From owner-svn-ports-all@freebsd.org Thu Jul 2 10:22:07 2020 Return-Path: Delivered-To: svn-ports-all@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 745D0350F3B; Thu, 2 Jul 2020 10:22:07 +0000 (UTC) (envelope-from joneum@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 49yDfl2SrKz4d3K; Thu, 2 Jul 2020 10:22:07 +0000 (UTC) (envelope-from joneum@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 3841C18FF3; Thu, 2 Jul 2020 10:22:07 +0000 (UTC) (envelope-from joneum@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id 062AM7Zg094988; Thu, 2 Jul 2020 10:22:07 GMT (envelope-from joneum@FreeBSD.org) Received: (from joneum@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id 062AM68b094986; Thu, 2 Jul 2020 10:22:06 GMT (envelope-from joneum@FreeBSD.org) Message-Id: <202007021022.062AM68b094986@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: joneum set sender to joneum@FreeBSD.org using -f From: Jochen Neumeister Date: Thu, 2 Jul 2020 10:22:06 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r541030 - in branches/2020Q3/dns/powerdns-recursor: . files X-SVN-Group: ports-branches X-SVN-Commit-Author: joneum X-SVN-Commit-Paths: in branches/2020Q3/dns/powerdns-recursor: . files X-SVN-Commit-Revision: 541030 X-SVN-Commit-Repository: ports MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Jul 2020 10:22:07 -0000 Author: joneum Date: Thu Jul 2 10:22:06 2020 New Revision: 541030 URL: https://svnweb.freebsd.org/changeset/ports/541030 Log: MFH: r541029 Update to 4.3.2 This update contains a security fix for CVE-2020-14196. The issue is: CVE-2020-14196: An issue has been found in PowerDNS Recursor where the ACL applied to the internal web server via webserver-allow-from is not properly enforced, allowing a remote attacker to send HTTP queries to the internal web server, bypassing the restriction. In the default configuration the API webserver is not enabled. Only installations using a non-default value for webserver and webserver-address are affected. As usual, there were also other smaller enhancements and bugfixes. In particular, the 4.3.2 release contains fixes that allow long CNAME chains to resolve properly, where previously they could fail if qname minimization is enabled. PR: 247707 Submitted by: Ralf van der Enden (maintainer) Security: 641cd669-bc37-11ea-babf-6805ca2fa271 Sponsored by: Netzkommune GmbH Approved by: ports-secteam (with hat) Deleted: branches/2020Q3/dns/powerdns-recursor/files/patch-hostnamemax Modified: branches/2020Q3/dns/powerdns-recursor/Makefile branches/2020Q3/dns/powerdns-recursor/distinfo Directory Properties: branches/2020Q3/ (props changed) Modified: branches/2020Q3/dns/powerdns-recursor/Makefile ============================================================================== --- branches/2020Q3/dns/powerdns-recursor/Makefile Thu Jul 2 10:20:52 2020 (r541029) +++ branches/2020Q3/dns/powerdns-recursor/Makefile Thu Jul 2 10:22:06 2020 (r541030) @@ -2,8 +2,7 @@ # $FreeBSD$ PORTNAME= recursor -DISTVERSION= 4.3.1 -PORTREVISION= 1 +DISTVERSION= 4.3.2 CATEGORIES= dns MASTER_SITES= http://downloads.powerdns.com/releases/ PKGNAMEPREFIX= powerdns- Modified: branches/2020Q3/dns/powerdns-recursor/distinfo ============================================================================== --- branches/2020Q3/dns/powerdns-recursor/distinfo Thu Jul 2 10:20:52 2020 (r541029) +++ branches/2020Q3/dns/powerdns-recursor/distinfo Thu Jul 2 10:22:06 2020 (r541030) @@ -1,3 +1,3 @@ -TIMESTAMP = 1589879472 -SHA256 (pdns-recursor-4.3.1.tar.bz2) = 54230852fcad3c6291651069c383f7ea88c5d29ce3c561decb2f40a063f52fd9 -SIZE (pdns-recursor-4.3.1.tar.bz2) = 1334817 +TIMESTAMP = 1593680318 +SHA256 (pdns-recursor-4.3.2.tar.bz2) = fcaeba94d5005ec3b973c1800d22eee686f785d3e635ad495d6f44067a4561e1 +SIZE (pdns-recursor-4.3.2.tar.bz2) = 1354549