Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 28 Jan 2008 12:35:04 +0100 (CET)
From:      linimon@FreeBSD.org
To:        ports@FreeBSD.org
Subject:   FreeBSD ports which are currently marked forbidden
Message-ID:  <20080128113504.CFB721CCCC@mail.droso.net>

next in thread | raw e-mail | index | archive | help
As part of an ongoing effort to reduce the number of problems in the
FreeBSD ports system, we periodically notify users about
ports that are marked as "forbidden" in their Makefiles.  Often,
these ports are so marked due to security concerns, such as known
exploits.

An overview of each port, including errors seen on the build farm,
is included below.

portname:           databases/gnats
forbidden because:  Security issues
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=databases&portname=gnats


portname:           french/pluxml
forbidden because:  no active development and known security
                    vulnerabilities, see
                    http://www.securityfocus.com/bid/24607/info for
                    details
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=french&portname=pluxml


portname:           ftp/greed
forbidden because:  Insecure GRX file processing
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=ftp&portname=greed


portname:           misc/compat3x
forbidden because:  FreeBSD-SA-03:05.xdr, FreeBSD-SA-03:08.realpath  - not
                    fixed / no lib available
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=misc&portname=compat3x


portname:           net/gnu-finger
forbidden because: 
                    http://www.vuxml.org/freebsd/610bc692-a2ad-11dc-900c-000bcdc1757a.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=net&portname=gnu-finger


portname:           www/tdiary-devel
forbidden because:  contains a vulnerability:
                    http://www.tdiary.org/20071215.html written in
                    Japanese
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=www&portname=tdiary-devel


portname:           www/zope
forbidden because:  contains cross-site scripting vulnerability
                    http://VuXML.FreeBSD.org/34414a1e-e377-11db-b8ab-000c76189c4c.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=www&portname=zope



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080128113504.CFB721CCCC>