Bug 209926 - www/h2o: update 1.7.2 to 1.7.3, incl security/vuxml/xuln.xml for CVE-2016-4817
Summary: www/h2o: update 1.7.2 to 1.7.3, incl security/vuxml/xuln.xml for CVE-2016-4817
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Ryan Steinmetz
URL:
Keywords:
Depends on:
Blocks: 209927
  Show dependency treegraph
 
Reported: 2016-06-01 10:18 UTC by Dave Cottlehuber
Modified: 2016-06-01 22:56 UTC (History)
2 users (show)

See Also:

Attachments
v1 patch (2.59 KB, patch)
2016-06-01 10:18 UTC, Dave Cottlehuber 		dch: maintainer-approval+
Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Dave Cottlehuber freebsd_committer freebsd_triage 2016-06-01 10:18:32 UTC 
Created attachment 170902 [details]
v1 patch

addresses publically notified CVE-2016-4817

# checks

- portlint OK
- poudriere OK on 10.3 amd64

COMMITTERS: this needs to be merged into quarterly update branch as well -- thanks!
Comment 1 commit-hook freebsd_committer freebsd_triage 2016-06-01 22:50:09 UTC 
A commit references this bug:

Author: zi
Date: Wed Jun  1 22:49:48 UTC 2016
New revision: 416260
URL: https://svnweb.freebsd.org/changeset/ports/416260

Log:
  - Document vulnerability in www/h2o

  PR:		209926
  Submitted by:	Dave Cottlehuber (maintainer)

Changes:
  head/security/vuxml/vuln.xml
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-06-01 22:51:10 UTC 
A commit references this bug:

Author: zi
Date: Wed Jun  1 22:50:28 UTC 2016
New revision: 416261
URL: https://svnweb.freebsd.org/changeset/ports/416261

Log:
  - Update to 1.7.3

  PR:		209926
  Submitted by:	Dave Cottlehuber
  Security:	65bb1858-27de-11e6-b714-74d02b9a84d5

Changes:
  head/www/h2o/Makefile
  head/www/h2o/distinfo
Comment 3 Ryan Steinmetz freebsd_committer freebsd_triage 2016-06-01 22:55:42 UTC 
Committed to head and quarterly branch as well.
Comment 4 commit-hook freebsd_committer freebsd_triage 2016-06-01 22:56:12 UTC 
A commit references this bug:

Author: zi
Date: Wed Jun  1 22:55:10 UTC 2016
New revision: 416263
URL: https://svnweb.freebsd.org/changeset/ports/416263

Log:
  MFH: r416261

  - Update to 1.7.3

  PR:		209926
  Submitted by:	Dave Cottlehuber
  Security:	65bb1858-27de-11e6-b714-74d02b9a84d5
  Approved by:	ports-secteam (me)

Changes:
_U  branches/2016Q2/
  branches/2016Q2/www/h2o/Makefile
  branches/2016Q2/www/h2o/distinfo