From owner-svn-ports-head@FreeBSD.ORG Tue Sep 11 11:33:51 2012 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7A79C106564A; Tue, 11 Sep 2012 11:33:51 +0000 (UTC) (envelope-from zi@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:4f8:fff6::2c]) by mx1.freebsd.org (Postfix) with ESMTP id 63E378FC0A; Tue, 11 Sep 2012 11:33:51 +0000 (UTC) Received: from svn.freebsd.org (localhost [127.0.0.1]) by svn.freebsd.org (8.14.4/8.14.4) with ESMTP id q8BBXpCA037185; Tue, 11 Sep 2012 11:33:51 GMT (envelope-from zi@svn.freebsd.org) Received: (from zi@localhost) by svn.freebsd.org (8.14.4/8.14.4/Submit) id q8BBXpnW037182; Tue, 11 Sep 2012 11:33:51 GMT (envelope-from zi@svn.freebsd.org) Message-Id: <201209111133.q8BBXpnW037182@svn.freebsd.org> From: Ryan Steinmetz Date: Tue, 11 Sep 2012 11:33:51 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Cc: Subject: svn commit: r304087 - in head/net/freeradius2: . files X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Sep 2012 11:33:51 -0000 Author: zi Date: Tue Sep 11 11:33:50 2012 New Revision: 304087 URL: http://svn.freebsd.org/changeset/ports/304087 Log: - Add patch for CVE-2012-3547 - Bump PORTREVISION Submitted by: rea@ Obtained from: Upstream git repo Security: 3bbbe3aa-fbeb-11e1-8bd8-0022156e8794 Added: head/net/freeradius2/files/patch-CVE-2012-3547 (contents, props changed) Modified: head/net/freeradius2/Makefile Modified: head/net/freeradius2/Makefile ============================================================================== --- head/net/freeradius2/Makefile Tue Sep 11 09:04:27 2012 (r304086) +++ head/net/freeradius2/Makefile Tue Sep 11 11:33:50 2012 (r304087) @@ -9,7 +9,7 @@ PORTNAME= freeradius DISTVERSION= 2.1.12 -PORTREVISION= 1 +PORTREVISION= 2 CATEGORIES= net MASTER_SITES= ftp://ftp.freeradius.org/pub/freeradius/%SUBDIR%/ \ ftp://ftp.ntua.gr/pub/net/radius/freeradius/%SUBDIR%/ \ Added: head/net/freeradius2/files/patch-CVE-2012-3547 ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ head/net/freeradius2/files/patch-CVE-2012-3547 Tue Sep 11 11:33:50 2012 (r304087) @@ -0,0 +1,11 @@ +--- ./src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c.orig 2011-09-30 10:12:07.000000000 -0400 ++++ ./src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c 2012-09-11 07:28:34.000000000 -0400 +@@ -531,7 +531,7 @@ + */ + buf[0] = '\0'; + asn_time = X509_get_notAfter(client_cert); +- if ((lookup <= 1) && asn_time && (asn_time->length < MAX_STRING_LEN)) { ++ if ((lookup <= 1) && asn_time && (asn_time->length < sizeof(buf))) { + memcpy(buf, (char*) asn_time->data, asn_time->length); + buf[asn_time->length] = '\0'; + pairadd(&handler->certs,