From owner-svn-ports-all@freebsd.org Wed Jul 27 02:03:39 2016 Return-Path: Delivered-To: svn-ports-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DF2FABA67D7; Wed, 27 Jul 2016 02:03:39 +0000 (UTC) (envelope-from cy@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AEB671515; Wed, 27 Jul 2016 02:03:39 +0000 (UTC) (envelope-from cy@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u6R23cBw074665; Wed, 27 Jul 2016 02:03:38 GMT (envelope-from cy@FreeBSD.org) Received: (from cy@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u6R23cH3074663; Wed, 27 Jul 2016 02:03:38 GMT (envelope-from cy@FreeBSD.org) Message-Id: <201607270203.u6R23cH3074663@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: cy set sender to cy@FreeBSD.org using -f From: Cy Schubert Date: Wed, 27 Jul 2016 02:03:38 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r419157 - head/security/krb5-113 X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jul 2016 02:03:40 -0000 Author: cy Date: Wed Jul 27 02:03:38 2016 New Revision: 419157 URL: https://svnweb.freebsd.org/changeset/ports/419157 Log: Update to 1.13.6. This is a bug fix release. * Improve some error messages * Improve documentation * Allow a principal with nonexistent policy to bypass the minimum password lifetime check, consistent with other aspects of nonexistent policies * Fix a rare KDC denial of service vulnerability when anonymous client principals are restricted to obtaining TGTs only [CVE-2016-3120] MFH: 2016Q3 Security: 62d45229-4fa0-11e6-9d13-206a8a720317 Security: CVE-2016-3120 Modified: head/security/krb5-113/Makefile head/security/krb5-113/distinfo Modified: head/security/krb5-113/Makefile ============================================================================== --- head/security/krb5-113/Makefile Wed Jul 27 01:56:23 2016 (r419156) +++ head/security/krb5-113/Makefile Wed Jul 27 02:03:38 2016 (r419157) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= krb5 -PORTVERSION= 1.13.5 +PORTVERSION= 1.13.6 CATEGORIES= security MASTER_SITES= http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/ .if !defined(MASTERDIR) Modified: head/security/krb5-113/distinfo ============================================================================== --- head/security/krb5-113/distinfo Wed Jul 27 01:56:23 2016 (r419156) +++ head/security/krb5-113/distinfo Wed Jul 27 02:03:38 2016 (r419157) @@ -1,2 +1,3 @@ -SHA256 (krb5-1.13.5.tar.gz) = d4463d3d96bf86cfbc2206713b1783e6caa00e9bb0e32a758db261facb618cca -SIZE (krb5-1.13.5.tar.gz) = 12141933 +TIMESTAMP = 1469584625 +SHA256 (krb5-1.13.6.tar.gz) = 9c0a46b8918237a53916370d2e02298c2b294f55f0351f9404e18930bc26badc +SIZE (krb5-1.13.6.tar.gz) = 12150805