summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Collapse)AuthorFilesLines
2006-12-12Replace mk/bsd.prefs.mk includes with bsd.fast.prefs.mk includes.joerg3-6/+6
The redundant parsing of bsd.prefs.mk is mostly avoided now and parse time e.g. for x11/kdebase3 gets reduced by up to 10%.
2006-12-12Removed patch-ag becayse this is now in the pnupg code baseshannonjr1-13/+0
2006-12-12Update to 2.0.1.shannonjr4-11/+25
This is maintenance release to fix build problems found after the release of 2.0.0 and to fix a buffer overflow in gpg2
2006-12-12Update to release 1.0.0.shannonjr8-14/+100
Dirmngr is a server for managing and downloading certificate revocation lists (CRLs) for X.509 certificates and for downloading the certificates themselves. Dirmngr also handles OCSP requests as an alternative to CRLs. Dirmngr is either invoked internally by gpgsm (from GnuPG-2) or when running as a system daemon through the dirmngr-client tool.
2006-12-10It doesn't work to put a conditional USE_TOOLS+= nroff in the middledmcmahill1-3/+5
of the do-build target. bmake does not like that.
2006-12-10Update to 2.4.4.xtraeme2-6/+6
Mostly bugfixes, see: http://www.ijs.si/software/amavisd/release-notes.txt
2006-12-09Update gsasl to 0.2.15, based on patch provided by PR 33638.obache4-16/+22
* Version 0.2.15 (released 2006-08-22) ** Changed libgsasl shared library version. The shared library version was not incremented correctly in the last release, even though new APIs were added. * Version 0.2.14 (released 2006-08-19) ** New section "Requirements" in the manual, lists the external components. Suggested by James Mansion. ** Update of gnulib files. * Version 0.2.13 (released 2006-06-14) ** Update of gnulib files. Further improves portability to MinGW. ** Various improvements in the manuals. ** The tests are run under valgrind, if it is installed. Use --disable-valgrind-tests to unconditionally disable this. It is disabled by default for cross compiles. ** Various minor fixes. * Version 0.2.12 (released 2006-03-08) ** Update of gnulib files. Improves portability to Mingw32. * Version 0.2.11 (released 2006-02-07) ** Ported to Windows by cross-compiling using Mingw32. Using Debian's mingw32 compiler, you can build it for Windows by invoking `./configure --host=i586-mingw32msvc --disable-gssapi'. ** Update of gnulib files. * Version 0.2.10 (released 2005-10-23) ** Work around bug in GnuTLS that made the command line tool exit after ** failing to write a zero length message to the peer. ** Don't use GnuTLS if gnutls_certificate_verify_peers2 isn't present. ** Update of gnulib files. * Version 0.2.9 (released 2005-10-07) ** Update of gnulib files. * Version 0.2.8 (released 2005-09-08) ** The gsasl tool now support STARTTLS for IMAP and SMTP using GnuTLS. ** The --client and --server parameters for the gsasl tool now work properly. ** The --client and --server stdin/stdout modes now use the readline library. ** Fixed build problems in getpass on uClibc and Mingw32 platforms. ** Kinyarwanda translation added. * Version 0.2.7 (released 2005-08-25) ** Fix build problems when cross-compiling to uClibc and Mingw32 platforms. ** Detecting and using the readline library has been improved. * Version 0.2.6 (released 2005-08-08) ** The gsasl tool now try to connect to all addresses for a server name. ** The help-gsasl@gnu.org mailing list is now mentioned in documentation. ** The license template in files were updated with the new FSF address. ** Update of gnulib files.
2006-12-09Added patch fixing [CVE-2006-6235] remotely controllable function pointer.shannonjr3-3/+253
2006-12-09Make pkglint really happy.adrianp6-27/+114
Add IGNORE_URLS code from agc@: "If a URL is specified in IGNORE_URLS then all entries listed in pkg-vulnerabilities that match that URL will not be reported when audit-packages is run. Running audit-packages -v will display the details of all entries skipped if IGNORE_URLS is set." Add a sample audit-packages.conf detailing all the options we now support. Update to 1.46
2006-12-08Needs PKGLOCALEDIR.rillig1-1/+2
2006-12-07Correct wrong usage of PKGMANDIR.taca1-3/+3
2006-12-06Update to 1.4.6:wiz4-26/+8
Noteworthy changes in version 1.4.6 (2006-12-06) ------------------------------------------------ * Fixed a serious and exploitable bug in processing encrypted packages. [CVE-2006-6235]. * Fixed a buffer overflow in gpg. [bug#728, CVE-2006-6169] (already fixed in pkgsrc) * Fixed a bug while decrypting certain compressed and encrypted messages. [bug#537] * Added --s2k-count to set the number of times passphrase mangling is repeated. The default is 65536 times. * Added --passphrase-repeat to set the number of times GPG will prompt for a new passphrase to be repeated. This is useful to help memorize a new passphrase. The default is 1 repetition. * Added a GPL license exception to the keyserver helper programs gpgkeys_ldap, gpgkeys_curl, and gpgkeys_hkp, to clarify any potential questions about the ability to distribute binaries that link to the OpenSSL library. GnuPG does not link directly to OpenSSL, but libcurl (used for HKP, HTTP, and FTP) and OpenLDAP (used for LDAP) may. Note that this license exception is considered a bug fix and is intended to forgive any violations pertaining to this issue, including those that may have occurred in the past. * Man pages are now build from the same source as those of GnuPG-2.
2006-12-06Don't patch configure, but configure.in and teach it about newer geditjoerg6-24/+53
versions. The diff is 500k without manual editing and I don't want to push that into pkgsrc.
2006-12-06Update F-Prot Antivirus to 4.6.7.taca2-17/+16
F-PROT Antivirus for UNIX, version 4.6.7 Version 4.6.7 is a bugfix release which addresses the following issues: o Fixed an issue with multipart zip files that could be reported as invalid or corrupt o Several fixes to the scanning engine to improve handling of corrupted files, mostly .chm, .cab and .rar files. o Fixed a potential endless loop in corrupted .ace files in response to a vulnerability report. o Fixed an error in f-prot.sh that would cause the wrong part of paths to be substituted. Reported by Patrick Diddens.
2006-12-06Needs gettext as tool.joerg1-1/+2
2006-12-03Check for GCC on IRIX instead of assuming the native compiler is used.cbiere1-1/+5
2006-12-02Fixed PKGMANDIR.rillig1-4/+4
2006-12-01Replace hard-coded PKGNAME with the variable for the sake ofjoerg1-3/+3
Python != 2.4.
2006-11-30Explicitly pass down MAKE to fix wrkdir reference in nessus-build.joerg1-2/+4
Bump revision.
2006-11-30The oracle says that FOO= ${FOO} to get the variable from the environmentjoerg2-5/+19
in Makefile is a really bad and stupid idea. Kill it.
2006-11-30update to 0.0.8.gdt2-7/+7
* Major changes in 0.0.8 ** epa-file.el can now specify recipient keys from the file local variable `epa-file-encrypt-to'. ** Always encode passphrase with eol-type LF. ** Allow empty user IDs. ** Support handling notations on the signature. * Major changes in 0.0.7 ** Fixed a clearsign verification bug.
2006-11-28Add devel/sysexits/buildlink3.mk. Doesn't affect existing builds.tv1-1/+2
2006-11-28Add the same patch as security/gnupg2 package to fix a buffer overflow.taca3-2/+19
While fixing a bug reported by Hugh Warrington, a buffer overflow has been identified in all released GnuPG versions. The current versions 1.4.5 and 2.0.0 are affected. A small patch is provided. ... 2006-11-27 Werner Koch <wk@g10code.com> * openfile.c (ask_outfile_name): Fixed buffer overflow occurring if make_printable_string returns a longer string. Fixes bug 728. Bump PKGREVISION.
2006-11-27Bump PKGREVISION for security fix in patch-ag.wiz1-2/+2
2006-11-27"While fixing a bug reported by Hugh Warrington, a buffer overflow hasshannonjr2-1/+15
been identified in all released GnuPG versions. Exploiting this overflow seems to be possible. Apply the following patch to GnuPG." 2006-11-27 Werner Koch <wk@g10code.com> gnupg2 has been patched accordingly.
2006-11-25Apply the fix in PR 35024 from Jukka Salmi - allow the use of the base nameagc2-5/+6
of the package when specifying package names for the -p (one package) option, and to make audit-packages more consistent with pkg_info behaviour.
2006-11-25Add and enable cy2-ldapdb.obache1-1/+2
2006-11-25Import cy2-ldapdb version 2.1.22.obache3-0/+32
Based on PR 33317 by Yoshito Komatsu. SASL is a method for adding authentication support to connection-based protocols. To use SASL, a protocol includes a command for identifying and authenticating a user to a server and for optionally negotiating protection of subsequent protocol interactions. If its use is negotiated, a security layer is inserted between the protocol and the connection. This is the Cyrus SASL plugin that implements the LDAPDB authentication
2006-11-24Reset maintainer:wiz2-4/+4
Name service error for name=ethmoid.org type=MX: Host not found, try again
2006-11-24Update to Prewikka 0.9.8. Changes:shannonjr4-50/+25
- Save/load user configuration when using CGI authentication mode (#181). - Show Prewikka version in the About page (#177). - Use Python logging facility (available backend: stderr, file, smtp, syslog), multiple simultaneous handler supported (#113). - Fix anonymous authentication. - Fix external process going into zombie state (#178). - Display correct alertident for invalid CorrelationAlert analyzerid/messageid pair. - prewikka-httpd should now log the source address. - Thread safety fixes.
2006-11-22Re: pkg/35086: security/pinentry: PLIST is wrongshannonjr2-4/+4
PLIST correction.
2006-11-21Add explicit IOV_MAX for Interix -- openssh tries to use _XOPEN_IOV_MAXtv1-1/+2
in an autoarray, but on Interix that is the same as INT_MAX[!].
2006-11-21regen for patchestv1-2/+2
2006-11-21fix variable name in Interix part of patchtv1-2/+2
2006-11-20Re: pkg/35088: security/gnupg2: PLIST.gpgsm is wrongshannonjr2-3/+25
PLIST correction.
2006-11-19Added a gettext-lib API version dependancy to deal with reported buildshannonjr1-1/+2
problem under NetBSD 3.0.
2006-11-19tv@ pointed out that curl-7.16.0 had a shlib major bump --wiz2-3/+4
increase its BUILDLINK_ABI_DEPENDS, and bump PKGREVISIONs of dependencies. Sorry for not finding this earlier.
2006-11-19Make build with curl-7.16.0.wiz2-1/+14
2006-11-18Added starttls.obache1-1/+2
2006-11-18Import starttls 0.10, based on PR 29467 by FUKAUMI Naoki.obache4-0/+28
I modify to adapt to recent pkgsrc tree. starttls is simple wrapper program for STARTTLS on emacsen.
2006-11-17Removing gnupg-devel. It has been replaced by gnupg2.shannonjr17-453/+1
2006-11-17Added entry for gnupg2shannonjr1-1/+2
2006-11-17Update to 1.0.0.shannonjr3-11/+11
There are no actual code changes since the last release, only some cleanups and a complete manual.
2006-11-17Updated gpgsm option to use security/gnupg2 instead of security/gnupg-devel.shannonjr1-8/+9
2006-11-17This package is the sucessor to gnupg-devel.shannonjr10-0/+276
GnuPG-2 provides several utilities that are used by mail clients, such as Kmail and Balsa, including OpenPGP and S/MIME support. GnuPG-2 has a different architecture than GnuPG-1 (e.g. 1.4.5) in that it splits up functionality into several modules. However, both versions may be installed alongside without any conflict. In fact, the gpg version from GnuPG-1 is able to make use of the gpg-agent as included in GnuPG-2 and allows for seamless passphrase caching. The advantage of GnuPG-1 is its smaller size and the lack of dependency on other modules at run and build time.
2006-11-14This package does not have a man page.rillig1-1/+2
2006-11-13update to 1.4.5drochner2-6/+6
changes: minor bugfixes
2006-11-13Use md5.h in distfile instead of system provided file.obache2-24/+8
This is better solution of PR 28562 and may fix PR 34792. Also, convert a post-build sed step to use the SUBST framework, requested by PR 34792.
2006-11-12Fixed PKGMANDIR and Perl interpreter. PKGREVISION++rillig1-7/+8
2006-11-12Fixed PKGMANDIR.rillig1-3/+3