Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 27 Aug 2002 08:14:05 +0200 (CEST)
From:      Udo Schweigert <udo.schweigert@siemens.com>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/42057: maintainer-update of security/nessus-*
Message-ID:  <200208270614.g7R6E59C077684@alaska.cert.siemens.de>

next in thread | raw e-mail | index | archive | help

>Number:         42057
>Category:       ports
>Synopsis:       maintainer-update of security/nessus-*
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Mon Aug 26 23:20:01 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator:     Udo Schweigert
>Release:        FreeBSD 4.6-STABLE i386
>Organization:
>Environment:
System: FreeBSD alaska.cert.siemens.de 4.6-STABLE FreeBSD 4.6-STABLE #12: Sat Aug 24 15:20:54 CEST 2002 ust@alaska.cert.siemens.de:/usr/obj/work/src/RELENG_4/sys/alaska i386


>Description:

Maintainer update of the security/nessus-* ports:

	- Update to nessus 1.2.5

	- Fix a problem with hanging clients during a nmap scan


Committer:	Added file (cvs add): files/patch-nmap_wrapper.c
		The PR 41713 can also be closed after this has been committed.

>How-To-Repeat:
>Fix:

diff -ruN /usr/ports/security/nessus/Makefile nessus/Makefile
--- /usr/ports/security/nessus/Makefile	Sat Aug 10 18:22:16 2002
+++ nessus/Makefile	Tue Aug 27 07:47:27 2002
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	nessus
-PORTVERSION=	1.2.4
+PORTVERSION=	1.2.5
 CATEGORIES=	security
 MASTER_SITES=	ftp://ftp.cis.fed.gov/pub/nessus/nessus-${PORTVERSION}/src/ \
 		ftp://ftp.nessus.org/pub/nessus/nessus-${PORTVERSION}/src/ \
diff -ruN /usr/ports/security/nessus/distinfo nessus/distinfo
--- /usr/ports/security/nessus/distinfo	Sat Aug 10 18:22:16 2002
+++ nessus/distinfo	Tue Aug 27 07:47:37 2002
@@ -1 +1 @@
-MD5 (nessus/nessus-core-1.2.4.tar.gz) = 9b19ff966ad35b631ebde067f9b35f54
+MD5 (nessus/nessus-core-1.2.5.tar.gz) = 8bd8c7c014ebca11b28e8892f8221f26
diff -ruN /usr/ports/security/nessus-libnasl/Makefile nessus-libnasl/Makefile
--- /usr/ports/security/nessus-libnasl/Makefile	Sat Aug 10 18:22:20 2002
+++ nessus-libnasl/Makefile	Tue Aug 27 07:45:29 2002
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	nessus-libnasl
-PORTVERSION=	1.2.4
+PORTVERSION=	1.2.5
 CATEGORIES=	security
 MASTER_SITES=	ftp://ftp.cis.fed.gov/pub/nessus/nessus-${PORTVERSION}/src/ \
 		ftp://ftp.nessus.org/pub/nessus/nessus-${PORTVERSION}/src/ \
diff -ruN /usr/ports/security/nessus-libnasl/distinfo nessus-libnasl/distinfo
--- /usr/ports/security/nessus-libnasl/distinfo	Sat Aug 10 18:22:20 2002
+++ nessus-libnasl/distinfo	Tue Aug 27 07:45:38 2002
@@ -1 +1 @@
-MD5 (nessus/libnasl-1.2.4.tar.gz) = 84d7fae1936675eefe1eb6e211ed3e79
+MD5 (nessus/libnasl-1.2.5.tar.gz) = 87c1bc9bee1569f76232fcd4804980e4
diff -ruN /usr/ports/security/nessus-libraries/Makefile nessus-libraries/Makefile
--- /usr/ports/security/nessus-libraries/Makefile	Sat Aug 10 18:22:22 2002
+++ nessus-libraries/Makefile	Tue Aug 27 07:42:50 2002
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	nessus-libraries
-PORTVERSION=	1.2.4
+PORTVERSION=	1.2.5
 CATEGORIES=	security
 MASTER_SITES=	ftp://ftp.cis.fed.gov/pub/nessus/nessus-${PORTVERSION}/src/ \
 		ftp://ftp.nessus.org/pub/nessus/nessus-${PORTVERSION}/src/ \
diff -ruN /usr/ports/security/nessus-libraries/distinfo nessus-libraries/distinfo
--- /usr/ports/security/nessus-libraries/distinfo	Sat Aug 10 18:22:22 2002
+++ nessus-libraries/distinfo	Tue Aug 27 07:43:15 2002
@@ -1 +1 @@
-MD5 (nessus/nessus-libraries-1.2.4.tar.gz) = cf5710033fad10863d3ce862de3278ae
+MD5 (nessus/nessus-libraries-1.2.5.tar.gz) = 1a0c73a00b0a22aef6e01c323bdb77d0
diff -ruN /usr/ports/security/nessus-plugins/Makefile nessus-plugins/Makefile
--- /usr/ports/security/nessus-plugins/Makefile	Sat Aug 10 18:22:24 2002
+++ nessus-plugins/Makefile	Tue Aug 27 08:00:49 2002
@@ -6,7 +6,7 @@
 #
 
 PORTNAME=	nessus-plugins
-PORTVERSION=	1.2.4
+PORTVERSION=	1.2.5
 CATEGORIES=	security
 MASTER_SITES=	ftp://ftp.cis.fed.gov/pub/nessus/nessus-${PORTVERSION}/src/ \
 		ftp://ftp.nessus.org/pub/nessus/nessus-${PORTVERSION}/src/ \
diff -ruN /usr/ports/security/nessus-plugins/distinfo nessus-plugins/distinfo
--- /usr/ports/security/nessus-plugins/distinfo	Sat Aug 10 18:22:24 2002
+++ nessus-plugins/distinfo	Tue Aug 27 07:49:52 2002
@@ -1 +1 @@
-MD5 (nessus/nessus-plugins-1.2.4.tar.gz) = 7924b94a2830948ed05c7d5e97947eac
+MD5 (nessus/nessus-plugins-1.2.5.tar.gz) = 803862261827bc564b1bd4488ab27274
diff -ruN /usr/ports/security/nessus-plugins/files/patch-nmap_wrapper.c nessus-plugins/files/patch-nmap_wrapper.c
--- /usr/ports/security/nessus-plugins/files/patch-nmap_wrapper.c	Thu Jan  1 01:00:00 1970
+++ nessus-plugins/files/patch-nmap_wrapper.c	Fri Aug 16 17:00:43 2002
@@ -0,0 +1,19 @@
+--- plugins/nmap_wrapper/nmap_wrapper.c.orig	Wed Aug  7 16:59:06 2002
++++ plugins/nmap_wrapper/nmap_wrapper.c	Fri Aug 16 16:13:48 2002
+@@ -612,14 +612,12 @@
+  Hostinfos = hostinfos;
+  
+ #ifdef FAKE_PROGRESS_BAR
++ signal(SIGALRM, SIG_IGN);
++ alarm(0);
+  signal(SIGALRM, update_progress_bar);
+  alarm(1);
+ #endif
+  fp = ptycall_nmap (desc, NMAP, argv, &nmap_pid);
+-#ifdef FAKE_PROGRESS_BAR
+- signal(SIGALRM, SIG_IGN);
+- alarm(0);
+-#endif
+  destroy_argv (argv);
+  }
+ 
diff -ruN /usr/ports/security/nessus-plugins/pkg-plist nessus-plugins/pkg-plist
--- /usr/ports/security/nessus-plugins/pkg-plist	Sat Aug 10 18:22:24 2002
+++ nessus-plugins/pkg-plist	Tue Aug 27 07:53:55 2002
@@ -2,6 +2,7 @@
 etc/nessus/accounts.txt
 etc/nessus/queso.conf
 lib/nessus/plugins/3com_switches.nasl
+lib/nessus/plugins/AnyForm.nasl
 lib/nessus/plugins/BEA_weblogic_Reveal_Script_Code.nasl
 lib/nessus/plugins/BEA_weblogic_Reveal_Script_Code_2.nasl
 lib/nessus/plugins/CSCdi34061.nasl
@@ -43,6 +44,7 @@
 lib/nessus/plugins/DDI_Unprotected_PCanywhere.nasl
 lib/nessus/plugins/DDI_Unprotected_SiteScope.nasl
 lib/nessus/plugins/DDI_WhatsUp_Default.nasl
+lib/nessus/plugins/DDI_ws_ftp-server-cpwd-bo.nasl
 lib/nessus/plugins/ExAir_dos_advsearch.nasl
 lib/nessus/plugins/ExAir_dos_query.nasl
 lib/nessus/plugins/ExAir_dos_search.nasl
@@ -56,6 +58,8 @@
 lib/nessus/plugins/PC_anywhere.nasl
 lib/nessus/plugins/PC_anywhere_tcp.nasl
 lib/nessus/plugins/PGPCert_DoS.nasl
+lib/nessus/plugins/PHPAdsNew.nasl
+lib/nessus/plugins/PWS_DoS.nasl
 lib/nessus/plugins/RA_ssh_detect.nasl
 lib/nessus/plugins/RA_www_detect.nasl
 lib/nessus/plugins/ShowCode.nasl
@@ -66,6 +70,7 @@
 lib/nessus/plugins/a1stats.nasl
 lib/nessus/plugins/acc.nasl
 lib/nessus/plugins/accounts.nes
+lib/nessus/plugins/achievo_code_injection.nasl
 lib/nessus/plugins/activestate_perl.nasl
 lib/nessus/plugins/admentor_login_flaw.nasl
 lib/nessus/plugins/afs_version.nasl
@@ -105,6 +110,9 @@
 lib/nessus/plugins/apache_source_asp.nasl
 lib/nessus/plugins/apache_ssl_overflow.nasl
 lib/nessus/plugins/apache_username.nasl
+lib/nessus/plugins/apache_win32_dir_trav.nasl
+lib/nessus/plugins/appsocket_DoS.nasl
+lib/nessus/plugins/arcserve_hidden_share.nasl
 lib/nessus/plugins/arkeia.nasl
 lib/nessus/plugins/ascend_kill.nasl
 lib/nessus/plugins/asip-status.nasl
@@ -112,10 +120,13 @@
 lib/nessus/plugins/asp_net_path_disclosure.nasl
 lib/nessus/plugins/asp_source_data.nasl
 lib/nessus/plugins/asp_source_dot.nasl
+lib/nessus/plugins/asp_source_space.nasl
 lib/nessus/plugins/ath0_hangup.nasl
 lib/nessus/plugins/auktion_cgi.nasl
 lib/nessus/plugins/auth_enabled.nasl
 lib/nessus/plugins/avengers_news_system_command_execution.nasl
+lib/nessus/plugins/avirt_gateway_telnet.nasl
+lib/nessus/plugins/awol_injection.nasl
 lib/nessus/plugins/axent_raptor_dos.nasl
 lib/nessus/plugins/axis.nasl
 lib/nessus/plugins/axis_camera.nasl
@@ -124,6 +135,7 @@
 lib/nessus/plugins/badblue_get_DoS.nasl
 lib/nessus/plugins/badblue_null_byte.nasl
 lib/nessus/plugins/basilix_inc_files.nasl
+lib/nessus/plugins/basilix_webmail.nasl
 lib/nessus/plugins/bb-hist.nasl
 lib/nessus/plugins/bb-hostsvc.nasl
 lib/nessus/plugins/bboard.nasl
@@ -147,6 +159,7 @@
 lib/nessus/plugins/blackice_dos.nasl
 lib/nessus/plugins/bonk.nasl
 lib/nessus/plugins/bootparamd.nasl
+lib/nessus/plugins/boozt_admin_overflow.nasl
 lib/nessus/plugins/broadvision_path_disclosure.nasl
 lib/nessus/plugins/broker_ftp.nasl
 lib/nessus/plugins/c32.nasl
@@ -191,6 +204,7 @@
 lib/nessus/plugins/cisco_voip_dos.nasl
 lib/nessus/plugins/citrix_find.nasl
 lib/nessus/plugins/cmail_overflow.nasl
+lib/nessus/plugins/cobalt_cube_webmail_dir_trav.nasl
 lib/nessus/plugins/cobalt_web_admin_server.nasl
 lib/nessus/plugins/codered_x.nasl
 lib/nessus/plugins/cold_fusion_admin_dos.nasl
@@ -218,6 +232,7 @@
 lib/nessus/plugins/delegate_overflow.nasl
 lib/nessus/plugins/deltaups_detect.nasl
 lib/nessus/plugins/dhcp.nasl
+lib/nessus/plugins/directory_manager.nasl
 lib/nessus/plugins/directoryphp.nasl
 lib/nessus/plugins/directorypro.nasl
 lib/nessus/plugins/dmail_overflow.nasl
@@ -233,11 +248,14 @@
 lib/nessus/plugins/dragon_telnet.nasl
 lib/nessus/plugins/dtspcd.nasl
 lib/nessus/plugins/dumpenv.nasl
+lib/nessus/plugins/dwhttp_format_string.nasl
 lib/nessus/plugins/eDonkey_detect.nasl
+lib/nessus/plugins/eXtremail_format_strings.nasl
 lib/nessus/plugins/echo.nasl
 lib/nessus/plugins/eftp_bufferoverflow.nasl
 lib/nessus/plugins/eftp_directory_traversal.nasl
 lib/nessus/plugins/eftp_dos.nasl
+lib/nessus/plugins/eftp_root_disclosure.nasl
 lib/nessus/plugins/eicon_modem_dos.nasl
 lib/nessus/plugins/empower_path.nasl
 lib/nessus/plugins/eserv.nasl
@@ -280,6 +298,7 @@
 lib/nessus/plugins/ftp_bounce_scan.nes
 lib/nessus/plugins/ftp_check_user.nasl
 lib/nessus/plugins/ftp_cwd_root.nasl
+lib/nessus/plugins/ftp_func.inc
 lib/nessus/plugins/ftp_glob_overflow.nasl
 lib/nessus/plugins/ftp_overflow.nasl
 lib/nessus/plugins/ftp_pasv_dos.nasl
@@ -344,6 +363,7 @@
 lib/nessus/plugins/i2odialogd.nasl
 lib/nessus/plugins/iChat.nasl
 lib/nessus/plugins/iParty.nasl
+lib/nessus/plugins/ibillpm_detect.nasl
 lib/nessus/plugins/ibm_server_code.nasl
 lib/nessus/plugins/icat.nasl
 lib/nessus/plugins/icecap_default_pw.nasl
@@ -522,11 +542,13 @@
 lib/nessus/plugins/netscape_publishing_expert_psuser.nasl
 lib/nessus/plugins/netscape_wp_tag.nasl
 lib/nessus/plugins/netstat.nasl
+lib/nessus/plugins/nettools_cmd_exec.nasl
 lib/nessus/plugins/newdsn.nasl
 lib/nessus/plugins/newsdesk.nasl
 lib/nessus/plugins/nikto_wrapper.nes
 lib/nessus/plugins/nimda.nasl
 lib/nessus/plugins/nis_server.nasl
+lib/nessus/plugins/nisd_overflow.nasl
 lib/nessus/plugins/nmap_tcp_connect.nes
 lib/nessus/plugins/nmap_wrapper.nes
 lib/nessus/plugins/nntp_info.nasl
@@ -549,6 +571,7 @@
 lib/nessus/plugins/ntp_overflow.nasl
 lib/nessus/plugins/oas_overflow.nasl
 lib/nessus/plugins/objectserver.nes
+lib/nessus/plugins/officescan_disclosure.nasl
 lib/nessus/plugins/oops_overflow.nasl
 lib/nessus/plugins/openlink_overflow.nasl
 lib/nessus/plugins/openssh_231.nasl
@@ -561,6 +584,8 @@
 lib/nessus/plugins/openssh_uselogin_environment.nasl
 lib/nessus/plugins/openssl_overflow.nasl
 lib/nessus/plugins/openssl_overflow_generic_test.nasl
+lib/nessus/plugins/oracle9iAS_slashdot_DoS.nasl
+lib/nessus/plugins/oracle9iAS_too_long_url.nasl
 lib/nessus/plugins/oracle9i_XSQLServlet_XSQLConfig.nasl
 lib/nessus/plugins/oracle9i_apache_dms.nasl
 lib/nessus/plugins/oracle9i_dad_admin.nasl
@@ -597,6 +622,7 @@
 lib/nessus/plugins/perl_cgi.nasl
 lib/nessus/plugins/pfdipaly.nasl
 lib/nessus/plugins/pftp.nasl
+lib/nessus/plugins/pgpmail.nasl
 lib/nessus/plugins/pgpnet_detect.nasl
 lib/nessus/plugins/phf.nasl
 lib/nessus/plugins/phonebook.nasl
@@ -620,6 +646,7 @@
 lib/nessus/plugins/php_split_mime.nasl
 lib/nessus/plugins/phpix.nasl
 lib/nessus/plugins/phprocketaddin_traversal.nasl
+lib/nessus/plugins/pi3web_dos.nasl
 lib/nessus/plugins/pi3web_isapi.nasl
 lib/nessus/plugins/pimp.nasl
 lib/nessus/plugins/ping_asp.nasl
@@ -631,6 +658,7 @@
 lib/nessus/plugins/poc32.nasl
 lib/nessus/plugins/pollit.nasl
 lib/nessus/plugins/pop3_overflow.nasl
+lib/nessus/plugins/poprelayd_auth.nasl
 lib/nessus/plugins/popserver_detect.nasl
 lib/nessus/plugins/port_shell_execution.nasl
 lib/nessus/plugins/portal_of_doom.nasl
@@ -675,6 +703,7 @@
 lib/nessus/plugins/rh_inetd.nasl
 lib/nessus/plugins/rich_media_ecommerce_stores_sensitive_information_insecurely.nasl
 lib/nessus/plugins/rlogin.nasl
+lib/nessus/plugins/rlogin_froot.nasl
 lib/nessus/plugins/roads_cgi.nasl
 lib/nessus/plugins/rockliffe_mailsite_overflow.nasl
 lib/nessus/plugins/rover_pop3_overflow.nasl
@@ -719,6 +748,7 @@
 lib/nessus/plugins/rpc_yppasswd.nasl
 lib/nessus/plugins/rpc_ypupated.nasl
 lib/nessus/plugins/rpc_ypxfrd.nasl
+lib/nessus/plugins/rpcinfo.nasl
 lib/nessus/plugins/rpm_query.nasl
 lib/nessus/plugins/rsh.nasl
 lib/nessus/plugins/rsh_null.nasl
@@ -744,12 +774,15 @@
 lib/nessus/plugins/securemote_info_leak.nasl
 lib/nessus/plugins/sedum_dos.nasl
 lib/nessus/plugins/sendmail_bt_switch.nasl
+lib/nessus/plugins/sendmail_custom_config.nasl
 lib/nessus/plugins/sendmail_debug.nasl
+lib/nessus/plugins/sendmail_debug_leak.nasl
 lib/nessus/plugins/sendmail_decode.nasl
 lib/nessus/plugins/sendmail_expn.nasl
 lib/nessus/plugins/sendmail_local_overflow.nasl
 lib/nessus/plugins/sendmail_mime_overflow.nasl
 lib/nessus/plugins/sendmail_mime_overflow2.nasl
+lib/nessus/plugins/sendmail_queue_destruction.nasl
 lib/nessus/plugins/sendmail_redirection.nasl
 lib/nessus/plugins/sendtemp.nasl
 lib/nessus/plugins/servletExec_DoS.nasl
@@ -838,6 +871,8 @@
 lib/nessus/plugins/smb_nt_ms02-018.nasl
 lib/nessus/plugins/smb_nt_ms02-024.nasl
 lib/nessus/plugins/smb_nt_ms02-029.nasl
+lib/nessus/plugins/smb_nt_ms02-042.nasl
+lib/nessus/plugins/smb_null_params_dos.nasl
 lib/nessus/plugins/smb_reg_autologon.nasl
 lib/nessus/plugins/smb_reg_hklm.nasl
 lib/nessus/plugins/smb_reg_missing_winreg.nasl
@@ -878,6 +913,7 @@
 lib/nessus/plugins/smtp_relay.nasl
 lib/nessus/plugins/smtp_settings.nasl
 lib/nessus/plugins/smtpserver_detect.nasl
+lib/nessus/plugins/snapstream_dir_trav.nasl
 lib/nessus/plugins/snmpXdmid.nasl
 lib/nessus/plugins/snmp_cisco_type.nasl
 lib/nessus/plugins/snmp_default_communities.nasl
@@ -951,6 +987,7 @@
 lib/nessus/plugins/trinoo.nasl
 lib/nessus/plugins/tripwire_webpage.nasl
 lib/nessus/plugins/ttawebtop.nasl
+lib/nessus/plugins/typsoft_ftp_DoS.nasl
 lib/nessus/plugins/ultraseek_detect.nasl
 lib/nessus/plugins/ultraseek_dos.nasl
 lib/nessus/plugins/unicast_dos.nasl
@@ -962,6 +999,7 @@
 lib/nessus/plugins/uw_imap_overflow_two.nasl
 lib/nessus/plugins/vftpd_overflow.nasl
 lib/nessus/plugins/view_source_cgi.nasl
+lib/nessus/plugins/viralator.nasl
 lib/nessus/plugins/visadmin.nasl
 lib/nessus/plugins/visualroute_server_detect.nasl
 lib/nessus/plugins/vnc.nasl
@@ -976,6 +1014,7 @@
 lib/nessus/plugins/webactive_log.nasl
 lib/nessus/plugins/webalizer.nasl
 lib/nessus/plugins/webcart.nasl
+lib/nessus/plugins/webcart_cmd_exec.nasl
 lib/nessus/plugins/webdav.nasl
 lib/nessus/plugins/webdav_iis.nasl
 lib/nessus/plugins/webdist.nasl
@@ -988,6 +1027,7 @@
 lib/nessus/plugins/webmirror.nasl
 lib/nessus/plugins/webplus.nasl
 lib/nessus/plugins/webplus_version.nasl
+lib/nessus/plugins/webseal_DoS.nasl
 lib/nessus/plugins/websendmail.nasl
 lib/nessus/plugins/webserver_robot.nasl
 lib/nessus/plugins/webshield.nasl
@@ -1012,16 +1052,22 @@
 lib/nessus/plugins/winnuke.nasl
 lib/nessus/plugins/wins_udp_flood.nasl
 lib/nessus/plugins/winsatan.nasl
+lib/nessus/plugins/wnn_overflow.nasl
 lib/nessus/plugins/worldclient_server_detection.nasl
 lib/nessus/plugins/worldspan_gw_DoS.nasl
 lib/nessus/plugins/wrap.nasl
+lib/nessus/plugins/wsftp_overflows.nasl
 lib/nessus/plugins/wu_ftpd_overflow.nasl
 lib/nessus/plugins/wu_ftpd_site_exec.nasl
 lib/nessus/plugins/wu_ftpd_site_newer.nasl
+lib/nessus/plugins/www_infinite_request_DoS.nasl
 lib/nessus/plugins/www_too_long_auth.nasl
+lib/nessus/plugins/www_too_long_cookie.nasl
+lib/nessus/plugins/www_too_long_header.nasl
 lib/nessus/plugins/www_too_long_method.nasl
 lib/nessus/plugins/www_too_long_post.nasl
 lib/nessus/plugins/www_too_long_url.nasl
+lib/nessus/plugins/www_too_long_useragent.nasl
 lib/nessus/plugins/www_too_long_version.nasl
 lib/nessus/plugins/wwwboardpwd.nasl
 lib/nessus/plugins/wwwwais.nasl
>Release-Note:
>Audit-Trail:
>Unformatted:

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200208270614.g7R6E59C077684>