Security:	55571619-454e-4769-b1e5-28354659e152
[ 22:50 leres ] Original commit 
vuxml 1.1_4 security files touched by this commit Vulnerability and eXposure Markup Language DTD
security/vuxml: Mark bro < 2.6.4 as vulnerable as per:

   
https://raw.githubusercontent.com/zeek/zeek/3b5a9f88ece1d274edee897837e280ef751bde94/NEWS

The issue is inproper data handling of data that is either either
empty or unterminated, resulting in invalid memory access or heap
buffer over-read.

Approved by:	matthew (mentor, implicit)
Mon, 26 Aug 2019
[ 17:36 leres ] Original commit 
check_nwc_health 7.10.0.5 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Update to 7.10.0.5:

 - fix EIGRP filtering

 - fix a bug in fortigate ha-role

 - fix a bug in interface-uptime

 - fix a bug in interface-uptime

 - fix a bug in mode ha-role for Fortigate

 - fix a bug in bgp/route modes for the non-standalone version
   (InetAddressMaker)

Approved by:	ler (mentor, implicit)
[ 17:24 leres ] Original commit 
caf 0.15.3_6 devel files touched by this commit C++ actor framework
devel/caf: Take maintainership

Approved by:	matthew (mentor, implicit)
Sun, 11 Aug 2019
[ 19:09 leres ] Original commit 
savvycan 199.1 net files touched by this commit CAN bus reverse engineering and capture tool
net/savvycan: This adds net/savvycan which is a CAN bus reverse
engineering and capture tool. It supports EVTV hardware, socketCAN
compatible devices, and other hardware.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D21212
Sat, 10 Aug 2019
[ 16:46 leres ] Original commit 
bro 2.6.3 security files touched by this commit System for detecting network intruders in real-time
MFH: r508458

security/bro: Update to 2.6.3 and address potential denial of service
vulnerabilities:

   
https://raw.githubusercontent.com/zeek/zeek/1d874e5548a58b3b8fd2a342fe4aa0944e779809/NEWS

 - Null pointer dereference in the RPC analysis code. RPC analyzers
   (e.g. MOUNT or NFS) are not enabled in the default configuration.

 - Signed integer overflow in BinPAC-generated parser code.  The
   result of this is Undefined Behavior with respect to the array
   bounds checking conditions that BinPAC generates, so it's
   unpredictable what an optimizing compiler may actually do under
   the assumption that signed integer overlows should never happen.
   The specific symptom which lead to finding this issue was with
   the PE analyzer causing out-of-memory crashes due to large
   allocations that were otherwise prevented when the array bounds
   checking logic was changed to prevent any possible signed integer
   overlow.

Approved by:	matthew (mentor, implicit)
Security:	f56669f5-d799-4ff5-9174-64a6d571c451

Approved by:	ports-secteam (miwi)
Fri, 9 Aug 2019
[ 16:59 leres ] Original commit 
bro 2.6.3 security files touched by this commit System for detecting network intruders in real-time
security/bro: Update to 2.6.3 and address potential denial of service
vulnerabilities:

   
https://raw.githubusercontent.com/zeek/zeek/1d874e5548a58b3b8fd2a342fe4aa0944e779809/NEWS

 - Null pointer dereference in the RPC analysis code. RPC analyzers
   (e.g. MOUNT or NFS) are not enabled in the default configuration.

 - Signed integer overflow in BinPAC-generated parser code.  The
   result of this is Undefined Behavior with respect to the array
   bounds checking conditions that BinPAC generates, so it's
   unpredictable what an optimizing compiler may actually do under
   the assumption that signed integer overlows should never happen.
   The specific symptom which lead to finding this issue was with
   the PE analyzer causing out-of-memory crashes due to large
   allocations that were otherwise prevented when the array bounds
   checking logic was changed to prevent any possible signed integer
   overlow.

Approved by:	matthew (mentor, implicit)
MFH:		2019Q3
Security:	f56669f5-d799-4ff5-9174-64a6d571c451
[ 16:47 leres ] Original commit 
vuxml 1.1_4 security files touched by this commit Vulnerability and eXposure Markup Language DTD
security/vuxml: Mark bro < 2.6.3 as vulnerable as per:

   
https://raw.githubusercontent.com/zeek/zeek/1d874e5548a58b3b8fd2a342fe4aa0944e779809/NEWS

The issues are a null pointer dereference in the RPC analysis code
and a signed integer overflow in BinPAC-generated parser code.

Approved by:	matthew (mentor, implicit)
Thu, 8 Aug 2019
[ 02:46 leres ] Original commit 
dsp 2.0.1 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
dns/dsp: Update to 2.0.1

 - add DESTDIR
 - autoreconf include fix
 - configure Perl program check
 - Update m4 scripts to latest version

PR:		239691
Submitted by:	Leo Vandewoestijne (maintainer)
Approved by:	ler (mentor, implicit)
Sun, 14 Jul 2019
[ 07:12 leres ] Original commit 
arduino-bsd-mk 1.3 devel files touched by this commit Build Arduino sketches from the command line on FreeBSD
devel/arduino-bsd-mk: Update to 1.3. From CHANGES:

 - Add ARDUINO_CXXFLAGS. Use -std=c++11 with CXXFLAGS.

Approved by:	matthew (mentor, implicit)
Thu, 4 Jul 2019
[ 16:22 leres ] Original commit 
nvi-devel 1.81.6_13 editors files touched by this commit Development snapshot of the world-renown nvi editor
editors/nvi-devel: Take maintainership. Update MASTER_SITES to use
the University of Waterloo Computer Science Club mirror (with
LOCAL/leres as a secondary) since ftp.stack.nl no longer exists.

Approved by:	Approved by: johans (maintainer timeout, 3 months and 3 consecutive
timeouts), ler (mentor, implicit)
Wed, 3 Jul 2019
[ 17:39 leres ] Original commit 
nvi-devel 1.81.6_13 editors files touched by this commit Development snapshot of the world-renown nvi editor
editors/nvi-devel: Fix DB_CREATE error and segmentation fault; add
the DB_CREATE flag when using bdb >= 4.4.

PR:		238712
Approved by:	johans (maintainer timeout, 2 weeks), matthew (mentor, implicit)
Obtained from:	Mac Ports
	https://trac.macports.org/browser/trunk/dports/editors/nvi/files/patch-common__db.h?rev=108622
Sat, 22 Jun 2019
[ 16:52 leres ] Original commit 
check_nwc_health 7.10 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Update to 7.10. From the ChangeLog:

 - remove duplicate routes (ip-table + inet-table)
 - --report long+address shows ip addresses for interfaces

Reported by:	portscout
Approved by:	ler (mentor, implicit)
[ 01:29 leres ] Original commit 
py-qrcode 6.1 textproc files touched by this commit QR Code image generator
textproc/py-qrcode: Update to 6.1. From CHANGES.rst:

 - Fix short chunks of data not being optimized to the correct mode.

 - Tests fixed for Python 3

Reported by:	portscout
Approved by:	matthew (mentor, implicit)
[ 01:23 leres ] Original commit 
check_nwc_health 7.9.0.4 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Update to 7.9.0.4. From the ChangeLog:

 - finish barracuda ha-role mode
 - detect f5 firmware versions 14+
 - fix routes. inetCidrRouteTable does not really replace ipCidrRouteTable
 - fallback to BGP4-MIB if CISCO-BGP4-MIB is incomplete
 - add EIGRP
 - fix ASA user/connection/session-count

Reported by:	portscout
Approved by:	ler (mentor, implicit)
Mon, 10 Jun 2019
[ 17:59 leres ] Original commit 
arduino-bsd-mk 1.2 devel files touched by this commit Build Arduino sketches from the command line on FreeBSD
devel/arduino-bsd-mk: Update to 1.2. Changes include:

 - Must force SIZE to be avr-size since /usr/share/mk/sys.mk is
   included so early.

 - Convert arduino-boards.py to python3.

Approved by:	matthew (mentor, implicit)
Sat, 8 Jun 2019
[ 19:46 leres ] Original commit 
check_nwc_health 7.8_1 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Use PERL instead of PERL5 for shebang
as suggested by mat@

Reported by:	mat
Approved by:	ler (mentor, implicit)
Differential Revision:	https://reviews.freebsd.org/D20489
Fri, 7 Jun 2019
[ 17:12 leres ] Original commit 
check_nwc_health 7.8 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
net-mgmt/check_nwc_health: Update to 7.8. From the ChangeLog:

 - GLPLugin with better ip4/ip6 handling
 - fix huawei subclasses
 - interfaces --name filter expression can contain _adminup_ as a
   secondary filter
 - route modes can handle v6
 - use OSPFV3-MIB, support v6
 - add CISCO-BGP4-MIB, support v6
Reported by:	portscout
Approved by:	matthew (mentor, implicit)
Sun, 2 Jun 2019
[ 15:41 leres ] Original commit 
bro 2.6.2 security files touched by this commit System for detecting network intruders in real-time
MFH: r503191

security/bro: Update to 2.6.2 and address several denial of service
vulnerabilities:

  
https://raw.githubusercontent.com/zeek/zeek/bb979702cf9a2fa67b8d1a1c7f88d0b56c6af104/NEWS

 - Integer type mismatches in BinPAC-generated parser code and Bro
   analyzer code may allow for crafted packet data to cause
   unintentional code paths in the analysis logic to be taken due
   to unsafe integer conversions causing the parser and analysis
   logic to each expect different fields to have been parsed.  One
   such example, reported by Maksim Shudrak, causes the Kerberos
   analyzer to dereference a null pointer.  CVE-2019-12175 was
   assigned for this issue.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 1 Jun 2019
[ 16:06 leres ] Original commit 
check_nwc_health 7.7 net-mgmt files touched by this commit Nagios plugin to monitor network equipment via SNMP
This adds net-mgmt/check_nwc_health, a Nagios plugin that uses
SNMP to monitor network devices.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D20489
Fri, 31 May 2019
[ 19:23 leres ] Original commit 
bro 2.6.2 security files touched by this commit System for detecting network intruders in real-time
security/bro: Update to 2.6.2 and address several denial of service
vulnerabilities:

  
https://raw.githubusercontent.com/zeek/zeek/bb979702cf9a2fa67b8d1a1c7f88d0b56c6af104/NEWS

 - Integer type mismatches in BinPAC-generated parser code and Bro
   analyzer code may allow for crafted packet data to cause
   unintentional code paths in the analysis logic to be taken due
   to unsafe integer conversions causing the parser and analysis
   logic to each expect different fields to have been parsed.  One
   such example, reported by Maksim Shudrak, causes the Kerberos
   analyzer to dereference a null pointer.  CVE-2019-12175 was
   assigned for this issue.

 - The Kerberos parser allows for several fields to be left
(Only the first 15 lines of the commit message are shown above View all of this commit message)
[ 19:17 leres ] Original commit 
vuxml 1.1_4 security files touched by this commit Vulnerability and eXposure Markup Language DTD
security/vuxml: Mark bro < 2.6.2 as vulnerable as per:

   
https://raw.githubusercontent.com/zeek/zeek/bb979702cf9a2fa67b8d1a1c7f88d0b56c6af104/NEWS

The issue is unsafe integer conversions that can cause unintentional
code paths to be executed.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Security:	CVE-2019-12175
Differential Revision:	https://reviews.freebsd.org/D20481
Mon, 22 Apr 2019
[ 21:45 leres ] Original commit 
arduino-sevseg 3.4.0 devel files touched by this commit Arduino seven segment display library
devel/arduino-sevseg: Update to 3.4.0

From the change log:

 -  support for '*', which is displayed as degree symbol
 -  expanded setBrightness capabilities
 -  support for displays with no decimal point
 -  improved blank() functionality

Approved by:	ler (mentor, implicit)
Thu, 4 Apr 2019
[ 19:37 leres ] Original commit 
py-pymssql 2.1.4 databases files touched by this commit Python database interface for MS-SQL. Version 2
databases/py-pymssql: Update to 2.1.4 and unbreak Python 3 build.

PR:		236998
Submitted by:	Henrik Hudson
Approved by:	Henrik Hudson (maintainer), ler (mentor, implicit)
Sun, 31 Mar 2019
[ 20:45 leres ] Original commit 
py-pcap 0.6.5 net files touched by this commit Python interface to LBL Packet Capture library (libpcap)
net/py-pcap: Update to 0.6.5. Switch from abandoned SF project to
new github fork. Add python 3 support.

PR:		236674
Submitted by:	bofh
Approved by:	matthew (mentor, implicit)
Thu, 21 Mar 2019
[ 17:17 leres ] Original commit 
nvi-devel 1.81.6_12 editors files touched by this commit Development snapshot of the world-renown nvi editor
For those of us who prefer vi over vim there are no good options
for editing Python code. This patch (based on one by rokuyama at
rk.phys.keio.ac.jp) that adds the EXPANDTAB option to nvi (defaults
to off) which adds an expandtab option to nvi.

PR:		235446
Approved by:	johans (maintainer timeout, 6 weeks), matthew (mentor, implicit)
[ 17:12 leres ] Original commit 
nvi-devel 1.81.6_11 editors files touched by this commit Development snapshot of the world-renown nvi editor
Unlike the base vi (nvi 2.1.3), nvi-devel calls flock() on a writable
file descriptor. This has the unfortunately side effect of causing
the "Text file busy" error when you edit a script in one window and
try to run it in another.

The fix is to change the initial open() just prior to calling
file_lock() in file_init() to use O_RDONLY instead of O_RDWR. This
does not impact nvi's ability to write files, nvi creates a new
file when writing.

PR:		235445
Approved by:	johans (maintainer timeout, 6 weeks), ler (mentor, implicit)
Sun, 10 Mar 2019
[ 17:03 leres ] Original commit 
py-pluggy 0.7.1 devel files touched by this commit Plugin and hook calling mechanisms for Python
Update to 0.7.1

PR:		235338
Submitted by:	John W. O'Brien
Approved by:	koobs (maintainer), ler (mentor, implicit)
[ 01:38 leres ] Original commit 
py-pysnmp-apps 0.5.3 net-mgmt  Deleted files touched by this commit Command line utilities for pysnmp
py-snmpclitools 0.6.1 net-mgmt files touched by this commit Command-line SNMP utilities in Python
Rename to py-snmpclitools (per upstream) and upgrade to 0.6.1.
Enable concurrent installation (USE_PYTHON=concurrent).

PR:		235772
Submitted by:	John W. O'Brien
Reviewed by:	ler (mentor)
Approved by:	mhjacks@swbell.net (maintainer), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D19526
Sun, 3 Mar 2019
[ 21:34 leres ] Original commit 
py-click 7.0 devel files touched by this commit Python package for creating command line interfaces
Update to 7.0 (with reordering to make portlint happy) and switch
from CHEESESHOP to GH.

PR:		233477
Reported by:	Andrew Romanenko
Approved by:	robak (maintainer timeout, 14 weeks), ler (mentor, implicit)
Fri, 1 Mar 2019
[ 17:23 leres ] Original commit 
py-pysnmp 4.4.9_1 net-mgmt files touched by this commit SNMP framework for Python
Update RUN_DEPENDS as per PR 235728 (thanks to kai for the heads up).

PR:		235728
Reported by:	kai
Approved by:	Martin Jackson (maintainer), ler (mentor, implicit)
Thu, 28 Feb 2019
[ 00:36 leres ] Original commit 
py-pysnmp-apps 0.5.3 net-mgmt  Deleted files touched by this commit Command line utilities for pysnmp
Update to 0.4.1

PR:		236095
Approved by:	Martin Jackson (maintainer), ler (mentor, implicit)
[ 00:35 leres ] Original commit 
py-pysnmp 4.4.9 net-mgmt files touched by this commit SNMP framework for Python
Update to 4.4.9

PR:		236095
Approved by:	Martin Jackson (maintainer), ler (mentor, implicit)
Fri, 15 Feb 2019
[ 23:22 leres ] Original commit 
snort 2.9.12_1 security files touched by this commit Lightweight network intrusion detection system
Undeprecate the BARNYARD option now that the dependent ports
(security/barnyard and security/bro) have been undeprecated.

PR:		235724
Approved by:	zi (maintainer), matthew (mentor, implicit)
[ 03:09 leres ] Original commit 
snortreport 1.3.4 security  Deleted Deprecated Expired files touched by this commit Add-on module for snort to generate real-time web reports
Undeprecate the BARNYARD option now that the dependent ports
(security/barnyard and security/bro) have been undeprecated.

PR:		235725
Reviewed by:	matthew (mentor)
Approved by:	Zane C. Bowers-Hadley (maintainer), matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D19198
[ 03:07 leres ] Original commit 
dsc 2.8.0 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
Put LIB_DEPENDS after BUILD_DEPENDS as per mat@ (and the Porter's
Handbook).

Reported by:	mat
Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D19197
[ 02:54 leres ] Original commit 
python-doc-html 2.7.15 lang files touched by this commit Documentation for the Python programming language
When doing makesum set MASTER_SITES and DISTFILES that generate a
distinfo containing all supported Python versions vs. all document
formats.

While we're here update distfiles to match the new order (i.e.
_PYTHON_VERSIONS from Uses/python.mk).

PR:		235169
Reviewed by:	koobs (python, ports), matthew (mentor)
Approved by:	koobs (python, ports), matthew (mentor)
Differential Revision:	D19064
Thu, 14 Feb 2019
[ 01:05 leres ] Original commit 
rxtx 2.2p2_4 comms files touched by this commit Native interface to serial ports in Java
Solve occasional poudriere build failures by adding MAKE_JOBS_UNSAFE.

Sample poudriere build error without MAKE_JOBS_UNSAFE:

    Error: Could not find class file for 'gnu.io.Raw'.
    gmake[1]: *** [Makefile:613:
/wrkdirs/usr/ports/comms/rxtx/work/rxtx-2.2pre2/gnu/io/NoSuchPortException.class]
Error 1

PR:		216558
Reviewed by:	mat, matthew (mentor)
Approved by:	mat, koobs (maintainer), matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D18999
[ 00:45 leres ] Original commit 
dsc 2.8.0 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
Upgrade to 2.8.0:

 - New indexer 'response_time'

 - Support for MaxMind DB (GeoIP2)

 - Update 'pcap_layers' with fixes for 'scan-build' warnings

 - Fix port in debug output of DNS message

Changes made in addition to the PR supplied patch:

 - The port had USES=shebangfix but none of the SHEBANG_ variables
   were set; replace the cron_upload-prep.pl patch with a working
   shebangfix setup and then use REINPLACE_CMD to adjust the conf
   path in upload-prep.pl

 - While we're here use REINPLACE_CMD to obey PREFIX in other
   files

PR:		235711
Submitted by:	Leo Vandewoestijne (maintainer)
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D19187
Wed, 13 Feb 2019
[ 01:01 leres ] Original commit 
dsc 2.7.0_1 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
Undeprecate and retain GeoIP support by switching from net/GeoIP
to net/libmaxminddb. Update pkg-message to document updating via
net/geoipupdate. Remove pkg-descr whitespace flagged by portlint.

PR:		234950
Reviewed by:	ler (mentor)
Approved by:	freebsd@dns.company (maintainer), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D19173
Sat, 2 Feb 2019
[ 21:32 leres ] Original commit 
bro 2.6.1_2 security files touched by this commit System for detecting network intruders in real-time
Restore GeoIP support via net/libmaxminddb and a new GEOIP2 option
which defaults to enabled, mimicking pre-geoip-deprecation.

PR:		235138
Submitted by:	bofh
Approved by:	ler (mentor, implicit)
[ 21:22 leres ] Original commit 
broccoli 1.101,1 security files touched by this commit Bro Client Communications Library
Update to 1.101.

PR:		235139
Submitted by:	bofh
Approved by:	ler (mentor, implicit)
Mon, 28 Jan 2019
[ 02:52 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219_3 devel files touched by this commit Espressif ESP32 toolchain
As it turns out xtensa-esp32-elf does not work with python 3.7 (at
least) so pin it to python 2.7.

Approved by:	ler (mentor, implicit)
Mon, 14 Jan 2019
[ 17:51 leres ] Original commit 
bro 2.6.1_1 security files touched by this commit System for detecting network intruders in real-time
net/GeoIP has been deprecated but security/bro builds without it;
remove GeoIP dependency and undeprecate.

Approved by:    ler (mentor, implicit)
[ 17:50 leres ] Original commit 
broccoli 1.97_1,1 security files touched by this commit Bro Client Communications Library
net/GeoIP has been deprecated but security/broccoli builds without
it; remove GeoIP dependency and undeprecate.

While we're here fix some portlint reported Makefile variable order
issues.

Approved by:	ler (mentor, implicit)
Sat, 12 Jan 2019
[ 19:52 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219_2 devel files touched by this commit Espressif ESP32 toolchain
Patch devel/xtensa-esp32-elf to build with bash 5.0. Tweak Makefile
variable order as per portlint while we're here.

PR:		234892
Submitted by:	ehaupt
Approved by:	ler (mentor, implicit)
Thu, 20 Dec 2018
[ 21:04 leres ] Original commit 
bro 2.6.1 security files touched by this commit System for detecting network intruders in real-time
MFH: r487823

Update to 2.6.1:

 - Update the embedded SQLite library from 3.18.0 to 3.26.0 to
   address a remote code execution vulnerability ("Magellan").

 - Uses a bundled version of the actor-framework (caf) library so
   we can remove the port-local build for caf.

Replace broctl-config.sh absolute symlink with a relative one.

Approved by:	ler (mentor, implicit)
Security:	b80f039d-579e-4b82-95ad-b534a709f220

Approved by:	ports-secteam (miwi)
[ 01:25 leres ] Original commit 
bro 2.6.1 security files touched by this commit System for detecting network intruders in real-time
Update to 2.6.1:

 - Update the embedded SQLite library from 3.18.0 to 3.26.0 to
   address a remote code execution vulnerability ("Magellan").

 - Uses a bundled version of the actor-framework (caf) library so
   we can remove the port-local build for caf.

Replace broctl-config.sh absolute symlink with a relative one.

Approved by:	ler (mentor, implicit)
MFH:		2018Q4
Security:	b80f039d-579e-4b82-95ad-b534a709f220
[ 01:15 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark bro < 2.6.1 as vulnerable as per:

    https://www.bro.org/download/NEWS.bro.html

The issue is a remote code execution vulnerability in the bundled
sqlite ("Magellan").

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D18615
Mon, 5 Nov 2018
[ 17:07 leres ] Original commit 
mini_httpd 1.30_2 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
As per mat@ portlint is wrong; it's ok for CPE_VENDOR to be in a
block with USES; revert that part of 484114.

Approved by:	ler (mentor, implicit)
Sun, 4 Nov 2018
[ 18:17 leres ] Original commit 
mini_httpd 1.30_2 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
After consulting with upstream it turns out 500.mini_httpd-rotate
is supposed to be an example so add an EXAMPLES option and install
(or not) appropriately.

PR:		232926
Reported by:	Oleg Strizhak
Approved by:	ler (mentor, implicit)
[ 17:50 leres ] Original commit 
mini_httpd 1.30_1 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
Create log directory on install so that it exists when
500.mini_httpd-rotate runs.

While we're here quiet new portlint nit (move CPE_VENDOR to its own
block).

PR:		232926
Reported by:	Oleg Strizhak
Approved by:	ler (mentor, implicit)
[ 02:01 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219_2 devel files touched by this commit Espressif ESP32 toolchain
Pin to gcc7 and unblock 231590 which wants to update GCC_DEFAULT
from 7 to 8.

PR:		232933
Reported by:	Gerald Pfeifer
Approved by:	ler (mentor, implicit)
Sun, 28 Oct 2018
[ 07:12 leres ] Original commit 
mini_httpd 1.30 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
MFH: r483152

Update to 1.30 which fixes a security hole that allowed arbitrary
file disclosure in some circumstances. Announcement:

    http://acme.com/updates/archive/211.html

Approved by:	matthew (mentor, implicit)
Security:	33c384f3-5af6-4662-9741-0acb21c7e499

Approved by:	ports-secteam (riggs), matthew (mentor, implicit)
Sat, 27 Oct 2018
[ 17:12 leres ] Original commit 
mini_httpd 1.30 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
Update to 1.30 which fixes a security hole that allowed arbitrary
file disclosure in some circumstances. Announcement:

    http://acme.com/updates/archive/211.html

Approved by:	matthew (mentor, implicit)
MFH:		2018Q4
Security:	33c384f3-5af6-4662-9741-0acb21c7e499
[ 17:04 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark mini_httpd < 1.30 as vulnerable as per:

    http://acme.com/updates/archive/211.html

The issue is arbitrary file disclosure in some circumstances.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D17718
Wed, 17 Oct 2018
[ 23:05 leres ] Original commit 
bro 2.5.5 security files touched by this commit System for detecting network intruders in real-time
Bro 2.5.5 does not build under 12.0-ALPHA10 due to openssl 1.1.1
in the base. Unbreak build by statically linking against
security/openssl. This is a stopgap until Bro 2.6 which supports
openssl 1.1 is released. It is currently in beta and due in a
few weeks.

Add missing NETMAP_DESC while we're here.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D17602
Thu, 30 Aug 2018
[ 22:26 leres ] Original commit 
bro 2.5.5 security files touched by this commit System for detecting network intruders in real-time
MFH: r478427

Update to 2.5.5 which addresses security issues:

    - Fix array bounds checking in BinPAC: for arrays that are
      fields within a record, the bounds check was based on a pointer
      to the start of the record rather than the start of the array
      field, potentially resulting in a buffer over-read.

    - Fix SMTP command string comparisons: the number of bytes
      compared was based on the user-supplied string length and can
      lead to incorrect matches. e.g. giving a command of "X"
      incorrectly matched "X-ANONYMOUSTLS" (and an empty commands
      match anything).
(Only the first 15 lines of the commit message are shown above View all of this commit message)
[ 00:13 leres ] Original commit 
bro 2.5.5 security files touched by this commit System for detecting network intruders in real-time
Update to 2.5.5 which addresses security issues:

    - Fix array bounds checking in BinPAC: for arrays that are
      fields within a record, the bounds check was based on a pointer
      to the start of the record rather than the start of the array
      field, potentially resulting in a buffer over-read.

    - Fix SMTP command string comparisons: the number of bytes
      compared was based on the user-supplied string length and can
      lead to incorrect matches. e.g. giving a command of "X"
      incorrectly matched "X-ANONYMOUSTLS" (and an empty commands
      match anything).

    - Weird" events are now generally suppressed/sampled by default
      according to some tunable parameters.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
[ 00:09 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark bro < 2.5.5 as vulnerable as per:

    https://www.bro.org/download/NEWS.bro.html

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16948
Tue, 28 Aug 2018
[ 20:45 leres ] Original commit 
dsc 2.7.0 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
Replace PREFIX with LOCALBASE as suggested by danfe@

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16928
[ 00:45 leres ] Original commit 
dsc 2.7.0 dns files touched by this commit Tool used for collecting and exploring statistics from DNS servers
Update to 2.7.0. Add --with-extra-cflags=-I${PREFIX}/include
so configure finds pcap/sll.h. Add a rc.d script. Fix the path
to the config directory in upload-prep.pl or else it silently
exits without doing anything when it doesn't find any configs.

PR:		230661
Reviewed by:	ler (mentor)
Approved by:	Leo Vandewoestijn (maintainer), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16925
Thu, 16 Aug 2018
[ 01:26 leres ] Original commit 
dhcp6 20080615.2_1 net files touched by this commit KAME DHCP6 client, server, and relay
Apparently starting with version 20080615.2 dhcp6c refuses
to run without a dhcp6cctlkey file. Use openssl to generate
one from the rc.d script when it is missing.

PR:		229400
Reviewed by:	ler (mentor)
Approved by:	maintainer timeout (6 weeks), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16739
[ 01:06 leres ] Original commit 
dhcp6 20080615.2 net files touched by this commit KAME DHCP6 client, server, and relay
Fix Makefile dependency so that cfparse.c and y.tab.h exist
before cftoken.c is generated or compiled.

PR:		218859
Reviewed by:	ler (mentor)
Approved by:	maintainer timeout (68 weeks), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16738
Sat, 28 Jul 2018
[ 03:03 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219_1 devel files touched by this commit Espressif ESP32 toolchain
A user reported a build failure with portmaster. I was able to
deduce he had lang/gcc48 installed and reproduce the build error
in a poudriere jail:

     /usr/local/lib/gcc48/libstdc++.so.6: version CXXABI_1.3.9 required by
/usr/local/xtensa-esp32-elf/bin/xtensa-esp32-elf-gcc not found

He also reported that the binaries from the FreeBSD built package
produced this error.

The fix is explicitly set LD_RUN_PATH to the gcc lib directory.

Reported by:	danny@cs.huji.ac.il
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16477
Sun, 8 Jul 2018
[ 22:34 leres ] Original commit 
avarice 2.13_3 devel files touched by this commit Atmel AVR JTAG programmer and debugging interface for avr-gdb
After upgrading to 11.2-RELEASE devel/avarice fails to
compile with:

    jtagrw.cc:134:13: error: cannot initialize return object of type 'uchar *'
(aka 'unsigned char *') with an rvalue of type 'bool'

		return false;
		       ^~~~~

examination of the code shows another case with a similar
check that returns NULL.

I also filed an upstream bug report:

    https://sourceforge.net/p/avarice/bugs/24/

PR:		229376
Reviewed by:	ler (mentor)
Approved by:	joerg (maintainer), ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D16184
Wed, 20 Jun 2018
[ 22:36 leres ] Original commit 
py-qrcode 6.0 textproc files touched by this commit QR Code image generator
Update to 6.0:

 - Fix optimize length being ignored in QRCode.add_data.

 - Better calculation of the best mask pattern and related
   optimizations.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D15930
[ 03:30 leres ] Original commit 
mini_httpd 1.29 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
Update to 1.29:

 - Allow CGI to handle HTTP methods besides GET/HEAD/POST.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D15918
Fri, 8 Jun 2018
[ 19:52 leres ] Original commit 
bro 2.5.4 security files touched by this commit System for detecting network intruders in real-time
MFH: r472014

Update to 2.5.4 which fixes multiple memory allocation issues:

 - Multiple fixes and improvements to BinPAC generated code
   related to array parsing, with potential impact to all Bro's
   BinPAC-generated analyzers in the form of buffer over-reads
   or other invalid memory accesses depending on whether a
   particular analyzer incorrectly assumed that the
   evaulated-array-length expression is actually the number of
   elements that were parsed out from the input.

 - The NCP analyzer (not enabled by default and also updated
   to actually work with newer Bro APIs in the release) performed
   a memory allocation based directly on a field in the input
(Only the first 15 lines of the commit message are shown above View all of this commit message)
[ 16:40 leres ] Original commit 
bro 2.5.4 security files touched by this commit System for detecting network intruders in real-time
Update to 2.5.4 which fixes multiple memory allocation issues:

 - Multiple fixes and improvements to BinPAC generated code
   related to array parsing, with potential impact to all Bro's
   BinPAC-generated analyzers in the form of buffer over-reads
   or other invalid memory accesses depending on whether a
   particular analyzer incorrectly assumed that the
   evaulated-array-length expression is actually the number of
   elements that were parsed out from the input.

 - The NCP analyzer (not enabled by default and also updated
   to actually work with newer Bro APIs in the release) performed
   a memory allocation based directly on a field in the input
   packet and using signed integer storage. This could result
   in a signed integer overflow and memory allocations of
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 6 Jun 2018
[ 16:56 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark bro < 2.5.4 as vulnerable as per:

    https://www.bro.org/download/NEWS.bro.html

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D15677
Mon, 7 May 2018
[ 15:34 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219 devel files touched by this commit Espressif ESP32 toolchain
Fix build as non-root user (BUILD_AS_NON_ROOT=yes in poudriere.conf)
reported by pkg-fallout. While we're at it turn off annoying
CT_LOG_PROGRESS_BAR spinner (which also makes the build log huge).

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D15312
Fri, 4 May 2018
[ 16:10 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219 devel files touched by this commit Espressif ESP32 toolchain
Merge pre-configure and pre-build into do-configure, merge
pre-build and post-build into do-build as requested by mat@.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D15287
Thu, 3 May 2018
[ 21:50 leres ] Original commit 
xtensa-esp32-elf 1.22.0.g20171219 devel files touched by this commit Espressif ESP32 toolchain
This adds devel/xtensa-esp32-elf which builds the Espressif
ESP32 toolchain for use with Arduino and FreeRTOS projects.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D15271
Sat, 14 Apr 2018
[ 21:15 leres ] Original commit 
sec 2.7.12_1 sysutils files touched by this commit Simple event (logs) correlator
Move the pidfile from /var/run/sec.pid to /var/run/sec/sec.pid
and chown /var/run/sec when sec_user is set.

PR:		227056
Reviewed by:	ler (mentor)
Approved by:	ecu@200ok.org, ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D15068
Fri, 13 Apr 2018
[ 21:51 leres ] Original commit 
py-snmp4 4.3.2 net-mgmt  Deleted files touched by this commit SNMP framework for Python
py-snmp4-apps 0.4.1 net-mgmt  Deleted files touched by this commit Command line utilities for pysnmp4
py-snmp4-mibs 0.1.6 net-mgmt  Deleted files touched by this commit Additional python MIB files for pysnmp4 and friends
Update net-mgmt/py-snmp4 to 4.3.2
Update net-mgmt/py-snmp4-apps to 0.4.1
Update net-mgmt/py-snmp4-mibs to 0.1.6

PR:		227508
Reviewed by:	ler (mentor)
Approved by:	mhjacks@swbell.net, ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D15062
Thu, 12 Apr 2018
[ 21:54 leres ] Original commit 
openssh-portable 7.7.p1_1,1 security files touched by this commit The portable version of OpenBSD's OpenSSH
The block of code that canonicallizes the hostname supplied on
the command line added by patch-ssh.c misapplies to 7.7p1 and
moves from main() to to ssh_session2(). This breaks ssh SSHFP
support for non-canonical hostnames. For example, "ssh zinc"
correctly discovers the FQDN (zinc.ee.lbl.gov) and uses it to
look up A and AAAA records but the non-canonical version (zinc)
is used in the SSHFP record lookup which or course fails.

Regenerate the patch.

Reviewed by:	bdrewery, ler (mentor)
Approved by:	bdrewery, ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D15053
Tue, 3 Apr 2018
[ 21:32 leres ] Original commit 
hostapd 2.6_1 net files touched by this commit IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
Update patches to unbreak build with LibreSSL 2.7 and the
OpenSSL 1.1 API.

PR:		227172
Submitted by:	brnrd
Reported by:	brnrd
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14957
Fri, 16 Mar 2018
[ 15:33 leres ] Original commit 
bro 2.5.3 security files touched by this commit System for detecting network intruders in real-time
r412841 of devel/google-perftools changed the path for bin/pprof
to bin/perftools-pprof; update RUN_DEPENDS for security/bro
accordingly.

Reported by:	James Welcher
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14708
Mon, 12 Mar 2018
[ 17:44 leres ] Original commit 
chromium 64.0.3282.186_1 www files touched by this commit Google web browser based on WebKit
Add a CUPS option to disable cups support and remove the
dependency on print/cups. This includes a patch from cpm@ that
solves an undefined linker reference that occurs when cups is
disabled. Since chromium does not support printing without cups
enabling this option also disables printing and print previews.

PR:		226505
Reviewed by:	cpm, matthew (mentor)
Approved by:	cpm, matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D14659
Fri, 2 Mar 2018
[ 21:39 leres ] Original commit 
mini_httpd 1.28 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
MFH: r461322

Update to 1.28 which fixes a buffer overflow (that will be)
documented in CVE-2017-17663.

Reviewed by:	matthew	(mentor)
Approved by:	matthew	(mentor)
Security:	f5524753-67b1-4c88-8114-29c2d258b383
Differential Revision:	https://reviews.freebsd.org/D14218

Approved by:	ports-secteam (feld)
[ 00:38 leres ] Original commit 
imapsync 1.836 mail files touched by this commit IMAP synchronization, copy or migration tool
bro 2.5.3 security files touched by this commit System for detecting network intruders in real-time
cmockery2 1.3.8 sysutils files touched by this commit Cmockery2 revival of Cmockery unit test framework from Google
MFH: r461924 r462351 r462460

Use USE_GITHUB instead of hand crafting urls.

Sponsored by:	Absolight

Add a NETMAP option to build and install the bro netmap plugin.

PR: 224918
Reported by: Shane Peters
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
Differential Revision: https://reviews.freebsd.org/D14378

Update to 2.5.3 which fixes an integer overflow:

    http://blog.bro.org/2018/02/bro-253-released-security-update.html

Note that a CVE has not been assigned yet.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D14444

Approved by:	ports-secteam (swills)
Mon, 26 Feb 2018
[ 17:19 leres ] Original commit 
arduino-bsd-mk 1.1 devel files touched by this commit Build Arduino sketches from the command line on FreeBSD
Update to 1.1:

    - Add .ino file instead of .cpp to SRCS when we have a .ino
      file.

      Remove test for .ino and .cpp since it doesn't work when we
      aren't using an obj dir.

    - Instead of generating an error for all make targets when
      AVRDUDE_PORT is "arduino" and AVRDUDE_PORT is not defined
      allow everything except install/flash.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14525
Tue, 20 Feb 2018
[ 22:29 leres ] Original commit 
bro 2.5.3 security files touched by this commit System for detecting network intruders in real-time
Update to 2.5.3 which fixes an integer overflow:

    http://blog.bro.org/2018/02/bro-253-released-security-update.html

Note that a CVE has not been assigned yet.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
MFH:		2018Q1
Differential Revision:	https://reviews.freebsd.org/D14444
Mon, 19 Feb 2018
[ 22:38 leres ] Original commit 
socat 1.7.3.2_2 net files touched by this commit Multipurpose relay and more
Patch socat/Makefile to reference all of dependencies when
linking filan so that parallel make is reliable again.

PR: 226012
Reviewed by: ler (mentor)
Approved by: ler (mentor)
Differential Revision: https://reviews.freebsd.org/D14445
[ 22:04 leres ] Original commit 
bro 2.5.2_1 security files touched by this commit System for detecting network intruders in real-time
Add a NETMAP option to build and install the bro netmap plugin.

PR: 224918
Reported by: Shane Peters
Reviewed by: matthew (mentor)
Approved by: matthew (mentor)
Differential Revision: https://reviews.freebsd.org/D14378
Sat, 17 Feb 2018
[ 02:28 leres ] Original commit 
create-cert 2.7 security files touched by this commit Create openssl client key and certificates
Update to 2.7:

    - Enable additional cert usage types otherwise the generated
      certs can't be used for servers.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14404
Fri, 16 Feb 2018
[ 16:56 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark bro < 2.5.3 as vulnerable as per:

    http://blog.bro.org/2018/02/bro-253-released-security-update.html

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D14395
[ 01:02 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark bro < 2.5.2 as vulnerable as per:

    http://blog.bro.org/2017/10/bro-252-242-release-security-update.html

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Security:	CVE-2017-1000458
Differential Revision:	https://reviews.freebsd.org/D14394
[ 00:58 leres ] Original commit 
create-cert 2.6 security files touched by this commit Create openssl client key and certificates
Update to 2.6:

    - Add subjectAltName to the v3_req section as per RFC 2818

Move the primary download site and add LOCAL/leres as a secondary.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14393
Tue, 13 Feb 2018
[ 02:43 leres ] Original commit 
py-qrcode 5.3_3 textproc files touched by this commit QR Code image generator
Allow concurrent installation (USE_PYTHON=concurrent).

PR:		225842
Submitted by:	John Hein
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D14342
Fri, 9 Feb 2018
[ 17:32 leres ] Original commit 
mini_httpd 1.28 www files touched by this commit Small HTTP server with support for GET, HEAD, POST, CGI, SSL, IPv6
Update to 1.28 which fixes a buffer overflow (that will be)
documented in CVE-2017-17663.

Reviewed by:	matthew	(mentor)
Approved by:	matthew	(mentor)
MFH:		2018Q1
Security:	f5524753-67b1-4c88-8114-29c2d258b383
Differential Revision:	https://reviews.freebsd.org/D14218
Tue, 6 Feb 2018
[ 01:38 leres ] Original commit 
vuxml 1.1_3 security files touched by this commit Vulnerability and eXposure Markup Language DTD
Mark mini_httpd < 1.28 and thttpd < 2.28 as vulnerable as per:

    http://acme.com/updates/archive/199.html

While we're here, fix whitespace in vuln.xml that "make validate"
flagged.

Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Security:	CVE-2017-17663
Differential Revision:	D14217
Fri, 26 Jan 2018
[ 21:56 leres ] Original commit 
py-qrcode 5.3_2 textproc files touched by this commit QR Code image generator
Patch setup.py to install the man page in ${PREFIX}/man/man1
instead of ${PREFIX}/share/man/man1

Assume matainership (the current maintainer requests being removed
in PR 224219).

PR:		224219
Reviewed by:	ler (mentor)
Approved by:	ler (mentor)
Differential Revision:	https://reviews.freebsd.org/D13902
Fri, 1 Dec 2017
[ 21:38 leres ] Original commit 
arduino-bsd-mk 1.0 devel files touched by this commit Build Arduino sketches from the command line on FreeBSD
This adds devel/arduino-bsd-mk which installs a make(1) makefile
(bsd.arduino.mk) that is used to build Arduino sketches from
the command line. It is designed to be a FreeBSD-friendly
alternative to the existing gmake based devel/arduino-mk port.
It includes a man page and optionally installs an example sketch
with an exmaple Makefile.

Reviewed by:	matthew (mentor)
Approved by:	matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D13262
Sun, 26 Nov 2017
[ 20:30 leres ] Original commit 
arduino-mk 0.10_3 devel files touched by this commit Build Arduino sketches from the command line
Update the url in pkg-descr to reflect new location of Martin
Oldfield's homepage.

Reviewed by:	ler (mentor), matthew (mentor)
Approved by:	ler (mentor), matthew (mentor)
Differential Revision:	https://reviews.freebsd.org/D13254
Number of commits: 106 (showing only 100 on this page) 1 | 2  »  
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
py-pillowOct 15
mod_perl2Oct 09
xpdfOct 06
xpdf3Oct 06
xpdf4Oct 06
unboundOct 03
cactiOct 02
gitlab-ceOct 02
gitlab-ceOct 02
ruby24Oct 02
ruby25Oct 02
mongodb34Sep 30
mongodb34Sep 30
mongodb36Sep 30
mongodb36Sep 30

8 vulnerabilities affecting 24 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2019-10-15 15:43:31


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 37682
Broken 77
Deprecated 104
Ignore 343
Forbidden 3
Restricted 158
No CDROM 73
Vulnerable 27
Expired 6
Set to expire 75
Interactive 0
new 24 hours 2
new 48 hours9
new 7 days26
new fortnight62
new month230

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2019 Dan Langille. All rights reserved.