Bug 280357 - security/keepass-plugin-keepassrpc: update 1.8.0 → 2.0.2 (CVE-2020-16271) and take maintainership
Summary: security/keepass-plugin-keepassrpc: update 1.8.0 → 2.0.2 (CVE-2020-16271) and...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Vladimir Druzenko
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2024-07-18 23:34 UTC by gatekeeper
Modified: 2024-07-19 01:43 UTC (History)
1 user (show)

See Also:
vvd: merge-quarterly+

Attachments
git patch (5.93 KB, patch)
2024-07-18 23:34 UTC, gatekeeper 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description gatekeeper 2024-07-18 23:34:28 UTC 
Created attachment 252154 [details]
git patch

- Updated keepass-plugin-keepassrpc to latest version 2.0.2
- Take ownership
Comment 1 commit-hook freebsd_committer freebsd_triage 2024-07-19 01:32:17 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=e34f6550a701b73f476a8f75d400df323620253b

commit e34f6550a701b73f476a8f75d400df323620253b
Author:     gatekeeper <tiago.gasiba@gmail.com>
AuthorDate: 2024-07-19 01:22:15 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2024-07-19 01:22:15 +0000

    security/keepass-plugin-keepassrpc: update 1.8.0 → 2.0.2 (CVE-2020-16271) and take maintainership

    Changelogs:
    https://forum.kee.pm/t/release-notes-keepassrpc-1-9-0/2345
    https://github.com/kee-org/keepassrpc/releases/tag/v1.10.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.11.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.12.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.12.1
    https://github.com/kee-org/keepassrpc/releases/tag/v1.13.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.14.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.15.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.15.1
    https://github.com/kee-org/keepassrpc/releases/tag/v1.16.0
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.0
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.1
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.2

    Security:
    https://forum.kee.pm/t/a-critical-security-update-for-keepassrpc-is-available/3040
    https://forum.kee.pm/t/cve-2020-16271-warning-message/3143

    PR:     280357
    MFH:    2024Q3

 security/keepass-plugin-keepassrpc/Makefile        | 13 +++--
 security/keepass-plugin-keepassrpc/distinfo        |  6 +-
 .../files/patch-KeePassRPC_KeePassRPC.csproj       | 65 +++++++++++++++++-----
 3 files changed, 60 insertions(+), 24 deletions(-)
Comment 2 commit-hook freebsd_committer freebsd_triage 2024-07-19 01:39:19 UTC 
A commit in branch 2024Q3 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=bf01a5962c27f3b06efd0747bd1ab375b5bea457

commit bf01a5962c27f3b06efd0747bd1ab375b5bea457
Author:     gatekeeper <tiago.gasiba@gmail.com>
AuthorDate: 2024-07-19 01:22:15 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2024-07-19 01:38:28 +0000

    security/keepass-plugin-keepassrpc: update 1.8.0 → 2.0.2 (CVE-2020-16271) and take maintainership

    Changelogs:
    https://forum.kee.pm/t/release-notes-keepassrpc-1-9-0/2345
    https://github.com/kee-org/keepassrpc/releases/tag/v1.10.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.11.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.12.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.12.1
    https://github.com/kee-org/keepassrpc/releases/tag/v1.13.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.14.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.15.0
    https://github.com/kee-org/keepassrpc/releases/tag/v1.15.1
    https://github.com/kee-org/keepassrpc/releases/tag/v1.16.0
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.0
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.1
    https://github.com/kee-org/keepassrpc/releases/tag/v2.0.2

    Security:
    https://forum.kee.pm/t/a-critical-security-update-for-keepassrpc-is-available/3040
    https://forum.kee.pm/t/cve-2020-16271-warning-message/3143

    PR:     280357
    MFH:    2024Q3
    (cherry picked from commit e34f6550a701b73f476a8f75d400df323620253b)

 security/keepass-plugin-keepassrpc/Makefile        | 13 +++--
 security/keepass-plugin-keepassrpc/distinfo        |  6 +-
 .../files/patch-KeePassRPC_KeePassRPC.csproj       | 65 +++++++++++++++++-----
 3 files changed, 60 insertions(+), 24 deletions(-)
Comment 3 Vladimir Druzenko freebsd_committer freebsd_triage 2024-07-19 01:43:13 UTC 
Thanks.