From owner-cvs-all@FreeBSD.ORG  Wed Jan 12 22:37:29 2005
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id AC45A16A4CE; Wed, 12 Jan 2005 22:37:29 +0000 (GMT)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 966FB43D49; Wed, 12 Jan 2005 22:37:29 +0000 (GMT)
	(envelope-from simon@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.1/8.13.1) with ESMTP id j0CMbTWX014063;
	Wed, 12 Jan 2005 22:37:29 GMT
	(envelope-from simon@repoman.freebsd.org)
Received: (from simon@localhost)
	by repoman.freebsd.org (8.13.1/8.13.1/Submit) id j0CMbT6x014062;
	Wed, 12 Jan 2005 22:37:29 GMT
	(envelope-from simon)
Message-Id: <200501122237.j0CMbT6x014062@repoman.freebsd.org>
From: "Simon L. Nielsen" <simon@FreeBSD.org>
Date: Wed, 12 Jan 2005 22:37:29 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org,
	cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: ports/security/vuxml vuln.xml ports/www/squid Makefile
 distinfo
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jan 2005 22:37:29 -0000

simon       2005-01-12 22:37:29 UTC

  FreeBSD ports repository

  Modified files:
    security/vuxml       vuln.xml 
    www/squid            Makefile distinfo 
  Log:
  - Integrate vendor patches as published on
    <http://www.squid-cache.org/Versions/v2/2.5/bugs/> for the following
    issues:
    + Prevent a possible denial of service attack via WCCP messages (squid bug
      #1190), classified as security issue by the vendor
    + Fix a buffer overflow in the Gopher to HTML conversion routine (squid bug
      #1189), classified as security issue by the vendor
    + Fix a null pointer access and plug memory leaks in the fake_auth NTLM
      helper (squid bug #1183) (this helper app is not installed by default by
      the port)
    + Stop closing open filedescriptors beyond stdin, stdout and stderr on
      startup (squid bug #1177)
  
  - Unbreak the port on NO_NIS systems (thanks to "Alexander <freebsd AT
    nagilum.de>" for reporting this)
  
  - Document the two security issues in VuXML.
  
  PR:             ports/76173
  Submitted by:   Thomas-Martin Seck <tmseck@netcologne.de> (maintainer)
  Approved by:    erwin (mentor)
  
  Revision  Changes    Path
  1.459     +63 -1     ports/security/vuxml/vuln.xml
  1.149     +12 -4     ports/www/squid/Makefile
  1.113     +8 -0      ports/www/squid/distinfo