Number of commits found: 135 (showing only 100 on this page)

1 | 2  »  

- Fix build when !BDB.
- Regenerate patches.

PR:	244282

Update to 7.7.0.

Drop the ipv6 virtual category for s* category as it is not relevant anymore

Update devel/readline to 8.0

- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://tiswww.case.edu/php/chet/readline/CHANGES
PR:		236156
Exp-run by:	antoine

Install texinfo files (GNU info) into ${PREFIX}/share/info

After a discussion on the mailing list on moving manpages to
${PREFIX}/share/man for consistency with base where it is
installed in usr/share/man, it appeared the same should happen
to GNU info files which were installed under share in base and
not in ports.

Now texinfo is not in base on any of the supported version of FreeBSD
it is possible to proceed to this move and it is easier to do than
the manpage change.

Other benefit than consistency are less patching: all build tools but
cmake are expecting info files to be under share/info and cmake (patched here)
was having an exception for BSD so the patch makes FreeBSD case less
specific for them

Bump revision of all impacted ports

PR:		232907
exp-run by:	antoine
Differential Revision:	https://reviews.freebsd.org/D17816

security/heimdal: Chase cracklib dictionary rename from r408137

PR:		213157
Submitted by:	Florian Riehm <mail@friehm.de>
Approved by:	2 year bug anniversary

security/heimdal: Don't call arc4random_stir.

PR:		230835, 230756
Approved by:	portmgr (antoine)

Update to 7.5.0:

- In Heimdal 7.1 through 7.4, remote unauthenticated
  attackers are able to crash the KDC by sending a crafted UDP packet
  containing empty data fields for client name or realm.

Security:	CVE-2017-17439
PR:		224191

Fix whitespace issues (mixed tab/spaces, alignment) in a few ports.

This round is @FreeBSD.org residents except teams.

Update to 7.4.0.  This release fixes a critical vulnerability named
"Orpheus' Lyre".

Security:	CVE-2017-11103
Secuirty:	https://www.orpheus-lyre.info/

Update devel/readline to 7.0 patch 3

- Bump PORTREVISION for shlib change

Changes:	https://cnswww.cns.cwru.edu/php/chet/readline/CHANGES
		https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00107.html
		https://lists.gnu.org/archive/html/bug-readline/2017-01/msg00002.html
Differential Revision:	https://reviews.freebsd.org/D11172
PR:		219947
Exp-run by:	antoine

Update to 7.3.0.

security/heimdal: Fix build

Previous backported patch for CVE requires a new build dependency.

PR:		219657
Reported by:	Benjamin Woods
MFH:		2017Q2
Differential Revision:	https://reviews.freebsd.org/D11125

security/heimdal: Backport security fix

PR:		219657
MFH:		2017Q2
Security:	CVE-2017-6594

Fix build when !BDB and db5 is installed at the same time.
The configure script picked up the db5 library though
ac_cv_func_db_create=no.

PR:	215772

- Fix krb5-config --libs to provide a list of libraries including
  dependency.  This broke ports which depend on this utility.

- Add LMDB option to support database/lmdb.

- Enable dbopen() in DB 1.85 even if !BDB because libhdb with
  no backend is very confusing.

- Fix build when !BDB[*]

PR:	215741 [*]

Update to 7.1.0.  Changes include:

- hcrypto is now thread safe on all platforms and as much as possible
  hcrypto now uses the operating system's preferred crypto
  implementation ensuring that optimized hardware assisted
  implementations of AES-NI are used.

- RFC 6113 Generalized Framework for Kerberos Pre-Authentication
  (FAST).

- Hierarchical capath support

- iprop has been revamped to fix a number of race conditions that
  could lead to inconsistent replication.

(Only the first 15 lines of the commit message are shown above )

- Fix Berkeley DB dependency.  It now properly uses BDB_LIB specified in
  Mk/Uses/bdb.mk instead of db185 interfaces in libc.
  As a side-effect, this causes a compatibility issue between
  heimdal.db created by kadmin(8) in the base system or one by
  an older security/heimdal.  See UPDATING about this issue.

- Fix readline dependency end eliminate libheimedit.

- Use -lpthread instead of -pthread.

- Use FOO_CONFIGURE_WITH=foo instead of FOO_CONFIGURE_ON=--with-foo.

ix Berkeley DB detection at the configuration stage.

PR:	214182

Add missing header files (com_err.h and com_right.h).

Submitted by:	Franco Fichtner
PR:		213470

security/heimdal: Fix build when EGD is not available (e.g. LibreSSL)

Approved by:	SSL blanket

Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket

Remove USE_SQLITE from bsd.databases.mk, replaced by USES=sqlite.

While there replace USE_SQLITE=x by USES=sqlite:x.

PR:		208971
Submitted by:	mat
Exp-run by:	antoine
With hat:	portmgr
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D5951

Remove ${PORTSDIR}/ from dependencies, categories r, s, t, and u.

With hat:	portmgr
Sponsored by:	Absolight

- Remove an orphaned directory [1].
- Fix USE_LDCONFIG [2].

Spotted by:	sunpoet [1] and bdrewery [2]

Fix krb5-config.

Add -rpath forgotten in the previous commit.

- Fix heimdal-gssapi.pc.
- Add an UPDATING entry.

PR:	195319

Update to 1.5.3.  Changes include:

 - Fix leaking file descriptors in KDC
 - Better socket/timeout handling in libkrb5
 - General bug fixes

- Move headers and libraries into PREFIX/{include,lib}/heimdal.  This
  prevents build breakage when a port depends on heimdal in base and
  some other libraries in LOCALBASE/lib such as OpenSSL from ports
  at the same time.

- Always build libcom_err[*].

PR:	194475 [*]

security/heimdal: Unbreak on DragonFly

The 30 AUG 14 commit to fix libcom_err on some FreeBSD releases crippled
Heimdal on DragonFly such that samba-nsupdate no longer would configure.
The culprit was once again using OSVERSION without checking OPSYS, so
adjusting for OPSYS fixes this regression.

Add ipropd_master and ipropd_slave rc.d scripts for branches which do not
have them.

PR:	176805

security/heimdal: Restore MAKE_JOBS_UNSAFE removed recently

The MAKE_JOBS_UNSAFE flag was set 10 June 2014 (PR 181923) and it
was removed without explanation on 30 Aug 2014 (r366616).  I have
first-hand confirmation that it is still required with default
options set.  I'm resetting this flag as it shouldn't have been removed.

Fix build on branches which do not have com_right_r() in libcom_err.

Spotted by:	ume

- Add LICENSE.
- Build kcm by default.
- Use gssapi.mk.
- Use ${opt}_* variables instead of .if ${PORT_OPTIONS:Mopt} wherever possible.
- Use /var/heimdal as $hdbdir for compatibility with Heimdal in base.
- Merge pkg-plist.* into pkg-plist.
- Remove lines that are no longer valid.
- Remove stale kdc.sh.  rc.d scripts in base system work with this port.

Berkeley DB cleanup, remove versions 4.0 ... 4.7.
- Mk/bsd.database.mk rewrite, new default to db5.
- db6 is eligible by default only if installed on the system.
- Bump PORTREVISION of all ports that directly depend on BerkeleyDB or
  where USE_BDB is found in the port's directory
- Patch a few ports such that they will pick up or work with newer
  versions.
- Add UPDATING entry
- Drive-by format fix for pks
- Drop BerkeleyDB option from mail/popular for now, requires more work.
- Exp-run logs linked from the PR below.
- Ports that do not build (IGNORE, BROKEN, etc.) have pro-forma changes
  for new Berkeley DB, but are untested.

NOTE: please read UPDATING and the Wiki page before proceeding!

Announcement:	http://lists.freebsd.org/pipermail/freebsd-ports-announce/2014-August/000090.html
Wiki reference:	https://wiki.freebsd.org/Ports/BerkeleyDBCleanup
PR:		192690
Approved by:	portmgr (implicit, PORTREVISION bump on unstaged ports)

security/heimdal: Establish consistency for seed data with base heimdal

This patch enables heimdal port and heimdal bad to be consistent [in byte
order for seed data] and talk nicely to each other.  Please refer to
FreeBSD Errata Notice FreeBSD-EN-14:08.heimdal.  This port is not
unmaintained.

PR:		191356
Submitted by:	dewayne (heuristicsystems.com.au)

net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample

(Only the first 15 lines of the commit message are shown above )

Remove patches added together with USES=libtool that are no longer needed
after r362656.

Fix plist again.  r361101 reverted SQLITE fixes in r358060 and r358150.

Pointyhat to:	tijl

- Fix pkg-plist [1]
- Add INSTALL_TARGET=install-strip

Reported by:	swills (jenkins) [1]

- Convert to USES=libtool
- Remove USE_AUTOTOOLS

Bump PORTREVISION on all ports with USE_SQLITE=yes or USE_SQLITE=3 that
have not been bumped yet after the latest libsqlite3.so library version
change.

Approved by:	portmgr (implicit)

Bump PORTREVISION after the plist fix so that people get the fix.

Sponsored by:	Absolight

security/heimdal: Mark not-jobs-safe and fix cracklib location

While here:
 * Clean up options and PLIST_SUB with new option framework capabilities
 * Remove condition for FreeBSD 6 and earlier
   - Remove never-fulfilled plist condition
   - Move extra-patch to always-patch
 * minor cosmetic realignment

PR:		181923
Submitted by:	dewayne

security/heimdal: Fix LDAP/SASL support

Enable heimdal to properly build against net/openldap-sasl-client when
openldap24-server is built with SASL support.  It did not before.
Heimdal is currently unmaintained.

PR:		183697
Submitted by:	pcm

security/heimdal: Reset maintainer

There have been 3 consecutive PR timeouts since June 2012, and several
PRs are still open.

Fix heimdal.

- Resolve conflict with security/openssl regarding manual pages.
- Add a couple of patches from the upstream.
- Remove NO_STAGE and delete obsolete MLINKS while at it.

PR:		177397
Submitted by:	Shane Ambler <FreeBSD@ShaneWare.Biz>
Approved by:	(MAINTAINER timeout)

Update krb5 to 1.12. Security/krb5 tracks MIT KRB5 current release.

Adjust the newly created krb5-maint with a new portname and conflicts.
Krb5-maint is a maintenance release for those who wish to use the previous
release of krb5. krb5-maint remains at 1.11.3.

Adjust CONFLICTS in security/heimdal and security/srp to account for the
newly repocopied krb5-maint.

Adjust security/Makefile to include krb5-maint.

Add NO_STAGE all over the place in preparation for the staging support (cat:
security)

Eradicate USE_GNOME=pkgconfig from security
While here:
- Trim headers
- Convert USE_GMAKE to USES=gmake
- Convert USE_GNOME=gnomehack to USES=pathfix
- Convert USE_PERL5 to USES=perl5

Convert security to new options framework

- Convert USE_GETTEXT to USES (part 3)

Approved by:	portmgr (bapt)

- Remove A/An in COMMENT
- Trim Header where applicable

Enable the Berkley DB backend by default.
Bump portrevision.

PR:		ports/154711
Submitted by:	Jason C. Wells <jcw@speakeasy.net> (pr)
		Robert Simmons <rsimmons0@gmail.com> (patch)
Approved by:	maintainer timeout (12 weeks), kwm (mentor)

Fix issue where kpasswdd and kstash look for krb5.conf in /etc.

PR:             ports/168386
Submitted by:   Robert Simmons <rsimmons0@gmail.com>
Approved by:    maintainer timeout

Fix build when BDB is selected.

PR:             ports/168214
Submitted by:   Robert Simmons <rsimmons0@gmail.com>
Approved by:    Joerg Pulz <Joerg.Pulz@frm2.tum.de> (maintainer)

Do not install catpages

PR:             ports/167640
Submitted by:   bapt@
Approved by:    maintainer timeout (14 days)

Update to 1.5.2

PR:             ports/166320
Submitted by:   Joerg Pulz <Joerg.Pulz@frm2.tum.de> (maintainer)

Sync to new bsd.autotools.mk

Add the 'gss_pname_to_uid' function to libgssapi.
This function is obtained from the FreeBSD base libgssapi code.

Whith this function added to the port, it is possible to buildworld
FreeBSD fully against the port.
FYI: Patches for CURRENT and 8-STABLE src/ are here:
ftp://ftp.frm2.tum.de/pub/jpulz/FreeBSD/patches/CURRENT_use_kerberos_port.patch
ftp://ftp.frm2.tum.de/pub/jpulz/FreeBSD/patches/8-STABLE_use_kerberos_port.patch

PR:             ports/152030
Submitted by:   maintainer

Assign maintainer to submitter of previous commit (ports/151506).

Update to 1.4

PR:             ports/151506
Submitted by:   Joerg Pulz <Joerg.Pulz@frm2.tum.de>

- Mark BROKEN on HEAD: fails to build with new utmpx

Reported by:    pointyhat

Use CMGROUP_MAX instead of NGROUPS and the argument to SOCKCREDSIZE().
This is a NO-OP except on 8/9 where it is a bugfix.

Fix invalid malloc in LDAP backend.

PR:     128025

-Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.
-Update libtool and libltdl to 2.2.6a.
-Remove devel/libtool15 and devel/libltdl15.
-Fix ports build with libtool22/libltdl22.
-Bump ports that depend on libltdl22 due to shared library version change.
-Explain what to do update in the UPDATING.

It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop
and applications in the runtime.

With help:      marcus and kwm
Pointyhat-exp:  a few times by pav
Tested by:      pgollucci, "Romain Tartière" <romain@blogreen.org>, and
                a few MarcusCom CVS users. Also, I might have missed a few.
Repocopy by:    marcus
Approved by:    portmgr

With regret, return these to the pool.

- Remove unneeded dependency from gtk12/gtk20 [1]
- Remove USE_XLIB/USE_X_PREFIX/USE_XPM in favor of USE_XORG
- Remove X11BASE support in favor of LOCALBASE or PREFIX
- Use USE_LDCONFIG instead of INSTALLS_SHLIB
- Remove unneeded USE_GCC 3.4+

Thanks to all Helpers:
        Dmitry Marakasov, Chess Griffin, beech@, dinoex, rafan, gahr,
        ehaupt, nox, itetcu, flz, pav

PR:             116263
Tested on:      pointyhat
Approved by:    portmgr (pav)

- hcrypto library is only installed on FreeBSD < 7.0

Reported by:    pointyhat
Approved by:    portmgr (hat)

Upgrade to 1.0.1.

PR:             ports/115589
Submitted by:   Rasmus Kaj <kaj@kth.se>

Use libtool port instead of included version to avoid objformat a.out botch

Register conflicts for srp in security/heimdal, security/krb4, and
securiry/krb5.
Bump PORTREVISION accordingly.

PR:             ports/105442
Submitted by:   Ruben van Staveren <ruben@verweg.com>
Reviewed by:    shaun@, cy@
Approved by:    flz (mentor)

When using LDAP as a KDC back-end, allow users to override the
hard-coded LDAP socket path. By default, we will use the path where
OpenLDAP usually puts its socket.

PR:             ports/72149
Submitted by:   Pawel Wieleba <wielebap@iem.pw.edu.pl>

- Update to 0.7.2.
- Improve pkg-descr, etc.
- Take maintainership.

BROKEN on 7.0: Incomplete pkg-plist

- s,INSTALLS_SHLIB,USE_LDCONFIG,g
- these include security/ sysutils/ textproc/ maintained by ports@

PR:             ports/101916
Submitted by:   Gea-Suan Lin <gslin_AT_gslin dot org>

Reset maintainer at his request; nectar is away from FreeBSD work right now.

- Update to 0.6.6
- Remove extra TABs and portlint(1)
- Update pkg-descr from page

Approved by:    secteam (simon)
Security:       CAN-2005-0469, CAN-2005-2040, CAN-2006-0582, CVE-2006-0677,
                VUXML: b62c80c2-b81a-11da-bec5-00123ffe8333

Remove install-info from Makefile, it's automatically done when INFO is defined

- Set CONFLICTS with krb4 and krb5
- Portlint

PR:             ports/85025
Submitted by:   lofi
Approved by:    maintainer timeout (nectar, 7 weeks)

- Let configure know that we have fnmatch.h (fixes some fnmatch-using
  C++ ports, since the fnmatch.h which was uselessly installed by
  heimdal did not wrap the fnmatch() declaration in extern C {}) [1]
- Fix the packing list on 4.x

[1]
PR:             ports/80366
Submitted by:   Joan Picanyol i Puig <lists-freebsd-gnats@biaix.org>
Approved by:    maintainer timeout (76 days)

BROKEN on 4.x: Incomplete pkg-plist

Add CONFLICTS due to libexec/ftpd.

PR:             ports/76235
Approved by:    ache, sumikawa (maintainers for wu-ftpd*)

Fix PLIST again.  Spell `password' correctly and keep the pointy
hat an extra day.

Noticed by:     pointyhat.freebsd.org

Fix PLIST (forgotten new manual pages).  Bump PORTREVISION.

Noticed by:     pointyhat.freebsd.org

Upgrade 0.6.1 -> 0.6.3

PR:     ports/74113
Submitted by:   Petr Holub <hopet@ics.muni.cz>

Cleanup master-sites.

PR:             ports/67157
Submitted by:   Roman Neuhauser
Approved by:    maintainer timeout

Fix packaging: com_err will only be built and installed on a few systems
where compile_et is not modern enough.

Update 0.6 -> 0.6.1
Use OPTIONS
Use USE_OPENLDAP

Whoa there, boy, that's a mighty big commit y'all have there...

Begin autotools sanitization sequence by requiring ports to explicitly
specify which version of {libtool,autoconf,automake} they need, erasing
the concept of a "system default".

For ports-in-waiting:

        USE_LIBTOOL=YES         ->      USE_LIBTOOL_VER=13
        USE_AUTOCONF=YES        ->      USE_AUTOCONF_VER=213
        USE_AUTOMAKE=YES        ->      USE_AUTOMAKE_VER=14

Ports attempting to use the old style system after June 1st 2004 will be
sorely disappointed.

Set `USE_LIBTOOL=yes'.  Previously, the value was `no', but that means
the same thing.  My original intention was to work around a build
buglet encountered on some version of FreeBSD.  Apparently, no such
work around is necessary.

Reported by:    Rolandas Naujikas <rolnas@takas.lt>

Put CFLAGS in CONFIGURE_ENV

On amd64, include -fPIC in CFLAGS.

PR:             ports/63199
Reported by:    Hendrik Scholz <hendrik@scholz.net>

Remove Kerberos IV support, as I'm unwilling to properly test it and
resolve packaging problems.

Fix a double-free which prevented `ftpd' from functioning correctly.

Update 0.5.1 -> 0.6.

Switch to using `INFO' while we are at it.

Fix non-default dependency on openldap2[012] which is broken by splitting.

# I'm not bumped port revision of them because this should not affect
# packages built on bento...

-- Move pkg-comment into Makefile
-- portlint as necessary

Number of commits found: 135 (showing only 100 on this page)

1 | 2  »  

12 vulnerabilities affecting 52 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2020-02-25 03:07:51