FreshPorts -- security/libressl: Free version of the SSL/TLS protocol forked from OpenSSL

Port details

libressl Free version of the SSL/TLS protocol forked from OpenSSL

4.0.0_1 security =17 3.9.2_1Version of this port present on the latest quarterly branch.

Maintainer: brnrd@FreeBSD.org

Port Added: 2014-07-12 12:03:53

Last Update: 2024-10-22 08:13:36

Commit Hash: ce4aba1

People watching this port, also watch:: nginx, openssl, poudriere, rsync, vim

Also Listed In: devel

License: BSD4CLAUSE

WWW:

https://www.libressl.org/

Description:

LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It was forked from the OpenSSL cryptographic software library in April 2014 as a response by OpenBSD developers to the Heartbleed security vulnerability in OpenSSL, with the aim of refactoring the OpenSSL code so as to provide a more secure implementation. LibreSSL was forked from the OpenSSL library starting with the 1.0.1g branch and will follow the security guidelines used elsewhere in the OpenBSD project.

¦ ¦ ¦ ¦

Manual pages:

FreshPorts has no man page information for this port.

pkg-plist: as obtained via: make generate-plist

There is no configure plist information for this port.

Dependency lines:

libressl>0:security/libressl

Conflicts:

CONFLICTS_INSTALL:

libressl-devel
openssl
openssl111
openssl3*
openssl-quictls

To install the port:

cd /usr/ports/security/libressl/ && make install clean

To add the package, run one of these commands:

pkg install security/libressl
pkg install libressl

NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.

PKGNAME: libressl

Package flavors (<flavor>: <package>)

default: libressl
libtls: libressl-libtls

distinfo:

TIMESTAMP = 1728973273 SHA256 (libressl-4.0.0.tar.gz) = 4d841955f0acc3dfc71d0e3dd35f283af461222350e26843fea9731c0246a1e4 SIZE (libressl-4.0.0.tar.gz) = 4259615

Packages (timestamps in pop-ups are UTC):

libressl
ABI	aarch64	amd64	armv6	armv7	i386	powerpc	powerpc64	powerpc64le
FreeBSD:13:latest	4.0.0_1	4.0.0_1	3.2.3	4.0.0_1	4.0.0_1	-	3.2.3	-
FreeBSD:13:quarterly	3.9.2_1	3.9.2_1	3.7.3	3.9.2_1	3.9.2_1	3.8.2	3.8.2	3.8.2
FreeBSD:14:latest	4.0.0_1	4.0.0_1	3.5.3	4.0.0_1	4.0.0_1	3.7.3	-	3.7.3
FreeBSD:14:quarterly	3.9.2_1	3.9.2_1	-	3.9.2_1	3.9.2_1	3.8.2	3.8.2	3.8.2
FreeBSD:15:latest	4.0.0_1	4.0.0_1	n/a	4.0.0_1	n/a	3.8.2_1	3.8.2_1	3.8.2_1

libressl-libtls
ABI	aarch64	amd64	armv6	armv7	i386	powerpc	powerpc64	powerpc64le
FreeBSD:13:latest	4.0.0_1	4.0.0_1	-	4.0.0_1	4.0.0_1	-	-	-
FreeBSD:13:quarterly	3.9.2_1	3.9.2_1	3.7.3	3.9.2_1	3.9.2_1	3.8.2	3.8.2	3.8.2
FreeBSD:14:latest	4.0.0_1	4.0.0_1	3.5.3	4.0.0_1	4.0.0_1	3.7.3	-	3.7.3
FreeBSD:14:quarterly	3.9.2_1	3.9.2_1	-	3.9.2_1	3.9.2_1	3.8.2	3.8.2	3.8.2
FreeBSD:15:latest	4.0.0_1	4.0.0_1	n/a	4.0.0_1	n/a	3.8.2_1	3.8.2_1	3.8.2_1

Dependencies

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

pkgconf>=1.3.0_1 : devel/pkgconf

This port is required by:

for Build

net/relayd

Deleted ports which required this port:

Expand this list of 2 deleted ports

for Run

Deleted ports which required this port:

Expand this list of 1 deleted port

* - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

Configuration Options:

===> The following configuration options are available for libressl-4.0.0_1: MAN3=on: Install API manpages (section 3) NC=on: Install TLS-enabled netcat ===> Use 'make config' to modify these settings

Options name:

security_libressl

USES:

cpe libtool pathfix pkgconfig

FreshPorts was unable to extract/find any pkg message

Master Sites:

Expand this list (7 items)

Collapse this list.

Notes from UPDATING

These upgrade notes are taken from /usr/ports/UPDATING

2024-10-19

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 4.0 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

Expand this list (5 items)

2024-05-13

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.9 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2023-11-04

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.8 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2023-03-18

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.6 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2022-09-25

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.5 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2021-11-09

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.4 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

Collapse this list.

Number of commits found: 103 (showing only 100 on this page)

1 | 2 »

Commit	Credits	Log message
Commit History - (may be incomplete: for full details, see links to repositories near top of page)
4.0.0_1 22 Oct 2024 08:13:36	Bernard Spil (brnrd)	security/libressl: Chase SHLIBVER bump PR: 282232 Reported by: Jakub Lach <jakub_lach mailplus pl>
4.0.0 19 Oct 2024 15:24:10	Bernard Spil (brnrd)	security/libressl: Update to 4.0.0 * Bumps major SHLIBVER
3.9.2_1 16 Jul 2024 13:50:55	Bernard Spil (brnrd)	security/libressl: Fix libtls flavor pkg-plist PR: 275676 Reported by: Vedran Miletic <vedran miletic net>
3.9.2_1 13 May 2024 13:23:15	Bernard Spil (brnrd)	security/libressl: Chase missing SHLIBVER bump Reported by: Herbert Skuhra
3.9.2 13 May 2024 10:19:48	Bernard Spil (brnrd)	security/libressl: Update to 3.9.2
3.8.4 30 Mar 2024 11:46:00	Bernard Spil (brnrd)	security/libressl: Update to 3.8.4
3.8.3 16 Mar 2024 12:25:23	Bernard Spil (brnrd)	security/libressl: Update to 3.8.3
3.8.2_1 22 Jan 2024 15:50:42	Muhammad Moinur Rahman (bofh)	security/libressl: Sanitize MANPREFIX Approved by: portmgr (blanket)
3.8.2 04 Nov 2023 12:58:26	Bernard Spil (brnrd)	security/libressl: Update to 3.8.2 * Major upgrade, rebuild all dependent ports
3.7.3_1 14 Oct 2023 17:23:12	Bernard Spil (brnrd)	security/openssl111: Chase addition/removal in CONFLICTS
3.7.3_1 16 Sep 2023 13:10:36	Bernard Spil (brnrd)	security/libressl: Use CA bundle from base PR: 269473 Reported by: tijl
3.7.3 16 Sep 2023 12:15:35	Bernard Spil (brnrd)	security/openssl: Chase addition of 3.2 Update CONFLICTS * Update comment in Mk/Uses/ssl.mk
3.7.3 28 May 2023 18:50:15	Bernard Spil (brnrd)	security/libressl: Update to 3.7.3
3.6.2 25 Mar 2023 12:52:28	Bernard Spil (brnrd)	security/libressl: Fix libtls flavor build
3.6.2 18 Mar 2023 10:17:29	Bernard Spil (brnrd)	security/libressl: Update to 3.6.2 * Major SHLIBVER update
3.5.4 15 Mar 2023 09:14:16	Bernard Spil (brnrd)	security/openssl30: Chase rename in ports CONFLICTS* Reported by: cperciva, junchoon
3.5.4 08 Feb 2023 18:05:20	Bernard Spil (brnrd)	security/libressl: Security update to 3.5.4 Security: 1dd84344-a7da-11ed-86e9-d4c9ef517024 MFH: 2023Q1
3.5.3 25 Sep 2022 11:15:46	Bernard Spil (brnrd)	security/libressl: Update to 3.5.3 * Make sure you check https://wiki.freebsd.org/LibreSSL/3.5 and UPDATING
07 Sep 2022 21:58:51	Stefan Eßer (se)	Remove WWW entries moved into port Makefiles Commit b7f05445c00f has added WWW entries to port Makefiles based on WWW: lines in pkg-descr files. This commit removes the WWW: lines of moved-over URLs from these pkg-descr files. Approved by: portmgr (tcberner)
3.4.3 07 Sep 2022 21:10:59	Stefan Eßer (se)	Add WWW entries to port Makefiles It has been common practice to have one or more URLs at the end of the ports' pkg-descr files, one per line and prefixed with "WWW:". These URLs should point at a project website or other relevant resources. Access to these URLs required processing of the pkg-descr files, and they have often become stale over time. If more than one such URL was present in a pkg-descr file, only the first one was tarnsfered into the port INDEX, but for many ports only the last line did contain the port specific URL to further information. There have been several proposals to make a project URL available as a macro in the ports' Makefiles, over time. (Only the first 15 lines of the commit message are shown above )
3.4.3 20 Jul 2022 14:22:56	Tobias C. Berner (tcberner)	security: remove 'Created by' lines A big Thank You to the original contributors of these ports: * <ports@c0decafe.net> * Aaron Dalton <aaron@FreeBSD.org> * Adam Weinberger <adamw@FreeBSD.org> * Ade Lovett <ade@FreeBSD.org> * Aldis Berjoza <aldis@bsdroot.lv> * Alex Dupre <ale@FreeBSD.org> * Alex Kapranoff <kappa@rambler-co.ru> * Alex Samorukov <samm@freebsd.org> * Alexander Botero-Lowry <alex@foxybanana.com> * Alexander Kriventsov <avk@vl.ru> * Alexander Leidinger <netchild@FreeBSD.org> (Only the first 15 lines of the commit message are shown above )
3.4.3 16 Mar 2022 19:19:45	Bernard Spil (brnrd)	security/libressl: Security update to 3.4.3 Security: ea05c456-a4fd-11ec-90de-1c697aa5a594 MFH: 2022Q1
3.4.2 28 Nov 2021 11:30:36	Bernard Spil (brnrd)	security/libressl: Fix merge conflict
3.4.1 23 Nov 2021 22:11:40	Stefan Eßer (se)	/: Remove redundant '-[0-9]*' from CONFLICTS_INSTALL The conflict checks compare the patterns first against the package names without version (as reported by "pkg query "%n"), then - if there was no match - agsinst the full package names including the version (as reported by "pkg query "%n-%v"). Approved by: portmgr (blanket)
3.4.1 09 Nov 2021 08:19:33	Bernard Spil (brnrd)	security/libressl: Upgrade to 3.4.1 * Includes TLS 1.3 capability
3.3.5 03 Oct 2021 11:54:58	Bernard Spil (brnrd)	security/libressl: Update to 3.3.5 * Fixes issues with LetsEncrypt DST Root X3 expiry MFH: 2021Q4
3.3.4 29 Aug 2021 12:05:02	Bernard Spil (brnrd)	security/libressl: Update to 3.3.4 * Auto-generate MAN3 plist
3.3.3 04 May 2021 14:31:51	Bernard Spil (brnrd)	security/libressl: Upgrade to 3.3.3 * Add libtls flavor
3.2.5 06 Apr 2021 14:31:07	Mathieu Arnold (mat)	Remove # $FreeBSD$ from Makefiles.
3.2.5 20 Mar 2021 18:35:47	brnrd	security/libressl: Security update to 3.2.5 Security: eeca52dc-866c-11eb-b8d6-d4c9ef517024
3.2.4_1 16 Mar 2021 15:43:22	brnrd	security/libressl: Security fix for potential use-after-free MFH: 2021Q1 Security: eeca52dc-866c-11eb-b8d6-d4c9ef517024
3.2.4 13 Feb 2021 10:12:57	brnrd	security/libressl: Bugfix update to 3.2.4 * See errata 013 from OpenBSD 6.8 * Various interoperability issues and memory leaks were discovered in libcrypto and libssl
3.2.3 11 Dec 2020 10:40:03	brnrd	security/libressl: Security update to 3.2.3 MFH: 2020Q4 Security: 88dfd92f-3b9c-11eb-929d-d4c9ef517024
3.2.2 19 Oct 2020 18:02:55	brnrd	security/libressl: Update to 3.2.2
3.1.4 19 Aug 2020 07:03:12	brnrd	security/libressl: Update to 3.1.4 * Interoperability and bug fixes (incl hang) MFH: 2020Q3
3.1.3 16 Jun 2020 07:00:52	brnrd	security/libressl: Chain-validation update to 3.1.3
3.1.2 21 May 2020 11:12:15	brnrd	security/libressl: Bugfix update to 3.1.2 * Fixes client crash MFH: 2020Q2
3.1.1 08 May 2020 20:17:22	brnrd	security/libressl: Update to 3.1.1 * 3.1 branch now stable (OpenBSD 6.7)
3.0.2 27 Apr 2020 13:10:14	brnrd	security/openssl-devel: Resurrect OpenSSL devel port
3.0.2 01 Jan 2020 17:30:19	brnrd	Chase rename of security/openssl111 - Categories n-z MFH: 2020Q1
3.0.2 19 Oct 2019 14:23:00	brnrd	security/libressl: Update to 3.0.2 * no SHLIBVER bump
2.9.2 22 May 2019 18:24:29	brnrd	security/libressl: Update to 2.9.2
2.9.1 22 Apr 2019 19:44:58	brnrd	security/libressl: Update to 2.9.1 - Requires a rebuild of all dependent ports
2.8.3 16 Dec 2018 11:08:56	brnrd	security/libressl: Security update to 2.8.3 Security: 6f170cf2-e6b7-11e8-a9a8-b499baebfeaf
2.8.2 20 Oct 2018 10:30:23	brnrd	security/libressl: Update to 2.8.2 - Requires rebuild of all dependent ports
2.7.4 12 Sep 2018 11:36:17	brnrd	Chase CONFLICTS after addition of security/openssl111 - While here mark OpenSSL 1.1.0 deprecated see: https://www.openssl.org/policies/releasestrat.html
2.7.4 14 Jun 2018 17:28:54	brnrd	security/libressl: Security update to 2.7.4 MFH: 2018Q2 Security: c82ecac5-6e3f-11e8-8777-b499baebfeaf
2.7.3 06 May 2018 19:08:26	brnrd	security/libressl: Don't stage man3 manpages if MAN3 off
2.7.3 06 May 2018 12:16:09	brnrd	security/libressl: Update to 2.7.3
2.7.2_1 30 Apr 2018 08:08:49	brnrd	security/libressl: Use -pthread Reported by: jbeich, eadler
2.7.2_1 29 Apr 2018 12:37:37	brnrd	security/libressl: Force linking libthr - Fixes problems with loading private ssh keys
2.7.2 28 Apr 2018 20:09:44	brnrd	security/libressl: Add version.mk change
2.7.2 28 Apr 2018 19:46:57	brnrd	security/libressl: Update to 2.7.2 - Most important ports are compatible, see https://wiki.freebsd.org/LibreSSL/2.7 for more info
2.6.4_1 27 Apr 2018 10:16:47	brnrd	security/libressl: Bump portrevision - Everybody deserves AES-NI off-load Reported by: adamw
2.6.4 24 Apr 2018 19:50:43	brnrd	security/libressl: Fix AES-NI assembly detection - While here, fix broken man3 option Reported by: Franco Fichtner <franco opnsense org>
2.6.4 21 Dec 2017 07:07:23	brnrd	security/libressl: Bugfix update to 2.6.4 - Fixes (No-)TLS with broken smtp clients MFH: 2017Q4
2.6.3 07 Nov 2017 15:30:52	brnrd	security/libressl: Update to 2.6.3 - Align with security/libressl-devel - Switch to using new install-man5 target for MAN3 option - Add UPDATING entry
2.5.5 13 Jul 2017 10:49:16	brnrd	security/libressl: Update to 2.5.5 - Bugfix update to 2.5.5 - nc manpage install fixed upstream
2.5.4 03 May 2017 08:44:36	brnrd	security/libressl: Update to 2.5.4 - Security update to 2.5.4 - Remove CVE-2017-8301 patch (included in 2.5.4) Security: 24673ed7-2bf3-11e7-b291-b499baebfeaf
2.5.3_1 29 Apr 2017 17:10:09	brnrd	security/libressl: Fix vulnerability Obtained from: OpenBSD MFH: 2017Q2 Security: 24673ed7-2bf3-11e7-b291-b499baebfeaf Security: CVE-2017-8301
2.5.3 11 Apr 2017 19:01:34	brnrd	security/libressl: Update to 2.5.3 - Update to 2.5.3 - Bump shlib versions - Add UPDATING entry for shlib version bumps - Use --enable-nc configure arg - Align with CFLAGS from -devel - Remove commented EXPLICIT_BZERO blurb - Update pkg-plist - Add x25519, drop krb5_asn header - Add ocspcheck binary - Added/removed man-pages
2.4.5 01 Feb 2017 09:59:34	brnrd	security/libressl: Update to 2.4.5 - Update version to 2.4.5 - Remove patch now included
2.4.4_1 11 Jan 2017 11:42:37	brnrd	security/libressl: Fix ECDSA P-256 timing attack vuln - Add patch from OpenBSD MFH: 2017Q1 Security: 7caebe30-d7f1-11e6-a9a5-b499baebfeaf Security: CVE-2016-7056
2.4.4 02 Dec 2016 11:58:22	mat	Do not use post-stage. Use post-install instead. The only reason to use post-stage is because the port needs to do "things" at a later time, like some plist manipulation. While there, fold post-install in do-install targets when they are defined. PR: 214780 Submitted by: mat Exp-run by: antoine Sponsored by: Absolight
2.4.4 15 Nov 2016 21:51:28	brnrd	security/libressl: Update to 2.4.4 - Bug-fix update to 2.4.4 - Improve MAN3 option handling - add extra-patch
2.4.3 30 Oct 2016 14:56:57	brnrd	security/libressl: Switch to CONFLICTS_INSTALL - There's no conflict at build time PR: 213691
2.4.3 21 Oct 2016 12:51:41	mat	${RM} already has -f. PR: 213570 Submitted by: mat Exp-run by: antoine Sponsored by: Absolight
2.4.3 27 Sep 2016 20:50:33	brnrd	security/libressl: Update to 2.4.3 - Update to 2.4.3 - Only affected by CVE-2016-6304 (high) MFH: 2016Q3 Security: CVE-2016-6304 Security: 43eaa656-80bc-11e6-bf52-b499baebfeaf
2.4.2 11 Aug 2016 20:06:03	brnrd	security/libressl: Update to 2.4.2 - Update to latest stable version 2.4.2 - Add UPDATING entry - Remove OPENSSL_VERSION_NUMBER patch - Change post-install targets to post-stage where possible - Bump libcrypto version in version.mk PR: 211701
2.3.7 03 Aug 2016 19:25:11	brnrd	security/libressl: Update to 2.3.7 - Bugfix update [1] Release notes: - http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.3.7-relnotes.txt
2.3.6 16 Jun 2016 13:22:59	mat	Add DEFAULT_VERSIONS=ssl=XXX Move the openssl detection routine to bsd.default-version.mk. Add warnings telling people to not use WITH_OPENSSL_PORT or WITH_OPENSSL_BASE. To ease maintainability, change the way the different ssl libraries version numbers are checked. PR: 210149 Submitted by: mat Exp-run by: antoine Sponsored by: The FreeBSD Foundation, Absolight Differential Revision: https://reviews.freebsd.org/D6577
2.3.6 09 Jun 2016 20:33:10	brnrd	security/libressl: Update to version 2.3.6 Security: CVE-2016-2178 Sponsored by: BSDCan DevSummit
2.3.5 01 Jun 2016 06:51:53	brnrd	security/libressl: Update to 2.3.5 - Update to bug-fix version 2.3.5 - `signify` verified tarball - Remove MAKE_JOBS_UNSAFE added in 2.3.4
2.3.4 03 May 2016 21:15:44	brnrd	security/libressl: Update to 2.3.4 - Upstream marked the 2.3 branch as stable - Bump SHLIB_VERSION in bsd.openssl.mk - Note SHLIB_VERSION bump and SSLv3 removal in UPDATING - Add TLS-enabled netcat binary - Fix linking issues with MySQL 5.7 [1] - Includes vulnerability fixes [2] PR: 208759 [1] Security: 01d729ca-1143-11e6-b55e-b499baebfeaf [2] Reviewed_by: feld (mentor), koobs (mentor) Approved by: feld (mentor, ports-secteam) Differential Revision: D5902
2.2.6 06 Mar 2016 20:06:41	brnrd	security/libressl*: Register conflict with security/openssl-devel - Add conflict for security/openssl-devel - Sort conflicts alphabetically Reviewed by: feld (mentor), koobs (mentor) Approved by: feld (mentor) Differential Revision: D5539
2.2.6 31 Jan 2016 11:48:37	brnrd	security/libressl: Update to 2.2.6 - Update to version 2.2.6 [1] - Remove CA root cert that is installed by default Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.6-relnotes.txt [1] Reviewed by: koobs (mentor), feld (mentor) Approved by: (mentor) Differential Revision: D5115
2.2.5 05 Jan 2016 19:47:13	brnrd	ecurity/libressl: Take MAINTAINER'ship - As requested by current maintainer via email Reviewed by: koobs (mentor), vsevolod (maintainer), feld (mentor) Approved by: koobs (mentor), vsevolod (maintainer) Differential Revision: D4782
2.2.5 08 Dec 2015 10:02:19	brnrd	security/libressl: Update to 2.2.5 - Version 2.2.5 addresses CVE-2015-2394 - Refactor regression-test target to TEST_TARGET - Add LibreSSL < 2.2.5/2.3.1_1 vuxml entry Reviewed by: koobs (mentor), feld (ports-secteam), delphij (ports-secteam) Approved by: koobs (mentor), delphij (ports-secteam) Security: 215e740e-9c56-11e5-90e7-b499baebfeaf MFH: 2015Q4 Differential Revision: https://reviews.freebsd.org/D4393
2.2.4 16 Oct 2015 07:13:03	brnrd	security/libressl: Fix memory leak and buffer overflow DoS vulnerability * Update to 2.2.4 (fixing vulnerabilities) * Create vuxml entry Differential Revision: https://reviews.freebsd.org/D3916 Submitted by: Bernard Spil <brnrd@freebsd.org> Reviewed by: delphij Approved by: delphij (secteam) MFC after: 2015Q4 Security: e75a96df-73ca-11e5-9b45-b499baebfeaf Security: CVE-2015-5333, CVE-2015-5334
2.2.3 15 Sep 2015 19:22:46	brnrd	security/libressl: Fix AESNI support PR: 200894 Approved by: vsevolod (maintainer, mentor)
2.2.3 31 Aug 2015 12:25:43	brnrd	security/libressl: Update to 2.2.3 - Update to 2.2.3 - Show compiler flags/invokes in build-log Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.3-relnotes.txt Reviewed by: koobs (mentor) Approved by: koobs (mentor) Differential Revision: https://reviews.freebsd.org/D3537
2.2.2 06 Aug 2015 19:36:47	brnrd	Revert pkg-plist OPENSSL_SHLIBVER addition Reported by: antoine
2.2.2 06 Aug 2015 19:13:18	brnrd	security/libressl: Update to 2.2.2 * Bump SHLIB versions of libssl/crypto/tls * Bump OPENSSL_SHLIBVER in bsd.openssl.mk * Add UPDATING entry for SHLIB version bump * Narrow scope of CONFLICTS (portlint) Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.2-relnotes.txt Differential_revision: D3278 Reviewed by: koobs (mentor), vsevolod (maintainer, mentor) Approved by: koobs (mentor)
2.2.1 08 Jul 2015 19:27:48	brnrd	security/libressl: Update to 2.2.1 * Minor update from OpenBSD LibreSSL-portable * Bumps all SHLIB versions * Bumps OPENSSL_SHLIBVER in bsd.openssl.mk * Adds UPDATING entry for SHLIB version bump * MFH as 2.2.0 already closes several vulns Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.1-relnotes.txt Differential revision: https://reviews.freebsd.org/D2963 Reviewed by: vsevolod (maintainer/mentor), koobs (mentor) Approved by: vsevolod (maintainer/mentor), koobs (mentor) MFH: 2015Q3
2.2.0 14 Jun 2015 13:28:27	brnrd	security/libressl: Update to 2.2.0 - Update to 2.2.0 - Remove opensslfeatures.h patch (included upstream) - Add pkg-plist (mainly documentation) - Bump libcrypto SHLIB version in Mk/bsd.openssl.mk Changes: http://marc.info/?l=openbsd-announce&m=143404058913441 Reviewed_by: vsevolod, koobs Approved by: vsevolod (maintainer, mentor), koobs (mentor) Security: 8305e215-1080-11e5-8ba2-000c2980a9f3 Differential revision: D2770 MFH: 2015Q2
2.1.7 12 Jun 2015 02:23:34	vsevolod	- Update to 2.1.7 that fixes the recent openssl vulnerabilities Submitted by: zi via IRC
2.1.6_1 01 Jun 2015 07:25:55	brnrd	security/libressl: Backport change for missing EGD feature - LibreSSL uses opensslfeatures.h to set defines for removed features - RAND_egd support was removed before first portable release - Change adds OPENSSL_NO_EGD define to make porting easier - Change is part of coming 2.2.0 version Approved by: vsevolod (maintainer, mentor), koobs (mentor) Obtained from: OpenBSD MFC after: 1 month
2.1.6 14 May 2015 10:15:09	mat	MASTER_SITES cleanup. - Replace ${MASTER_SITE_FOO} with FOO. - Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9% of the time.) - Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and no hint of what it should be was present. - Fix some logic. - And generally, make things more simple and easy to understand. While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and SAMBA macros. Also, replace some EXTRACT_SUFX occurences with USES=tar:*. Checked by: make fetch-urlall-list With hat: portmgr Sponsored by: Absolight
2.1.6 19 Mar 2015 23:11:49	vsevolod	- Update to 2.1.6 - Remove incorrectly added patch files PR: 198718 Submitted by: Bernard Spil <spil.oss at gmail.com> Security: CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289
2.1.5_1 19 Mar 2015 15:30:24	vsevolod	- Backport the following fixes from openssl [1]: CVE-2015-0207 Segmentation fault in DTLSv1_listen moderate CVE-2015-0209 Use After Free following d2i_ECPrivatekey error low CVE-2015-0286 Segmentation fault in ASN1_TYPE_cmp moderate CVE-2015-0287 ASN.1 structure reuse memory corruption moderate CVE-2015-0289 PKCS7 NULL pointer dereferences moderate - Enable libtls component [2] - Bump portrevision PR: 198681 [1] Submitted by: Bernard Spil <spil.oss at gmail.com> [1], naddy [2]
2.1.5 18 Mar 2015 09:55:01	vsevolod	- Update to 2.1.5 PR: 198651 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.4 04 Mar 2015 09:34:26	vsevolod	- Update to 2.1.4 PR: 198269 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.3 22 Jan 2015 16:48:38	vsevolod	- Update to 2.1.3 PR: 197005 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.2 16 Dec 2014 22:06:34	vsevolod	- Update to 2.1.2
2.1.1 17 Oct 2014 10:13:02	vsevolod	- Update to 2.1.1.
2.1.0 13 Oct 2014 08:33:04	vsevolod	- Update to 2.1.0 Submitted by: Johan Schuijt <johan at 300.nl> via private email
2.0.5 17 Aug 2014 14:22:00	vsevolod	- Update to 2.0.5. Submitted by: Johan Schuijt <johan at 300.nl> via private email
2.0.4 07 Aug 2014 12:56:14	vsevolod	- Update to 2.0.4. Notice: openssl CVEs are not yet fixed in this version.
2.0.3 22 Jul 2014 14:08:54	vsevolod	Update to 2.0.3.
2.0.2 16 Jul 2014 11:07:25	vsevolod	Update to 2.0.2

Number of commits found: 103 (showing only 100 on this page)

1 | 2 »

Login
User Login Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts? About the authors Issues FAQ How big is it? Security Policy Privacy Blog Contact

Search
Enter Keywords: more...

Latest Vulnerabilities

vaultwarden	Nov 18
mongodb50	Nov 17
mongodb60	Nov 17
mongodb70	Nov 17
mongodb80	Nov 17
chromium	Nov 16
electron31^*	Nov 16
electron32^*	Nov 16
ungoogled-chromium	Nov 16
vaultwarden	Nov 16
electron31	Nov 14
gitlab	Nov 14
postgresql12-client	Nov 14
postgresql12-plperl	Nov 14
postgresql12-server	Nov 14

20 vulnerabilities affecting 158 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last processed:
2024-11-19 19:12:13 UTC

Ports
Home Categories Deleted ports Sanity Test Failures Newsfeeds

Statistics

Graphs
NEW Graphs (Javascript)

Calculated hourly:

Port count	33029
Broken	119
Deprecated	179
Ignore	248
Forbidden	1
Restricted	2
No CDROM	1
Vulnerable	48
Expired	12
Set to expire	141
Interactive	0
new 24 hours	16
new 48 hours	24
new 7 days	45
new fortnight	217
new month	306