From nobody Tue Dec 14 07:06:03 2021 X-Original-To: dev-commits-ports-all@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 23AC518D2EA7; Tue, 14 Dec 2021 07:06:04 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4JCqCv51NVz4hv7; Tue, 14 Dec 2021 07:06:03 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 8C18D23CEB; Tue, 14 Dec 2021 07:06:03 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 1BE763UW020673; Tue, 14 Dec 2021 07:06:03 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 1BE763Ml020672; Tue, 14 Dec 2021 07:06:03 GMT (envelope-from git) Date: Tue, 14 Dec 2021 07:06:03 GMT Message-Id: <202112140706.1BE763Ml020672@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Dave Cottlehuber Subject: git: aa51fcd1fd6b - main - net-mgmt/riemann: update to 0.3.8 List-Id: Commit messages for all branches of the ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-all List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-all@freebsd.org X-BeenThere: dev-commits-ports-all@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: dch X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: aa51fcd1fd6bb5115408aac642c02e6d6e707b60 Auto-Submitted: auto-generated ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1639465563; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=ecc9/nWutLqzdunRHpYN8VvKy7WfuM0VeY9F8MSOvYE=; b=ABLjFAGdfj4JhEYij1OwPam210xxYG8tJkr2HDGszzR1n58aYBrbeHwi0VK9eMghH/ZPIz 82mh7V9EMxGiuBQSqrU9G++3mI5KVnPQAipQMeADIhFzdQBabyPwYE0sljOqzeepASk+pv um+IBDVLYM/XjY3LtUHHdLgxIdFlaPXdX2GKJjkDWK4R5yiS4ZHO2B+7xJB9W0udBLo3H7 +CTgMkCjUaFnby0A7d2G3STLR1j6EpdzAck8T/wM5EvH76o71gnCC5cRh0pmm+ZA2EfcBs /lg/0CexYFMlI2knWm9J76/Mou9Y/3XNnu4ACPrTkcqHvoWEj754ySRrfUtsyw== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1639465563; a=rsa-sha256; cv=none; b=A5XWTIBdP5JRjeuTr9wjnD7vCHRYshRgwYeIwJpu02fAfrWNenZajgag2v3oIXUwmIRthC 6GbyXvb07QXP7Op3q9BiOsYSeVCdQtVQXNYJWE57qjyKnN+uLwIQPiblxU10ESwe2VVZB9 ZnC/0vwFVyWM0wY/7yxnRAT2iTgNytS2DVkuz3kQhCCm5w/aDx83CJKmq9Go06aZOOvw78 ZRxYuLwbbyMwkZFyajQ2UGAmcyl8UGkD0Y4PIEc50rBJS2Oxx2EKr1cLE6fTh6zvguaPjz CNBbD9/5adl3d1NNPSwBhJhsApjBpDwiWhmcTjp1nlxA9XuZ7rbR5AfnbD1UvA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none X-ThisMailContainsUnwantedMimeParts: N The branch main has been updated by dch: URL: https://cgit.FreeBSD.org/ports/commit/?id=aa51fcd1fd6bb5115408aac642c02e6d6e707b60 commit aa51fcd1fd6bb5115408aac642c02e6d6e707b60 Author: Dave Cottlehuber AuthorDate: 2021-12-12 12:31:40 +0000 Commit: Dave Cottlehuber CommitDate: 2021-12-14 07:01:33 +0000 net-mgmt/riemann: update to 0.3.8 While Riemann is not expected to be exposed to the Log4J vulnerability, this release includes updated dependencies as a preventative measure. https://github.com/riemann/riemann/compare/0.3.7...0.3.8 https://unit42.paloaltonetworks.com/apache-log4j-vulnerability-cve-2021-44228/ We do not believe Riemann is vulnerable but we’ve updated: * slf4j-over-log4j to 1.7.32 (although we use Logback internally - which is not vulnerable to the log4j issue) * clojure/tools.logging to 1.2.1 (which pulls in a later and secure version of log4j in as a dependency) Security: CVE-2021-44228 --- net-mgmt/riemann/Makefile | 2 +- net-mgmt/riemann/distinfo | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/net-mgmt/riemann/Makefile b/net-mgmt/riemann/Makefile index 25c9bfbbd468..aebc602dbd1a 100644 --- a/net-mgmt/riemann/Makefile +++ b/net-mgmt/riemann/Makefile @@ -1,7 +1,7 @@ # Created by: Dave Cottlehuber PORTNAME= riemann -DISTVERSION= 0.3.6 +DISTVERSION= 0.3.8 CATEGORIES= net-mgmt java MASTER_SITES= https://github.com/${PORTNAME}/${PORTNAME}/releases/download/${PORTVERSION}/ diff --git a/net-mgmt/riemann/distinfo b/net-mgmt/riemann/distinfo index ced73cdb8c27..d867971a711d 100644 --- a/net-mgmt/riemann/distinfo +++ b/net-mgmt/riemann/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1614322868 -SHA256 (riemann-0.3.6.tar.bz2) = fa2e22b712ed53144bf3319a418a3cd502ed00fa8e6bcb50443039a2664ee643 -SIZE (riemann-0.3.6.tar.bz2) = 85143195 +TIMESTAMP = 1639464693 +SHA256 (riemann-0.3.8.tar.bz2) = 7490c8808c235ca6ba3d96459296dc922840a0a381f02496a4a370ef668a65ef +SIZE (riemann-0.3.8.tar.bz2) = 91007774