| non port: sysutils/screen/pkg-plist |
|
SVNWeb
|
Number of commits found: 12 |
|
Tue, 29 Mar 2022
|
[ 22:13 Cy Schubert (cy)  ]    61ebb66
sysutils/screen: Varioius fixups
Make interprets PLIST variable names too. Choose a variable name
different enough not to be interpreted by make.
Fix a typo.
Use default executable permissions of 555, same as if permissions
weren't set in the first place. We're only interested in the setuid
bit. This requries a PORTREVISION bump.
|
[ 17:06 Cy Schubert (cy) ] 36f516a
sysutils/screen: Fix plist
PLIST doesn't like "_" in variable names. Fix by renaming
MULTIUSER_SCREEN to MULTIUSER.
PR: 262903
Reported by: sunpoet, Michael Butler <imb@protected-networks.net>
Fixes: 8f528507e9ca
Pointy hat to: cy
|
[ 15:39 Cy Schubert (cy) ] 8f52850
sysutils/screen: Disable multiuser mode by default
Multiuser mode is a handy way to share a screen among people who do
not reside in the same location. Unforutnately it requires that screen
be setuid root. GNU screen has had a number of CVEs over the years.
See https://www.cvedetails.com/vulnerability-list/vendor_id-72/\
product_id-1860/GNU-Screen.html. Removing the setuid bit mitigates this
at the expense of breaking the multuser feature.
Red Hat removed GNU screen's setuid bit over a dozen years ago. Their
rationale is documented in their bugzilla bug 580339, where they stated
that most users don't use the multiuser feature. (Personally, I'm the only
person I know of who uses that feature.)
Users who use the multuser feature should enable the MUILTUSER option
prior to building screen or using poudriere-options. Alternatively, users
can chmod the setuid bit on when needed.
PR: 262903
Submitted by: david@isnic.is (mostly)
Reported by: david@isnic.is
|
|
Thu, 17 Mar 2022
|
[ 23:44 Cy Schubert (cy) ] 9bdc788
sysutils/screen: Update to 4.9.0
Update screen to 4.9.0. From the release announcement:
New in this release:
* Hardstatus option for used encoding (escape string '%e')
* Fixes:
- fix combining char handling that could lead to a segfault
- CVE-2021-26937: possible denial of service via a crafted UTF-8
character sequence (bug #60030)
- make screen exit code be 0 when checking --help
- session names limit is 80 symbols (bug #61534)
- option -X ignores specified user in multiuser env (bug #37437)
- a lot of reformations/fixes/cleanups (man page and source code)
For full list of changes see
https://git.savannah.gnu.org/cgit/screen.git/log/?h=v.4.9.0
Note that CVE-2021-26937 was fixed in the FreeBSD port in 2021.
|
|
Thu, 29 Aug 2019
|
[ 14:09 bapt ]  
Always install the manpage and let the user decide if they do want
to install groff(1) as advised by man(1) if they want.
Reviewed by: cy
Approved by: cy (maintainer)
Differential Revision: https://reviews.freebsd.org/D21463
|
|
Sun, 1 Feb 2015
|
[ 14:30 cy ]
Fix pkg-plist.
|
|
Sat, 31 Jan 2015
|
[ 23:32 cy ]
Bump PORTREVISION for r373436.
PR: PR/197225
|
|
Wed, 26 Nov 2014
|
[ 01:37 cy ]
nstall optional screenrc with helpful status line instead of the
default.
Submitted by: alfred, kmoore
Reviewed by: rodrigc
|
|
Sat, 22 Nov 2014
|
[ 09:13 antoine ] (Only the first 10 of 218 ports in this commit are shown above.  )
Cleanup plist
|
|
Tue, 22 Oct 2013
|
[ 20:15 cy ]
Convert to staging.
PR: 183186
Submitted by: mat
|
|
Tue, 3 May 2011
|
[ 19:34 cy ]
Back out previous commit. It broke UTF8 functioning.
Submitted by: Dmitry Marakasov <amdmi3@amdmi3.ru>
|
|
Sun, 1 May 2011
|
[ 04:28 cy ]
Add support for KOI8-U.
PR: ports/156031
Submitted by: Valentin Nechayev <netch@netch.kiev.ua>
|
Number of commits found: 12 |
As an Amazon Associate I earn from qualifying purchases.