From owner-freebsd-ports@FreeBSD.ORG  Thu Feb 21 12:23:39 2013
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id D49375F5
 for <ports@FreeBSD.org>; Thu, 21 Feb 2013 12:23:39 +0000 (UTC)
 (envelope-from linimon@FreeBSD.org)
Received: from portsmonj.FreeBSD.org (portsmonj.freebsd.org [69.147.83.46])
 by mx1.freebsd.org (Postfix) with ESMTP id C95CD8DF
 for <ports@FreeBSD.org>; Thu, 21 Feb 2013 12:23:39 +0000 (UTC)
Received: from portsmonj.freebsd.org (portsmonj.freebsd.org [69.147.83.46])
 by portsmonj.FreeBSD.org (8.14.5/8.14.4) with ESMTP id r1L8Uboq094440
 for <ports@FreeBSD.org>; Thu, 21 Feb 2013 08:30:38 GMT
 (envelope-from linimon@FreeBSD.org)
Date: Thu, 21 Feb 2013 08:30:37 GMT
Message-Id: <201302210830.r1L8Uboq094440@portsmonj.FreeBSD.org>
From: linimon@FreeBSD.org
To: ports@FreeBSD.org
Subject: FreeBSD ports which are currently marked forbidden
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: portmgr-feedback@FreeBSD.org
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Feb 2013 12:23:39 -0000

As part of an ongoing effort to reduce the number of problems in the
FreeBSD ports system, we periodically notify users about
ports that are marked as "forbidden" in their Makefiles.  Often,
these ports are so marked due to security concerns, such as known
exploits.

An overview of each port, including errors seen on the build farm,
is included below.

portname:           graphics/linux-tiff
forbidden because:  Vulnerable since 2004-10-13,
                    http://portaudit.freebsd.org/8816bf3a-7929-11df-bcce-0018f3e2eb82.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=graphics&portname=linux-tiff


portname:           lang/eperl
forbidden because:  Vulnerable since 2001-06-21,
                    http://portaudit.freebsd.org/73efb1b7-07ec-11e2-a391-000c29033c32.html
build errors:
http://pointyhat.FreeBSD.org/errorlogs/sparc64-errorlogs/e.7.20101015091133/eperl-2.2.14_3.log.bz2 (_Jul_31_06:17:35_UTC_2010)
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=lang&portname=eperl


portname:           security/sudosh3
forbidden because:  Secunia Advisory SA38292, ISS X-Force sudosh-replay-bo
                    (55903), replay() function buffer overflow.
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=security&portname=sudosh3


portname:           www/linux-flashplugin9
forbidden because:  CVE-2010-1297
build errors:
http://pointyhat.freebsd.org/errorlogs/i386-errorlogs/e.10.20120608131052/linux-flashplugin-9.0r289_1.log (_Jun_13_10:34:28_UTC_2012)
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=www&portname=linux-flashplugin9


portname:           x11-toolkits/linux-pango
forbidden because:  Vulnerable since 2009-05-13,
                    http://portaudit.freebsd.org/4b172278-3f46-11de-becb-001cc0377035.html
build errors:       none.
overview:           http://portsmon.FreeBSD.org/portoverview.py?category=x11-toolkits&portname=linux-pango