From owner-freebsd-ports-bugs@FreeBSD.ORG Mon Dec 17 12:10:01 2007 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B363416A419 for ; Mon, 17 Dec 2007 12:10:01 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id A7EB713C455 for ; Mon, 17 Dec 2007 12:10:01 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id lBHCA1of033102 for ; Mon, 17 Dec 2007 12:10:01 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id lBHCA1jB033101; Mon, 17 Dec 2007 12:10:01 GMT (envelope-from gnats) Resent-Date: Mon, 17 Dec 2007 12:10:01 GMT Resent-Message-Id: <200712171210.lBHCA1jB033101@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, TAKATSU Tomonari Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 12BB316A421 for ; Mon, 17 Dec 2007 12:01:24 +0000 (UTC) (envelope-from tts7500@www2.inetd.co.jp) Received: from www2.inetd.co.jp (www2.inetd.co.jp [211.13.206.150]) by mx1.freebsd.org (Postfix) with ESMTP id B7FAE13C467 for ; Mon, 17 Dec 2007 12:01:23 +0000 (UTC) (envelope-from tts7500@www2.inetd.co.jp) Received: from www2.inetd.co.jp (www2.inetd.co.jp [211.13.206.150]) by www2.inetd.co.jp (8.13.8/3.7W07120413) with ESMTP id lBHC1J60051983 for ; Mon, 17 Dec 2007 21:01:19 +0900 (JST) Received: (from tts7500@localhost) by www2.inetd.co.jp (8.13.8/8.12.8/Submit) id lBHC1JH2051982; Mon, 17 Dec 2007 21:01:19 +0900 (JST) (envelope-from tts7500) Message-Id: <200712171201.lBHC1JH2051982@www2.inetd.co.jp> Date: Mon, 17 Dec 2007 21:01:19 +0900 (JST) From: TAKATSU Tomonari To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Cc: Subject: ports/118775: [MAINTAINER] www/tdiary-devel: tDiary 2.1.4 contains a vulnerability X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Dec 2007 12:10:01 -0000 >Number: 118775 >Category: ports >Synopsis: [MAINTAINER] www/tdiary-devel: tDiary 2.1.4 contains a vulnerability >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Mon Dec 17 12:10:01 UTC 2007 >Closed-Date: >Last-Modified: >Originator: TAKATSU Tomonari >Release: FreeBSD 6.2-STABLE i386 >Organization: >Environment: System: FreeBSD photon.rtfm.jp 6.2-STABLE FreeBSD 6.2-STABLE #0: Sun Oct 21 17:56:31 JST 2007 >Description: - mark as FORBIDDEN because of a vulnerability Generated with FreeBSD Port Tools 0.77 >How-To-Repeat: >Fix: - we can use tDiary 2.2.0(ports/118772) instead of 2.1.4 diff -urN tdiary-devel.orig/Makefile tdiary-devel/Makefile --- tdiary-devel.orig/Makefile 2006-12-14 20:04:36.000000000 +0900 +++ tdiary-devel/Makefile 2007-12-17 20:55:30.000000000 +0900 @@ -21,6 +21,8 @@ MAINTAINER= tota@rtfm.jp COMMENT= A Web-based diary system (like weblog) written in Ruby +FORBIDDEN= contains a vulnerability: http://www.tdiary.org/20071215.html written in Japanese + NO_BUILD= yes CONFLICTS?= tdiary-[0-9]* \ ja-tdiary-[0-9]* \ >Release-Note: >Audit-Trail: >Unformatted: