print/acroread9 might be vulnerable. see http://www.adobe.com/support/security/bulletins/apsb09-10.html Fix: here is a patch to print/acroread9 in addition, port for other languages also updated. here are the checksums: MD5 (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = fec3eed6dfc921a6dcc4deab400e207e SHA256 (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = 8dfa1fc70fc065fdccc42c53c7c2e3a8d43a8f9ca061bc6be44740dc370d2d9f SIZE (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = 60073815 MD5 (acroread/AdbeRdr9.1.3-1_i486linux_fra.tar.bz2) = 0734bad1d1fa0fca0702dc5ae3fc0ef9 SHA256 (acroread/AdbeRdr9.1.3-1_i486linux_fra.tar.bz2) = 562594aed884707bfe86f630e962ff592237c9d9aae3eb62c2624418fe347fea SIZE (acroread/AdbeRdr9.1.3-1_i486linux_fra.tar.bz2) = 64540661 MD5 (acroread/AdbeRdr9.1.3-1_i486linux_deu.tar.bz2) = aa2fc1bb846f450c19db8c407076e87d SHA256 (acroread/AdbeRdr9.1.3-1_i486linux_deu.tar.bz2) = c1f7983d4b68c3e624254a8ec860bb2c1f8211414e04792cd1b89e9a7ad6d651 SIZE (acroread/AdbeRdr9.1.3-1_i486linux_deu.tar.bz2) = 65719225 acroread 8.x might have the same problem, but new versions are not provided yet.--3d9hCwVRWWsHGTVvHCKbxW3xDzhKw0AAVfwkRePPCkPioHkQ Content-Type: text/plain; name="file.diff" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="file.diff" diff -urN acroread9/Makefile.orig acroread9/Makefile --- acroread9/Makefile.orig 2009-06-21 19:20:31.000000000 +0900 +++ acroread9/Makefile 2009-08-01 19:44:41.000000000 +0900 @@ -6,7 +6,7 @@ # PORTNAME= acroread9 -PORTVERSION= 9.1.2 +PORTVERSION= 9.1.3 CATEGORIES?= print linux MASTER_SITES?= http://ardownload.adobe.com/pub/adobe/reader/unix/9.x/${PORTVERSION}/${ADOBE_LANG:L}/ \ ftp://ftp.adobe.com/pub/adobe/reader/unix/9.x/${PORTVERSION}/${ADOBE_LANG:L}/ diff -urN acroread9/distinfo.orig acroread9/distinfo --- acroread9/distinfo.orig 2009-06-21 19:20:32.000000000 +0900 +++ acroread9/distinfo 2009-08-01 19:51:21.000000000 +0900 @@ -1,3 +1,3 @@ -MD5 (acroread/AdbeRdr9.1.2-1_i486linux_enu.tar.bz2) = 6d05897dbded59792a1a83952837d3cf -SHA256 (acroread/AdbeRdr9.1.2-1_i486linux_enu.tar.bz2) = ab1dbda5c2af1f30bd82d4eb3e0a0f4a0c3ace97634b3b10eec8dfcbbea099d2 -SIZE (acroread/AdbeRdr9.1.2-1_i486linux_enu.tar.bz2) = 60074973 +MD5 (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = fec3eed6dfc921a6dcc4deab400e207e +SHA256 (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = 8dfa1fc70fc065fdccc42c53c7c2e3a8d43a8f9ca061bc6be44740dc370d2d9f +SIZE (acroread/AdbeRdr9.1.3-1_i486linux_enu.tar.bz2) = 60073815
Responsible Changed From-To: freebsd-ports-bugs->hrs Over to maintainer (via the GNATS Auto Assign Tool)
hrs 2009-10-10 01:36:57 UTC FreeBSD ports repository Modified files: print/acroread9 Makefile distinfo japanese/acroread9 distinfo french/acroread9 distinfo german/acroread9 distinfo Log: Update to 9.1.3. Security: CVE-2009-1862 Security: APSB09-10 Security: http://www.adobe.com/support/security/bulletins/apsb09-10.html PR: ports/137331 Revision Changes Path 1.4 +3 -3 ports/french/acroread9/distinfo 1.4 +3 -3 ports/german/acroread9/distinfo 1.4 +3 -3 ports/japanese/acroread9/distinfo 1.6 +1 -1 ports/print/acroread9/Makefile 1.4 +3 -3 ports/print/acroread9/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed, thanks!