From owner-freebsd-ports@FreeBSD.ORG  Sun Apr  7 08:30:37 2013
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id BF9D6E12
 for <ports@FreeBSD.org>; Sun,  7 Apr 2013 08:30:37 +0000 (UTC)
 (envelope-from linimon@FreeBSD.org)
Received: from portsmonj.FreeBSD.org (portsmonj.freebsd.org [69.147.83.46])
 by mx1.freebsd.org (Postfix) with ESMTP id B46351E1E
 for <ports@FreeBSD.org>; Sun,  7 Apr 2013 08:30:37 +0000 (UTC)
Received: from portsmonj.freebsd.org (portsmonj.freebsd.org [69.147.83.46])
 by portsmonj.FreeBSD.org (8.14.5/8.14.4) with ESMTP id r378UbPH095330
 for <ports@FreeBSD.org>; Sun, 7 Apr 2013 08:30:37 GMT
 (envelope-from linimon@FreeBSD.org)
Date: Sun, 7 Apr 2013 08:30:37 GMT
Message-Id: <201304070830.r378UbPH095330@portsmonj.FreeBSD.org>
From: linimon@FreeBSD.org
To: ports@FreeBSD.org
Subject: FreeBSD ports which are currently marked forbidden
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: portmgr-feedback@FreeBSD.org
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Apr 2013 08:30:37 -0000

As part of an ongoing effort to reduce the number of problems in the
FreeBSD ports system, we periodically notify users about
ports that are marked as "forbidden" in their Makefiles.  Often,
these ports are so marked due to security concerns, such as known
exploits.

An overview of each port, including errors seen on the build farm,
is included below.

portname:           graphics/linux-tiff
forbidden because:  Vulnerable since 2004-10-13,
                    http://portaudit.freebsd.org/8816bf3a-7929-11df-bcce-0018f3e2eb82.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=graphics&portname=linux-tiff


portname:           security/sudosh3
forbidden because:  Secunia Advisory SA38292, ISS X-Force sudosh-replay-bo
                    (55903), replay() function buffer overflow.
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=security&portname=sudosh3


portname:           www/linux-flashplugin9
forbidden because:  CVE-2010-1297
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=www&portname=linux-flashplugin9


portname:           x11-toolkits/linux-pango
forbidden because:  Vulnerable since 2009-05-13,
                    http://portaudit.freebsd.org/4b172278-3f46-11de-becb-001cc0377035.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=x11-toolkits&portname=linux-pango