This is a patch to update the security/gnupg port to the latest version, which fixes a possible security vulnerability involving memory corruption from importing malicious keys. How-To-Repeat: diff -urN gnupg.orig/Makefile gnupg/Makefile --- gnupg.orig/Makefile Tue Mar 4 14:57:41 2008 +++ gnupg/Makefile Tue Apr 1 11:11:59 2008 @@ -6,7 +6,7 @@ # PORTNAME= gnupg -PORTVERSION= 2.0.8 +PORTVERSION= 2.0.9 CATEGORIES= security MASTER_SITES= ${MASTER_SITE_GNUPG} MASTER_SITE_SUBDIR= gnupg diff -urN gnupg.orig/distinfo gnupg/distinfo --- gnupg.orig/distinfo Tue Mar 4 14:57:41 2008 +++ gnupg/distinfo Tue Apr 1 11:15:01 2008 @@ -1,6 +1,6 @@ -MD5 (gnupg-2.0.8.tar.bz2) = fc4377ca67e1bf687eeaf22e79c0b9d1 -SHA256 (gnupg-2.0.8.tar.bz2) = 16f310afe4740a26475c7273f585861a4bdefecbde27c214cc30c0db45d26913 -SIZE (gnupg-2.0.8.tar.bz2) = 3654523 -MD5 (gnupg-2.0.8.tar.bz2.sig) = 5f4fefbca2568910e3628b4d8ea3d485 -SHA256 (gnupg-2.0.8.tar.bz2.sig) = e68772c8d16a80311c5380ef024c52ad140f2fc3cf43c778a2e2d3bf2eea24d5 -SIZE (gnupg-2.0.8.tar.bz2.sig) = 158 +MD5 (gnupg-2.0.9.tar.bz2) = b41f3f6716a74c46a609a71853e85c7b +SHA256 (gnupg-2.0.9.tar.bz2) = 2dc124908a1dfa3b79d2b0a82aa1a31817128feb14e84a26226beaab13179686 +SIZE (gnupg-2.0.9.tar.bz2) = 3718925 +MD5 (gnupg-2.0.9.tar.bz2.sig) = 29a90f2bdd27d79b7e9a0885f119832a +SHA256 (gnupg-2.0.9.tar.bz2.sig) = 75487ff94c980c0f6a0290f12290a1373f0b5f36971ed9910407490370340296 +SIZE (gnupg-2.0.9.tar.bz2.sig) = 158 --- gnupg.patch ends here ---
Responsible Changed From-To: freebsd-ports-bugs->kuriyama Over to maintainer (via the GNATS Auto Assign Tool)
State Changed From-To: open->closed Committed. Thanks!
miwi 2008-04-26 23:51:41 UTC FreeBSD ports repository Modified files: security/gnupg1 Makefile distinfo Log: - Update to 1.4.9 Notes: This update fixes a possible security vulnerability involving memory corruption from importing malicious keys. PR: 122349 / 122155 Submitted by: Nick Barkas <snb@threerings.net> / Hirohisa Yamaguchi <umq@ueo.co.jp> Approved by: maintainer timeout Security: http://www.vuxml.org/freebsd/30394651-13e1-11dd-bab7-0016179b2dd5.html Revision Changes Path 1.98 +1 -1 ports/security/gnupg1/Makefile 1.42 +6 -6 ports/security/gnupg1/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"