notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Ukraine
FreshPorts needs to find a new hosting provide willing to take a 2U chassis and host it free of charge. This is part of the FreshPorts project. Preferably in the Austin area. This is not a primary server, but it used for development.
non port: security/putty/Makefile
SVNWeb

Number of commits found: 68

Fri, 27 May 2022
[ 23:20 Matthias Andree (mandree) search for other commits by this committer ]    commit hash:f3d4c381ab172f5266130f329d09f6eb279babfb  f3d4c38 
security/putty: update to 0.77

PuTTY 0.77 changed its build system to cmake, and restructured the
source code, thus the patches were regenerated and updated.

As a consequence, GSSAPI_BASE no longer works because cmake wants
pkg-config and hence .pc files.

GSSAPI_HEIMDAL does not compile due to #define (&_foo) xxx.
Both GSSAPI_BASE and GSSAPI_HEIMDAL were disabled. Assistance solicited.

There is a new experimental GSSAPI_DYNAMIC which permits configuring the
GSS provider at run-time, which the package maintainer cannot test
for lack of Kerberized access somewhere. Feedback solicited.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 23 Nov 2021
[ 22:11 Stefan Eßer (se) search for other commits by this committer ]    commit hash:5933ac0b099d61d98eb531d373cf57a8927bc7af  5933ac0  (Only the first 10 of 157 ports in this commit are shown above. View all ports for this commit)
*/*: Remove redundant '-[0-9]*' from CONFLICTS_INSTALL

The conflict checks compare the patterns first against the package
names without version (as reported by "pkg query "%n"), then - if
there was no match - agsinst the full package names including the
version (as reported by "pkg query "%n-%v").

Approved by: portmgr (blanket)
Tue, 14 Sep 2021
[ 10:55 Bernhard Froehlich (decke) search for other commits by this committer ]    commit hash:1ab5027227804eb941bf829231c438fb1eeca2b8  1ab5027 
security/putty: Fix CPE information because current one is deprecated

Approved by:    portmgr (blanket)
Sun, 18 Jul 2021
[ 08:49 Matthias Andree (mandree) search for other commits by this committer ]    commit hash:7807f3bad2cbeb019d5b53bda958a620e31683ac  7807f3b 
security/putty: update to 0.76.

FreeBSD relevant changes per
https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

+ New option to abandon an SSH connection if the server allows you to
  authenticate in a trivial manner.
+ Bug fix: user colour-palette reconfiguration via 'Change Settings'
  were delayed-action.
+ Bug fix: server colour-palette reconfigurations were sometimes lost.
+ Bug fix: a tight loop could occur on reading a truncated private key
  file.
Sat, 8 May 2021
[ 15:00 Matthias Andree (mandree) search for other commits by this committer ]    commit hash:6b288be1e66ea83b1210a9bd2feac2359b76846a  6b288be 
security/putty: update to 0.75

https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

Deprecate -gtk2 version for Mid-December 2021.

Clean up a bit.
Wed, 7 Apr 2021
[ 08:09 Mathieu Arnold (mat) search for other commits by this committer ]    commit hash:cf118ccf875508b9a1c570044c93cfcc82bd455c  cf118cc  (Only the first 10 of 8873 ports in this commit are shown above. View all ports for this commit)
One more small cleanup, forgotten yesterday.
Reported by:	lwhsu
Tue, 6 Apr 2021
[ 14:31 Mathieu Arnold (mat) search for other commits by this committer ]    commit hash:305f148f482daf30dcf728039d03d019f88344eb  305f148  (Only the first 10 of 29333 ports in this commit are shown above. View all ports for this commit)
Remove # $FreeBSD$ from Makefiles.
Wed, 1 Jul 2020
[ 22:14 mandree search for other commits by this committer ] Original commit   Revision:540995
security/putty*: take LICENCE file from extracted source,

...rather than copying it into $FILESDIR where it would require
maintenance.

Reported by:	danfe@
Sun, 28 Jun 2020
[ 13:59 mandree search for other commits by this committer ] Original commit   Revision:540719
security/putty*: rename and update LICENCE from tarball.
[ 13:55 mandree search for other commits by this committer ] Original commit   Revision:540716
security/putty*: upgrade to 0.74 security fix release

Changelog:
https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

among them are these two---and more bugfixes beyond not listed here:

  * Security fix: if an SSH server accepted an offer of a public key
    and then rejected the signature, PuTTY could access freed memory,
    if the key had come from an SSH agent.

  * Security feature: new config option to disable PuTTY's dynamic
    host key preference policy, if you prefer to avoid giving away
    to eavesdroppers which hosts you have stored keys for.

MFH:		2020Q2
Security:       6190c0cd-b945-11ea-9401-2dcf562daa69
Security:       CVE-2020-14002
Security:       FZI-2020-5
Fri, 18 Oct 2019
[ 15:58 mandree search for other commits by this committer ] Original commit   Revision:514728
Update to upstream release 0.73 (security fixes)

Relevant changes taken from this...
ChangeLog:	https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

* Security fix: in bracketed paste mode, the terminal escape sequences that
  should delimit the pasted data were appearing together on one side of it,
  making it possible to misidentify pasted data as manual keyboard input.
* Bug fix (possibly security-related): an SSH-1 server sending a disconnection
  message could cause an access to freed memory.
* Bug fix: tweaked terminal handling to prevent lost characters at the ends of
  lines in gcc's coloured error messages.
* Bug fix: removed a bad interaction between the 'clear scrollback' operation
  and mouse selection that could give rise to the dreaded "line==NULL"
  assertion box.

MFH:		2019Q4
Wed, 9 Oct 2019
[ 12:20 bapt search for other commits by this committer ] Original commit   Revision:514144 (Only the first 10 of 20 ports in this commit are shown above. View all ports for this commit)
Drop the ipv6 virtual category for s* category as it is not relevant anymore
Sat, 20 Jul 2019
[ 16:16 mandree search for other commits by this committer ] Original commit   Revision:507001
Security update to new upstream release 0.72.

Security fixes found by the EU-funded bug bounty:
- two separate vulnerabilities affecting the obsolete SSH-1 protocol, both
available before host key checking
- a vulnerability in all the SSH client tools (PuTTY, Plink, PSFTP and PSCP) if
a malicious program can impersonate Pageant

Changelog:	https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

Switch off -DSTATIC_GSSAPI build as that produces non-working executables
(assertion failures). Bug has been reported upstream.

MFH:		2019Q3
Security:	5914705c-ab03-11e9-a4f9-080027ac955c
Tue, 26 Mar 2019
[ 23:58 mandree search for other commits by this committer ] Original commit   Revision:496930
Reinstate GSSAPI_NONE option.

Not bumping PORTREVISION as the default build is unaffected.

Obtained from:	Jacob Nevins, upstream Git commit 7ad08649
Sun, 17 Mar 2019
[ 14:17 mandree search for other commits by this committer ] Original commit   Revision:496064 (Only the first 10 of 12 ports in this commit are shown above. View all ports for this commit)
Update security/putty to 0.71 security fix release

Unfortunately, this new release breaks GSSAPI_NONE, which is removed
for now. Bug has been reported upstream.

Changelog: https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

MFH:		2019Q1
Security:	46e1ece5-48bd-11e9-9c40-080027ac955c
Mon, 2 Apr 2018
[ 21:29 mandree search for other commits by this committer ] Original commit   Revision:466267
Reinstate support for GTK2 (rather than GTK3) as an OPTION.

While here, add a putty-gtk2 slave port and update _CONFLICTS.

Since the default package does not change, and pkg would handle conflicts
around attempted installation of the new -gtk2 package, omit the
PORTREVISION bump from Miroslav's original patch.

PR:		227200
Submitted by:	Miroslav Lachman
Sun, 15 Oct 2017
[ 14:05 madpilot search for other commits by this committer ] Original commit   Revision:452147 (Only the first 10 of 11 ports in this commit are shown above. View all ports for this commit)
Retire WITHOUT_DEBUG flag.

The flag has partial support across the tree, and the same effect
can be obtained by using ".undef WITH_DEBUG".

Reviewed by:		mat, rene
Approved by:		portmgr (rene)
Differential Revision:	https://reviews.freebsd.org/D12548
Fri, 11 Aug 2017
[ 12:58 mandree search for other commits by this committer ] Original commit   Revision:447756
Update to 0.70, and make GSSAPI impl. selectable.

PR:		220838
Submitted by:	cy@
Sat, 13 May 2017
[ 13:16 mandree search for other commits by this committer ] Original commit   Revision:440836
security/putty: install icon and .desktop file

PR:		219095
Submitted by:	ehaupt@
Thu, 4 May 2017
[ 21:27 mandree search for other commits by this committer ] Original commit   Revision:440116
Update to new upstream release 0.69.

Upstream change "You can now explicitly configure SSH terminal mode
settings not to be sent to the server, if your server objects to them."

Enable pageant, was missing from the 0.68 upgrade.

Switch to GTK3, no longer compiles with GTK2.

The security fixes contained in 0.69 are only good on Windows, so not
flagging this as a security update.
Thu, 16 Mar 2017
[ 23:39 mandree search for other commits by this committer ] Original commit   Revision:436313
Update to new upstream release 0.68 (security fixes)

Additional minor updates on top of cy@'s patch (USE_GNOME, USE_XORG,
LDFLAGS).

ChangeLog: http://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html

Submitted by:	cy@
MFH:		2017Q1
Security:	CVE-2017-6542
Security:	9b973e97-0a99-11e7-ace7-080027ef73ec
Differential Revision:	https://reviews.freebsd.org/D10023
Fri, 16 Dec 2016
[ 20:30 mandree search for other commits by this committer ] Original commit   Revision:428696
Add new putty-nogtk port as alternative SSH implementation.
Wed, 20 Jul 2016
[ 15:33 mat search for other commits by this committer ] Original commit   Revision:418840 (Only the first 10 of 67 ports in this commit are shown above. View all ports for this commit)
Cleanup $() variables in ports Makefiles.

Mostly replace with ${}, but sometime, replace with $$() because it is
what was intended in the first place. (I think.)

Sponsored by:	Absolight
Mon, 7 Mar 2016
[ 16:54 mandree search for other commits by this committer ] Original commit   Revision:410527
Security upgrade to new upstream release 0.67.

Unix-relevant changes:
* Security fix: a buffer overrun in the old-style SCP protocol when receiving
  the header of each file downloaded from the server is fixed. (CVE-2016-2563)
* Assorted other robustness fixes for crashes and memory leaks.

MFH:		2016Q1
Security:	7f0fbb30-e462-11e5-a3f3-080027ef73ec
Security:	CVE-2016-2563
Mon, 23 Nov 2015
[ 11:44 marino search for other commits by this committer ] Original commit   Revision:402275
security/putty: Fix typo
[ 11:42 marino search for other commits by this committer ] Original commit   Revision:402274
security/putty: Fix krb5 dependency

Due to using both <bsd.port.pre.mk> and <bsd.port.options.mk>, the
USES+= gssapi:mit directive was ignored and not included in the build
dependency list.  Remove <pre>/<post> includes to fix.

Approved by:	mandree (maintainer)
Mon, 9 Nov 2015
[ 09:18 mandree search for other commits by this committer ] Original commit   Revision:401087
Update to new upstream release 0.66 (security fix).

Switch to USES=gssapi:mit.

Security:	CVE-2015-5309
Security:	0cb0afd9-86b8-11e5-bf60-080027ef73ec
Thu, 15 Oct 2015
[ 14:55 mat search for other commits by this committer ] Original commit   Revision:399346 (Only the first 10 of 135 ports in this commit are shown above. View all ports for this commit)
Drop 8 support.

With hat:	portmgr
Sponsored by:	Absolight
Differential Revision:	https://reviews.freebsd.org/D3694
Wed, 29 Jul 2015
[ 22:57 mandree search for other commits by this committer ] Original commit   Revision:393203
Update to new upstream bug-fix release 0.65

Release notes:
http://lists.tartarus.org/pipermail/putty-announce/2015/000021.html
Thu, 14 May 2015
[ 10:15 mat search for other commits by this committer ] Original commit   Revision:386312 (Only the first 10 of 1814 ports in this commit are shown above. View all ports for this commit)
MASTER_SITES cleanup.

- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
  of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
  no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.

While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.

Also, replace some EXTRACT_SUFX occurences with USES=tar:*.

Checked by:	make fetch-urlall-list
With hat:	portmgr
Sponsored by:	Absolight
Fri, 6 Mar 2015
[ 20:29 mandree search for other commits by this committer ] Original commit   Revision:380619
Add CPE info.

PR:		198369
Submitted by:	shun.fbsd.pr@dropcut.net
Thu, 5 Mar 2015
[ 22:15 mandree search for other commits by this committer ] Original commit   Revision:380554
Upgrade to upstream bugfix release 0.64.

This fixes a security bug, various other bugs, and supports SSH
connection sharing between multiple instances of PuTTY and its tools.

MFH:		2015Q1
Security:	92fc2e2b-c383-11e4-8ef7-080027ef73ec
Security:	CVE-2015-2157
Mon, 14 Jul 2014
[ 18:42 bapt search for other commits by this committer ] Original commit   Revision:361812 (Only the first 10 of 280 ports in this commit are shown above. View all ports for this commit)
Modernize LIB_DEPENDS

With hat:	portmgr
Wed, 25 Jun 2014
[ 05:35 bapt search for other commits by this committer ] Original commit   Revision:359185 (Only the first 10 of 304 ports in this commit are shown above. View all ports for this commit)
Convert GMAKE to MAKE_CMD
Please note that lots of invocation of MAKE_CMD here are wrong as they do not
properly respect MAKE_ENV and friends

With hat:	portmgr
Tue, 1 Oct 2013
[ 14:53 mandree search for other commits by this committer ] Original commit   Revision:328955
Support staging.
Fri, 20 Sep 2013
[ 22:55 bapt search for other commits by this committer ] Original commit   Revision:327769 (Only the first 10 of 1016 ports in this commit are shown above. View all ports for this commit)
Add NO_STAGE all over the place in preparation for the staging support (cat:
security)
Thu, 12 Sep 2013
[ 00:21 marino search for other commits by this committer ] Original commit   Revision:327018 (Only the first 10 of 27 ports in this commit are shown above. View all ports for this commit)
Add explicit dependency on pkgconf (27 ports)
Wed, 7 Aug 2013
[ 16:11 mandree search for other commits by this committer ] Original commit   Revision:324357
Upgrade PuTTY to new 0.63 beta upstream release, adding vulnerability info.

Quoting the upstream's change log:

- Security fix: prevent a nefarious SSH server or network attacker from
  crashing PuTTY at startup in three different ways by presenting a maliciously
  constructed public key and signature.
- Security fix: PuTTY no longer retains the private half of users' keys in
  memory by mistake after authenticating with them.
- Revamped the internal configuration storage system to remove all fixed
  arbitrary limits on string lengths. In particular, there should now no longer
  be an unreasonably small limit on the number of port forwardings PuTTY can
  store.
- Port-forwarded TCP connections which close one direction before the other
  should now be reliably supported, with EOF propagated independently in the
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sun, 6 Jan 2013
[ 13:04 mandree search for other commits by this committer ] Original commit   Revision:309981
Bump PORTREVISION, to get the ports rebuilt with ${CC}.
[ 12:52 mandree search for other commits by this committer ] Original commit   Revision:309979
- Convert to Options NG. Renames GTK option to GTK2 for consistency.
- Strip Makefile header.
- Make sure that the port build heeds ${CC}, passing it through MAKE_ARGS.
- Replace CC-is-clang specific -Wno-empty-body by unconditional -Wno-error.
- Remove LIB_DEPENDS ABI versions.
Thu, 15 Nov 2012
[ 23:33 mandree search for other commits by this committer ] Original commit   Revision:307470
Add CONFLICTS.

Suggested by:	ketas's ports conflicts checker
Feature safe:	yes
Sat, 13 Oct 2012
[ 13:39 dinoex search for other commits by this committer ] Original commit   Revision:305832 (Only the first 10 of 174 ports in this commit are shown above. View all ports for this commit)
- cleanup comments
Feature safe: yes
Fri, 1 Jun 2012
[ 05:26 dinoex search for other commits by this committer ] Original commit  (Only the first 10 of 4371 ports in this commit are shown above. View all ports for this commit)
- update png to 1.5.10
Mon, 12 Dec 2011
[ 19:57 mandree search for other commits by this committer ] Original commit 
Update PuTTY to new upstream security and bug fix release 0.62,
and add a new VuXML entry.

Changelog:     
http://lists.tartarus.org/pipermail/putty-announce/2011/000017.html
Security:       bbd5f486-24f1-11e1-95bc-080027ef73ec
Feature safe:   yes
Sun, 11 Dec 2011
[ 03:18 mandree search for other commits by this committer ] Original commit 
Revise OPTIONS wording.

Feature safe: yes
Wed, 30 Nov 2011
[ 04:03 cy search for other commits by this committer ] Original commit 
Fix build with GSSAPI under 9.0.

Approved by:    tabthorp (portmgr)
Feature safe:   yes
Sun, 17 Jul 2011
[ 14:18 mandree search for other commits by this committer ] Original commit 
- Take over maintainership from beat@ along his suggestion,
  permit him to take it back or commit without my approval.
- Update to upstream version 0.61.
- Add OPTIONS for GSSAPI and GTK (both enabled by default).

  NOTE: GSSAPI is currently broken on 9-CURRENT because the
  Kerberos in base expects MD2 which isn't provided by OpenSSL.

- mark BROKEN on OSVERSION >= 900000 when GSSAPI is enabled
- heed CFLAGS, CC, WITH_DEBUG, INSTALL_* settings.
- WITHOUT_X11 is now an alias for WITHOUT_GTK
- drop utmp support, the upstream requires a utmpx implementation that
  FreeBSD does not provide in any version.
- Preliminary clang support (adds files/patch-timing.c)
- Refreshed patches.
Wed, 28 Jan 2009
[ 23:25 beat search for other commits by this committer ] Original commit  (Only the first 10 of 17 ports in this commit are shown above. View all ports for this commit)
Update my email address to @FreeBSD.org.

Approved by:    miwi (mentor)
Sun, 4 Jan 2009
[ 16:19 miwi search for other commits by this committer ] Original commit 
- Pass maintainership to submitter

Submitted by:   "Beat Gätzi" <beat@chruetertee.ch>
Fri, 6 Jun 2008
[ 14:01 edwin search for other commits by this committer ] Original commit  (Only the first 10 of 129 ports in this commit are shown above. View all ports for this commit)
Bump portrevision due to upgrade of devel/gettext.

The affected ports are the ones with gettext as a run-dependency
according to ports/INDEX-7 (5007 of them) and the ones with USE_GETTEXT
in Makefile (29 of them).

PR:             ports/124340
Submitted by:   edwin@
Approved by:    portmgr (pav)
Tue, 22 Jan 2008
[ 15:58 garga search for other commits by this committer ] Original commit 
Drop maintainership
Wed, 13 Jun 2007
[ 12:03 garga search for other commits by this committer ] Original commit 
- Add one more MASTER_SITE
Fri, 25 May 2007
[ 12:34 garga search for other commits by this committer ] Original commit 
- Update to 0.60

PR:             ports/112377
Submitted by:   Dima Panov <fluffy@ael.ru>
Sat, 19 May 2007
[ 20:32 flz search for other commits by this committer ] Original commit  (Only the first 10 of 7868 ports in this commit are shown above. View all ports for this commit)
- Welcome X.org 7.2 \o/.
- Set X11BASE to ${LOCALBASE} for recent ${OSVERSION}.
- Bump PORTREVISION for ports intalling files in ${X11BASE}.
Thu, 15 Mar 2007
[ 17:59 garga search for other commits by this committer ] Original commit 
Install puttygen even if you set WITHOUT_GTK since it doesn't require gtk.

PR:             ports/110335
Submitted by:   Kenneth Vestergaard Schmidt<kvs@pil.dk>
Sun, 11 Feb 2007
[ 17:10 garga search for other commits by this committer ] Original commit 
Update to 0.59
Sat, 3 Feb 2007
[ 13:18 garga search for other commits by this committer ] Original commit 
- Remove 4.x support on my ports
Sat, 13 May 2006
[ 04:15 edwin search for other commits by this committer ] Original commit  (Only the first 10 of 275 ports in this commit are shown above. View all ports for this commit)
Remove USE_REINPLACE from all categories starting with S
Tue, 7 Mar 2006
[ 08:28 ade search for other commits by this committer ] Original commit  (Only the first 10 of 633 ports in this commit are shown above. View all ports for this commit)
Bump PORTREVISION on glib12/gtk12 consumer ports to ease the upgrade path.

Discussed with: kris
Approved by:    portmgr (implicit)
Mon, 11 Jul 2005
[ 16:47 garga search for other commits by this committer ] Original commit  (Only the first 10 of 25 ports in this commit are shown above. View all ports for this commit)
Change MAINTAINER to my @FreeBSD.org account

Approved by:    flz (mentor)
Sat, 30 Apr 2005
[ 15:17 leeym search for other commits by this committer ] Original commit 
- Update to 0.58
- Assign maintainership

PR:             80460
Submitted by:   Renato Botelho <freebsd@galle.com.br>
Sun, 20 Feb 2005
[ 21:09 simon search for other commits by this committer ] Original commit 
Security update to 0.57.

Security:      
http://vuxml.FreeBSD.org/a413ed94-836e-11d9-a9e7-0001020eed82.html
Approved by:    erwin (mentor)
Thu, 28 Oct 2004
[ 10:17 dinoex search for other commits by this committer ] Original commit 
- Security Update to 0.56
Thu, 14 Oct 2004
[ 05:23 dinoex search for other commits by this committer ] Original commit 
- drop maintainership
Wed, 4 Aug 2004
[ 08:03 dinoex search for other commits by this committer ] Original commit 
- Security update to 0.55
Sun, 15 Feb 2004
[ 19:29 dinoex search for other commits by this committer ] Original commit 
- improve supoort of gtk
Submitted by:   fjoe
[ 07:52 dinoex search for other commits by this committer ] Original commit 
- Enable IPV6 Support per default
- new Option WITHOUT_IPV6
Submitted by:   ume
Fri, 13 Feb 2004
[ 17:45 dinoex search for other commits by this committer ] Original commit 
PuTTY is a client program for the SSH, Telnet and Rlogin network protocols.

These protocols are all used to run a remote session on a computer,
over a network. PuTTY implements the client end of that session:
the end at which the session is displayed, rather than the end
at which it runs.

WWW: http://www.chiark.greenend.org.uk/~sgtatham/putty/

Number of commits found: 68