Date: Mon, 17 Dec 2007 21:01:19 +0900 (JST) From: TAKATSU Tomonari <tota@rtfm.jp> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/118775: [MAINTAINER] www/tdiary-devel: tDiary 2.1.4 contains a vulnerability Message-ID: <200712171201.lBHC1JH2051982@www2.inetd.co.jp> Resent-Message-ID: <200712171210.lBHCA1jB033101@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 118775 >Category: ports >Synopsis: [MAINTAINER] www/tdiary-devel: tDiary 2.1.4 contains a vulnerability >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Mon Dec 17 12:10:01 UTC 2007 >Closed-Date: >Last-Modified: >Originator: TAKATSU Tomonari >Release: FreeBSD 6.2-STABLE i386 >Organization: >Environment: System: FreeBSD photon.rtfm.jp 6.2-STABLE FreeBSD 6.2-STABLE #0: Sun Oct 21 17:56:31 JST 2007 >Description: - mark as FORBIDDEN because of a vulnerability Generated with FreeBSD Port Tools 0.77 >How-To-Repeat: >Fix: - we can use tDiary 2.2.0(ports/118772) instead of 2.1.4 diff -urN tdiary-devel.orig/Makefile tdiary-devel/Makefile --- tdiary-devel.orig/Makefile 2006-12-14 20:04:36.000000000 +0900 +++ tdiary-devel/Makefile 2007-12-17 20:55:30.000000000 +0900 @@ -21,6 +21,8 @@ MAINTAINER= tota@rtfm.jp COMMENT= A Web-based diary system (like weblog) written in Ruby +FORBIDDEN= contains a vulnerability: http://www.tdiary.org/20071215.html written in Japanese + NO_BUILD= yes CONFLICTS?= tdiary-[0-9]* \ ja-tdiary-[0-9]* \ >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200712171201.lBHC1JH2051982>