Security issues with www/minio
Hi, The www/minio port provides an outdated, insecure version of MinIO. This issue was raised on 2022-12-30 in https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268656 and five days ago I provided a VuXML patch at https://github.com/freebsd/freebsd-ports/pull/158 which I have updated several times as security/vuxml/vuln/2023.xml has changed. I note that the www/minio maintainer, swills@, has not committed to the ports tree since 2022-03-13 so someone else might need to update the port. However, it would help to apply the VuXML patch soon so that the port's users know of its security problems. Tom
Re: Possible precedence issue with control flow operator at /usr/local/lib/perl5/site_perl/IO/Socket/SSL.pm line 2599.
On Tue, Jul 16, 2024 at 12:41:10PM -0500, Larry Rosenman wrote: > Possible precedence issue with control flow operator at > /usr/local/lib/perl5/site_perl/IO/Socket/SSL.pm line 2599. It looks like you have encountered a warning that has been silenced in version 2.088 of IO::Socket::SSL: https://github.com/noxxi/p5-io-socket-ssl/issues/155 Tom
Request to merge VuXML pull request
Hi, I opened a GitHub pull request three months ago to add some vulnerabilities to FreeBSD's VuXML: https://github.com/freebsd/freebsd-ports/pull/271 I would be grateful if a ports committer would review this and merge it if it looks good. If you would prefer this reported via Bugzilla or Phabricator, I can do that instead. Thank you, Tom
