Full changelog: https://doc.powerdns.com/recursor/changelog/5.0.html#change-5.0.2 Q&A: poudriere: testport ok (14.0-RELEASE;amd64;) Makefile portclippy/portmft processed This release fixes the following CVE's: CVE-2023-50387 and CVE-2023-50868
Created attachment 248456 [details] Update PowerDNS Recursor to 5.0.2 (and fix 2 CVE's)
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=639716da935095cebdf580408cfcde4f7e853ae0 commit 639716da935095cebdf580408cfcde4f7e853ae0 Author: Fernando Apesteguía <fernape@FreeBSD.org> AuthorDate: 2024-02-16 08:58:21 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-02-16 08:58:21 +0000 security/vuxml: document dns/powerdns-recursor vulnerabilities * CVE-2023-50387 * CVE-2023-50868 PR: 277048 Reported by: Ralf van der Enden <tremere@cainites.net> security/vuxml/vuln/2024.xml | 41 +++++++++++++++++++++++++++++++++++++++++ 1 file changed, 41 insertions(+)
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=9d2a670205d7cc61754955a072434a2980700d25 commit 9d2a670205d7cc61754955a072434a2980700d25 Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-02-16 08:50:40 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-02-18 16:47:33 +0000 dns/powerdns-recursor: update to 5.0.2 (fixes CVE-2023-50387 and CVE-2023-50868) ChangeLog: https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released PR: 277048 Reported by: tremere@cainites.net (maintainer) MFH: 2024Q1 (security fixes) Security: CVE-2023-50387 CVE-2023-50868 dns/powerdns-recursor/Makefile | 3 +-- dns/powerdns-recursor/distinfo | 6 +++--- 2 files changed, 4 insertions(+), 5 deletions(-)
A commit in branch 2024Q1 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=569307de85501076ff89553a4dc14d58bfda108e commit 569307de85501076ff89553a4dc14d58bfda108e Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-02-16 08:50:40 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-02-18 17:02:47 +0000 dns/powerdns-recursor: update to 5.0.2 (fixes CVE-2023-50387 and CVE-2023-50868) ChangeLog: https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released PR: 277048 Reported by: tremere@cainites.net (maintainer) MFH: 2024Q1 (security fixes) Security: CVE-2023-50387 CVE-2023-50868 (cherry picked from commit 9d2a670205d7cc61754955a072434a2980700d25) dns/powerdns-recursor/Makefile | 2 +- dns/powerdns-recursor/distinfo | 66 ++++++++++++++++++++++++++++++++++++++++-- 2 files changed, 64 insertions(+), 4 deletions(-)
Committed and merged to 2024Q1, Thanks!
powerdns-recursor cannot be built in 2024Q1 at the moment, probably because these changes were not included: https://cgit.freebsd.org/ports/commit/?id=95d69f42ba0d6e8afd7da5c84a3ccc20338847e8 https://cgit.freebsd.org/ports/commit/?id=fdf5455bde7a2ea3d2b6f6d33531a12381ac53d4 This is the error-message I currently get: ===> Patching for powerdns-recursor-5.0.2 ===> Applying FreeBSD patches for powerdns-recursor-5.0.2 from /usr/ports/dns/powerdns-recursor/files 1 out of 1 hunks failed--saving rejects to rec-main.cc.rej ===> FAILED Applying FreeBSD patch-rec-main.cc ===> Cleanly applied FreeBSD patch(es) patch-m4_pdns__check__libcrypto.m4 patch-m4_pdns__with__lua.m4 ===> FAILED to apply cleanly FreeBSD patch(es) patch-rec-main.cc *** Error code 1
(In reply to linus.sundqvist from comment #6) Already discussed in #bsdports on EFNet. I'm not sure what I should have done differently in order to avoid this, so pointers are welcome. Hopefully a committer can MFH in order to fix the patchfiles.
Fixed, Thanks for the heads up!
A commit in branch 2024Q1 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=fb4eb1df56aa7fcb9e55205a303ac1bfe94de80a commit fb4eb1df56aa7fcb9e55205a303ac1bfe94de80a Author: Fernando Apesteguía <fernape@FreeBSD.org> AuthorDate: 2024-02-20 16:59:05 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-02-20 16:59:05 +0000 dns/powerdns-recursor: Fix build PR: 277048 Reported by: linus.sundqvist@loopia.se Fixes: 569307de85501076ff89553a4dc14d58bfda108e dns/powerdns-recursor/Makefile | 21 ++++++++++++--- dns/powerdns-recursor/Makefile.crates (new) | 30 ++++++++++++++++++++++ .../files/patch-m4_pdns__check__libcrypto.m4 | 3 ++- .../files/patch-rec-main.cc (gone) | 18 ------------- dns/powerdns-recursor/pkg-plist | 1 + 5 files changed, 51 insertions(+), 22 deletions(-)