Bug 229753 - ftp/curl: Update to 7.61.0 (Fixes CVE-2018-0500)
Summary: ftp/curl: Update to 7.61.0 (Fixes CVE-2018-0500)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Po-Chuan Hsieh
URL:
Keywords: security
Depends on: 229752
Blocks:
  Show dependency treegraph
 
Reported: 2018-07-13 13:16 UTC by Yasuhiro Kimura
Modified: 2018-07-27 12:41 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (sunpoet)
yasu: merge-quarterly?

Attachments
patch file (3.78 KB, patch)
2018-07-13 13:16 UTC, Yasuhiro Kimura 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Yasuhiro Kimura freebsd_committer freebsd_triage 2018-07-13 13:16:09 UTC 
Created attachment 195109 [details]
patch file

Update to 7.61.0. Fix CVE-2018-0500.
Build is confirmed with poudriere and 11.2-RELEASE amd64 jail.

Bug #229752 documents this vulnerability in VuXML. So please commit it too.
Comment 1 commit-hook freebsd_committer freebsd_triage 2018-07-27 12:38:32 UTC 
A commit references this bug:

Author: swills
Date: Fri Jul 27 12:38:07 UTC 2018
New revision: 475433
URL: https://svnweb.freebsd.org/changeset/ports/475433

Log:
  ftp/curl: Update to 7.61.0

  PR:		229753
  Submitted by:	Yasuhiro KIMURA <yasu@utahime.org>
  Approved by:	maintainer timeout (sunpoet, >2 weeks)
  MFH:		2018Q3
  Security:	3849e28f-8693-11e8-9610-9c5c8e75236a

Changes:
  head/ftp/curl/Makefile
  head/ftp/curl/distinfo
  head/ftp/curl/pkg-plist
Comment 2 commit-hook freebsd_committer freebsd_triage 2018-07-27 12:40:36 UTC 
A commit references this bug:

Author: swills
Date: Fri Jul 27 12:39:55 UTC 2018
New revision: 475434
URL: https://svnweb.freebsd.org/changeset/ports/475434

Log:
  MFH: r475433

  ftp/curl: Update to 7.61.0

  PR:		229753
  Submitted by:	Yasuhiro KIMURA <yasu@utahime.org>
  Approved by:	maintainer timeout (sunpoet, >2 weeks)
  Security:	3849e28f-8693-11e8-9610-9c5c8e75236a
  Approved by:	ports-ecteam (implicit)

Changes:
_U  branches/2018Q3/
  branches/2018Q3/ftp/curl/Makefile
  branches/2018Q3/ftp/curl/distinfo
  branches/2018Q3/ftp/curl/pkg-plist
Comment 3 Steve Wills freebsd_committer freebsd_triage 2018-07-27 12:41:07 UTC 
Committed, thanks!