notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)Want a good monitor light? See my photosAll times are UTC		 Ukraine
This referral link gives you 10% off a Fastmail.com account and gives me a discount on my Fastmail account.

Get notified when packages are built

A new feature has been added. FreshPorts already tracks package built by the FreeBSD project. This information is displayed on each port page. You can now get an email when FreshPorts notices a new package is available for something on one of your watch lists. However, you must opt into that. Click on Report Subscriptions on the right, and New Package Notification box, and click on Update.

Finally, under Watch Lists, click on ABI Package Subscriptions to select your ABI (e.g. FreeBSD:14:amd64) & package set (latest/quarterly) combination for a given watch list. This is what FreshPorts will look for.

non port: security/krb5-120/distinfo

Number of commits found: 4

Saturday, 8 Jul 2023
04:30 Cy Schubert (cy) search for other commits by this committer 
security/krb5-120: Update to 1.20.2

MFH:		2023Q3
commit hash: af1e212baa35cc97e97b257ef89f1a2036b8764e commit hash: af1e212baa35cc97e97b257ef89f1a2036b8764e commit hash: af1e212baa35cc97e97b257ef89f1a2036b8764e commit hash: af1e212baa35cc97e97b257ef89f1a2036b8764e af1e212
Tuesday, 15 Nov 2022
17:19 Cy Schubert (cy) search for other commits by this committer 
security/krb5-120: Update to 1.20.1

MFH:		2022Q4
Security:	CVE-2022-42898
commit hash: abcf942f2ba44a1f333ce3daa2b8961202351a09 commit hash: abcf942f2ba44a1f333ce3daa2b8961202351a09 commit hash: abcf942f2ba44a1f333ce3daa2b8961202351a09 commit hash: abcf942f2ba44a1f333ce3daa2b8961202351a09 abcf942
16:37 Cy Schubert (cy) search for other commits by this committer 
security/krb5-*: Address CVE-2022-42898

Topic: Vulnerabilities in PAC parsing

CVE-2022-42898: integer overflow vulnerabilities in PAC parsing

SUMMARY
=======

Three integer overflow vulnerabilities have been discovered in the MIT
krb5 library function krb5_parse_pac().

IMPACT
======

An authenticated attacker may be able to cause a KDC or kadmind
process to crash by reading beyond the bounds of allocated memory,
creating a denial of service.  A privileged attacker may similarly be
able to cause a Kerberos or GSS application service to crash.

On a 32-bit platform, an authenticated attacker may be able to cause
heap corruption in a KDC or kadmind process, possibly leading to
remote code execution.  A privileged attacker may similarly be able to
cause heap corruption in a Kerberos or GSS application service running
on a 32-bit platform.

An attacker with the privileges of a cross-realm KDC may be able to
extract secrets from a KDC process's memory by having them copied into
the PAC of a new ticket.

AFFECTED SOFTWARE
=================

Kerberos and GSS application services using krb5-1.8 or later are
affected.  kadmind in krb5-1.8 or later is affected.  The krb5-1.20
KDC is affected.  The krb5-1.8 through krb5-1.19 KDC is affected when
using the Samba or FreeIPA KDB modules.

REFERENCES
==========

This announcement is posted at:

  https://web.mit.edu/kerberos/advisories/MITKRB5-SA-2022-001.txt

This announcement and related security advisories may be found on the
MIT Kerberos security advisory page at:

        https://web.mit.edu/kerberos/advisories/index.html

The main MIT Kerberos web page is at:

        https://web.mit.edu/kerberos/index.html

CVE:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42898

MFH:		2022Q4
Security:	CVE-2022-42898
commit hash: de40003bfd697e98cdd342e253699e83e1040961 commit hash: de40003bfd697e98cdd342e253699e83e1040961 commit hash: de40003bfd697e98cdd342e253699e83e1040961 commit hash: de40003bfd697e98cdd342e253699e83e1040961 de40003
Friday, 27 May 2022
13:45 Cy Schubert (cy) search for other commits by this committer 
security/krb5-120: Welcome new krb5 1.20

Welcome the new krb5-120 (1.20) from MIT.

krb5-118 is now deprecated and scheduled for removal a year from
now.
commit hash: d33c01d9cc1864a2be757fb99caa63223cfe5519 commit hash: d33c01d9cc1864a2be757fb99caa63223cfe5519 commit hash: d33c01d9cc1864a2be757fb99caa63223cfe5519 commit hash: d33c01d9cc1864a2be757fb99caa63223cfe5519 d33c01d

Number of commits found: 4
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
Security Policy
Privacy
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
sdl2_soundApr 22
chromiumApr 21
ungoogled-chromiumApr 21
clamavApr 19
jenkinsApr 19
jenkins-ltsApr 19
electron27Apr 18
electron28Apr 18
electron29Apr 18
filezillaApr 16
php81Apr 16
php82Apr 16
php83Apr 16
puttyApr 16
putty-nogtkApr 16

15 vulnerabilities affecting 262 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last processed:
2024-04-22 18:21:47 UTC


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)

Calculated hourly:
Port count 32216
Broken 86
Deprecated 178
Ignore 217
Forbidden 2
Restricted 2
No CDROM 1
Vulnerable 40
Expired 5
Set to expire 152
Interactive 0
new 24 hours 1
new 48 hours3
new 7 days14
new fortnight23
new month180
Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD 		Valid HTML, CSS, and RSS. Copyright © 2000-2024 Dan Langille. All rights reserved.