Site Navigation

Date:      Wed, 13 May 2026 00:54:14 +0000
From:      Vladimir Druzenko <vvd@FreeBSD.org>
To:        ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org
Cc:        Matthias Andree <mandree@FreeBSD.org>
Subject:   git: 5f74f30e187f - main - dns/dnsmasq-devel: Update 2.93test10 => 2.93rc1 (6 CVEs)
Message-ID:  <6a03cbb6.20cd4.3c764bf7@gitrepo.freebsd.org>

---

index | next in thread | raw e-mail

---

The branch main has been updated by vvd:

URL: https://cgit.FreeBSD.org/ports/commit/?id=5f74f30e187f12444e4dae502f1a841d541369a6

commit 5f74f30e187f12444e4dae502f1a841d541369a6
Author:     Matthias Andree <mandree@FreeBSD.org>
AuthorDate: 2026-05-13 00:49:59 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2026-05-13 00:54:10 +0000

    dns/dnsmasq-devel: Update 2.93test10 => 2.93rc1 (6 CVEs)
    
    This contains the six security fixed (or variants thereof) recently
    appeared in 2.92rel2.
    
    Including privilege escalation, cache poisoning/rediction, information
    leak, and denial of service.
    
    See https://www.kb.cert.org/vuls/id/471747
    See https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2026q2/018471.html
    
    Upstream Git changelog since v2.93test10:
    
    * 14094e8 2026-05-09 | Fix buffer OOB read in find_soa() (tag: v2.93rc1)
                           [do litli]
    * c705607 2026-04-06 | Fix problen in from_wire() when names contain
                           escape chars. [Simon Kelley]
    * 9d2c93b 2026-03-30 | Sync 3ea905b98b8756f0652a9626a98384e96bab3a97 with
                           7cd050075ea73cd7707fce5b70f0fec25f722f67
                           [Simon Kelley]
    * 073082d 2026-03-30 | Fix buffer overflow vulnerability in
                           extract_addresses() CVE-2026-5172 [Simon Kelley]
    * 9f651f3 2026-03-30 | Updates to a345b075b3b8696a18631b46e53ab654354ed961
                           following review. [Simon Kelley]
    * e3a26d0 2026-03-25 | Fix broken client subnet validation. CVE-2026-4893
                           [Simon Kelley]
    * 10e6b5b 2026-03-25 | Fix buffer overflow in helper.c with large CLIDs.
                           CVE-2026-4892 [Simon Kelley]
    * 788b4e0 2026-03-25 | Verify rdlen field in RRSIG packets.
                           CVE-2026-4891 [Simon Kelley]
    * 7b151eb 2026-03-25 | Fix NSEC bitmap parsing infinite loop.
                           CVE-2026-4890 [Simon Kelley]
    * 014e909 2026-02-12 | Rework storage allocation for domain names.
                           CVE-2026-2291 [Simon Kelley]
    * 29f8712 2026-05-10 | Fix OOB read/write of rr_status. [Simon Kelley]
    * 0450f9e 2026-05-10 | Fix OOB read when parsing DHCPv6 userclass or
                           vendorclass options. [Simon Kelley]
    * 0637bcf 2026-05-09 | Add support for IPV6 when reading ARP/ND table on
                           *BSD. [Sagie D.]
    * 4bcc965 2026-05-04 | Fix memory leak reading ARP cache on *BSD.
                           [Simon Kelley]
    
    PR:             295204
    Security:       eeb4d69a-4d74-11f1-9a9c-994b98c88011
    Security:       CVE-2026-2291
    Security:       CVE-2026-4890
    Security:       CVE-2026-4891
    Security:       CVE-2026-4892
    Security:       CVE-2026-4893
    Security:       CVE-2026-5172
    Sponsored by:   UNIS Labs
    MFH:            2026Q2
---
 dns/dnsmasq-devel/Makefile | 10 +++++-----
 dns/dnsmasq-devel/distinfo |  6 +++---
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/dns/dnsmasq-devel/Makefile b/dns/dnsmasq-devel/Makefile
index 6561fb948c7d..c792db1ad8e2 100644
--- a/dns/dnsmasq-devel/Makefile
+++ b/dns/dnsmasq-devel/Makefile
@@ -1,13 +1,13 @@
 PORTNAME=	dnsmasq
-DISTVERSION=	2.93test10 # remember to bump PORTEPOCH when going from test to rc!
+DISTVERSION=	2.93rc1 # remember to bump PORTEPOCH when going from test to rc!
 # Leave the PORTREVISION in even if 0 to avoid accidental PORTEPOCH bumps:
 PORTREVISION=	0
-PORTEPOCH=	7
+PORTEPOCH=	8
 CATEGORIES=	dns
-#MASTER_SITES=	LOCAL/mandree/ \
-#		https://www.thekelleys.org.uk/dnsmasq/release-candidates/
 MASTER_SITES=	LOCAL/mandree/ \
-		https://www.thekelleys.org.uk/dnsmasq/test-releases/
+		https://www.thekelleys.org.uk/dnsmasq/release-candidates/
+#MASTER_SITES=	LOCAL/mandree/ \
+#		https://www.thekelleys.org.uk/dnsmasq/test-releases/
 PKGNAMESUFFIX=	-devel
 
 MAINTAINER=	mandree@FreeBSD.org
diff --git a/dns/dnsmasq-devel/distinfo b/dns/dnsmasq-devel/distinfo
index c73e39f00435..d32c9fc989c1 100644
--- a/dns/dnsmasq-devel/distinfo
+++ b/dns/dnsmasq-devel/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1776894710
-SHA256 (dnsmasq-2.93test10.tar.xz) = 452c9916e983a5286b1215781e8f707599384a1cd17c95cb986b117735b84017
-SIZE (dnsmasq-2.93test10.tar.xz) = 639584
+TIMESTAMP = 1778611077
+SHA256 (dnsmasq-2.93rc1.tar.xz) = 28ce9f03771ac26f104148b331660e8abdcf5e9abfc4513cd5227040d223a838
+SIZE (dnsmasq-2.93rc1.tar.xz) = 640368

home | help

---

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6a03cbb6.20cd4.3c764bf7>

Legal Notices | © 1995-2026 The FreeBSD Project. All rights reserved.

Contact