Date: Sat, 7 Oct 2006 17:39:36 +0000 (UTC) From: Tom McLaughlin <tmclaugh@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/lang/mono Makefile bsd.mono.mk distinfo Message-ID: <200610071739.k97Hda6I060339@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
tmclaugh 2006-10-07 17:39:36 UTC FreeBSD ports repository Modified files: lang/mono Makefile bsd.mono.mk distinfo Log: Update to 1.1.13.8.1 - fix CVE-2006-5072: Sebastian Krahmer of the SuSE security team discovered that the System.CodeDom.Compiler classes used temporary files in an insecure way. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges of the user invoking the program. Under some circumstances, a local attacker could also exploit this to inject arbitrary code into running Mono processes. vuxml id: 5a39a22e-5478-11db-8f1a-000a48049292 - Add USE_NANT to bsd.mono.mk for those ports I have hanging around which require NANT to build. Release notes: - 1.1.13.8.1: http://go-mono.com/archive/1.1.13.8.1/ - 1.1.13.8: http://go-mono.com/archive/1.1.13.8/ Project by: BSD# http://www.mono-project.com/Mono:FreeBSD Revision Changes Path 1.57 +2 -3 ports/lang/mono/Makefile 1.5 +39 -3 ports/lang/mono/bsd.mono.mk 1.26 +3 -3 ports/lang/mono/distinfo
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200610071739.k97Hda6I060339>