Date: Wed, 16 Aug 2023 15:31:35 GMT From: Cy Schubert <cy@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-branches@FreeBSD.org Subject: git: 06f56fb54dc5 - 2023Q3 - security/krb5-121: Update to 1.21.2 Message-ID: <202308161531.37GFVZaE019969@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch 2023Q3 has been updated by cy: URL: https://cgit.FreeBSD.org/ports/commit/?id=06f56fb54dc5ca9a28b63f2bc84d3dbc1dc5192d commit 06f56fb54dc5ca9a28b63f2bc84d3dbc1dc5192d Author: Cy Schubert <cy@FreeBSD.org> AuthorDate: 2023-08-16 14:11:13 +0000 Commit: Cy Schubert <cy@FreeBSD.org> CommitDate: 2023-08-16 15:31:24 +0000 security/krb5-121: Update to 1.21.2 Major changes in 1.21.2 (2023-08-14) ==================================== This is a bug fix release. * Fix double-free in KDC TGS processing [CVE-2023-39975]. MFH: 2023Q3 (cherry picked from commit 8522ddedb83d4815964c9d2b4121980b187f4c53) --- security/krb5-121/Makefile | 3 +-- security/krb5-121/distinfo | 6 +++--- security/krb5-121/files/patch-kdc_do__tgs__req.c | 14 -------------- 3 files changed, 4 insertions(+), 19 deletions(-) diff --git a/security/krb5-121/Makefile b/security/krb5-121/Makefile index fe0251da5e19..a3b296eb8016 100644 --- a/security/krb5-121/Makefile +++ b/security/krb5-121/Makefile @@ -1,6 +1,5 @@ PORTNAME= krb5 -PORTVERSION= 1.21.1 -PORTREVISION= 1 +PORTVERSION= 1.21.2 CATEGORIES= security MASTER_SITES= http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/ .if !defined(MASTERDIR) diff --git a/security/krb5-121/distinfo b/security/krb5-121/distinfo index 5fcb6cda8ca1..ade8730ee9f7 100644 --- a/security/krb5-121/distinfo +++ b/security/krb5-121/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1689066284 -SHA256 (krb5-1.21.1.tar.gz) = 7881c3aaaa1b329bd27dbc6bf2bf1c85c5d0b6c7358aff2b35d513ec2d50fa1f -SIZE (krb5-1.21.1.tar.gz) = 8623049 +TIMESTAMP = 1692194668 +SHA256 (krb5-1.21.2.tar.gz) = 9560941a9d843c0243a71b17a7ac6fe31c7cebb5bce3983db79e52ae7e850491 +SIZE (krb5-1.21.2.tar.gz) = 8622513 diff --git a/security/krb5-121/files/patch-kdc_do__tgs__req.c b/security/krb5-121/files/patch-kdc_do__tgs__req.c deleted file mode 100644 index b42861d35c02..000000000000 --- a/security/krb5-121/files/patch-kdc_do__tgs__req.c +++ /dev/null @@ -1,14 +0,0 @@ ---- kdc/do_tgs_req.c.orig 2023-07-10 13:58:20.000000000 -0700 -+++ kdc/do_tgs_req.c 2023-08-14 07:23:14.383349000 -0700 -@@ -1010,8 +1010,9 @@ - } - - if (t->req->kdc_options & (KDC_OPT_VALIDATE | KDC_OPT_RENEW)) { -- /* Copy the whole header ticket except for authorization data. */ -- ticket_reply = *t->header_tkt; -+ /* Copy the header ticket server and all enc-part fields except for -+ * authorization data. */ -+ ticket_reply.server = t->header_tkt->server; - enc_tkt_reply = *t->header_tkt->enc_part2; - enc_tkt_reply.authorization_data = NULL; - } else {
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202308161531.37GFVZaE019969>