From owner-dev-commits-ports-all@freebsd.org Mon Jul 26 19:56:24 2021 Return-Path: Delivered-To: dev-commits-ports-all@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B639B673F80; Mon, 26 Jul 2021 19:56:24 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4GYVzr3fBGz3rZV; Mon, 26 Jul 2021 19:56:24 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 6458E1D29A; Mon, 26 Jul 2021 19:56:24 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 16QJuO9j000571; Mon, 26 Jul 2021 19:56:24 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 16QJuO4W000570; Mon, 26 Jul 2021 19:56:24 GMT (envelope-from git) Date: Mon, 26 Jul 2021 19:56:24 GMT Message-Id: <202107261956.16QJuO4W000570@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Cy Schubert Subject: git: 2598c4eafcf5 - main - security/krb5-118: Update to 1.18.4 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: cy X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 2598c4eafcf510829224f277192590b699c909f6 Auto-Submitted: auto-generated X-BeenThere: dev-commits-ports-all@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: Commit messages for all branches of the ports repository List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Jul 2021 19:56:24 -0000 The branch main has been updated by cy: URL: https://cgit.FreeBSD.org/ports/commit/?id=2598c4eafcf510829224f277192590b699c909f6 commit 2598c4eafcf510829224f277192590b699c909f6 Author: Cy Schubert AuthorDate: 2021-07-26 19:45:54 +0000 Commit: Cy Schubert CommitDate: 2021-07-26 19:55:38 +0000 security/krb5-118: Update to 1.18.4 The announcement as follows: The MIT Kerberos Team announces the availability of MIT Kerberos 5 Releases 1.19.2 and 1.18.4. Please see below for a list of some major changes included, or consult the README file in the source tree for a more detailed list of significant changes. Retrieving krb5-1.19.2 and krb5-1.18.4 ====================================== You may retrieve the krb5-1.19.2 and krb5-1.18.4 sources from the following URL: https://kerberos.org/dist/ The homepage for the krb5-1.19.2 and krb5-1.18.4 releases are: https://web.mit.edu/kerberos/krb5-1.19/ https://web.mit.edu/kerberos/krb5-1.18/ Further information about Kerberos 5 may be found at the following URL: https://web.mit.edu/kerberos/ Triple-DES transition ===================== Beginning with the krb5-1.19 release, a warning will be issued if initial credentials are acquired using the des3-cbc-sha1 encryption type. In future releases, this encryption type will be disabled by default and eventually removed. Beginning with the krb5-1.18 release, single-DES encryption types have been removed. Major changes in 1.19.2 and 1.18.4 (2021-07-22) =============================================== These are bug fix releases. * Fix a denial of service attack against the KDC encrypted challenge code [CVE-2021-36222]. * Fix a memory leak when gss_inquire_cred() is called without a credential handle. MFH: 2021Q3 Security: CVE-2021-36222 --- security/krb5-118/Makefile | 2 +- security/krb5-118/distinfo | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/security/krb5-118/Makefile b/security/krb5-118/Makefile index c8c4262785db..569b6df1c29d 100644 --- a/security/krb5-118/Makefile +++ b/security/krb5-118/Makefile @@ -1,7 +1,7 @@ # Created by: nectar@FreeBSD.org PORTNAME= krb5 -PORTVERSION= 1.18.3 +PORTVERSION= 1.18.4 CATEGORIES= security MASTER_SITES= http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/ .if !defined(MASTERDIR) diff --git a/security/krb5-118/distinfo b/security/krb5-118/distinfo index 8961bc83ccf8..6edc8a9255ec 100644 --- a/security/krb5-118/distinfo +++ b/security/krb5-118/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1605671127 -SHA256 (krb5-1.18.3.tar.gz) = e61783c292b5efd9afb45c555a80dd267ac67eebabca42185362bee6c4fbd719 -SIZE (krb5-1.18.3.tar.gz) = 8715312 +TIMESTAMP = 1627327768 +SHA256 (krb5-1.18.4.tar.gz) = 66085e2f594751e77e82e0dbf7bbc344320fb48a9df2a633cfdd8f7d6da99fc8 +SIZE (krb5-1.18.4.tar.gz) = 8716664