FreeBSD Bugzilla – Attachment 234685 Details for
Bug 264523
mail/horde-turba: Update to 4.2.29 (4.2.26 fixes RCE security vulnerability: CVE-2022-30287)
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
Upgrade to 4.2.28
mail_horde-turba.diff (text/plain), 2.55 KB, created by
Thierry Thomas
on 2022-06-14 17:41:57 UTC
(
hide
)
Description:
Upgrade to 4.2.28
Filename:
MIME Type:
Creator:
Thierry Thomas
Created:
2022-06-14 17:41:57 UTC
Size:
2.55 KB
patch
obsolete
>From d9f51e9fcd7bd5966e1fc430a28e2e348107245d Mon Sep 17 00:00:00 2001 >From: Li-Wen Hsu <lwhsu@FreeBSD.org> >Date: Wed, 15 Jun 2022 01:23:56 +0800 >Subject: [PATCH 1/2] devel/jenkins: Update to 2.355 > >Sponsored by: The FreeBSD Foundation >--- > devel/jenkins/Makefile | 2 +- > devel/jenkins/distinfo | 6 +++--- > 2 files changed, 4 insertions(+), 4 deletions(-) > >diff --git a/devel/jenkins/Makefile b/devel/jenkins/Makefile >index 41378ff6264b..b70a8d80a438 100644 >--- a/devel/jenkins/Makefile >+++ b/devel/jenkins/Makefile >@@ -1,5 +1,5 @@ > PORTNAME= jenkins >-PORTVERSION= 2.354 >+PORTVERSION= 2.355 > CATEGORIES= devel java > MASTER_SITES= http://mirrors.jenkins.io/war/${PORTVERSION}/ > DISTNAME= jenkins >diff --git a/devel/jenkins/distinfo b/devel/jenkins/distinfo >index 92429cd7c061..b2d53d771428 100644 >--- a/devel/jenkins/distinfo >+++ b/devel/jenkins/distinfo >@@ -1,3 +1,3 @@ >-TIMESTAMP = 1654775470 >-SHA256 (jenkins/2.354/jenkins.war) = c36410a4215d9ab64c261e7b7e83cc24c1821366a453eb1f6e48d09871f739ee >-SIZE (jenkins/2.354/jenkins.war) = 90776949 >+TIMESTAMP = 1655227391 >+SHA256 (jenkins/2.355/jenkins.war) = 774116e486a8d96fa062ddc9b9e7f2aef00716be6a20eb507d0c64f0e0c3cc8e >+SIZE (jenkins/2.355/jenkins.war) = 90780629 >-- >2.36.1 > > >From e36bef615ef886892171886d302052e1082528d9 Mon Sep 17 00:00:00 2001 >From: Thierry Thomas <thierry@FreeBSD.org> >Date: Tue, 7 Jun 2022 14:38:03 +0200 >Subject: [PATCH 2/2] mail/horde-turba: upgrade Turba to 4.2.28 and fix a > vulnerability > >Fix remote code execution by an unserialization attack (CVE-2022-30287) > >Changelog at <https://github.com/horde/turba/blob/v4.2.28/docs/CHANGES>. > >Security: CVE-2022-30287 >--- > mail/horde-turba/Makefile | 2 +- > mail/horde-turba/distinfo | 6 +++--- > 2 files changed, 4 insertions(+), 4 deletions(-) > >diff --git a/mail/horde-turba/Makefile b/mail/horde-turba/Makefile >index 6b600db6d472..305dd50ba280 100644 >--- a/mail/horde-turba/Makefile >+++ b/mail/horde-turba/Makefile >@@ -1,5 +1,5 @@ > PORTNAME= turba >-PORTVERSION= 4.2.25 >+PORTVERSION= 4.2.28 > CATEGORIES= mail www pear > PKGNAMEPREFIX= ${PHP_PKGNAMEPREFIX}horde- > >diff --git a/mail/horde-turba/distinfo b/mail/horde-turba/distinfo >index a0eee0f75bf6..1f09e456b9d2 100644 >--- a/mail/horde-turba/distinfo >+++ b/mail/horde-turba/distinfo >@@ -1,3 +1,3 @@ >-TIMESTAMP = 1559196860 >-SHA256 (Horde/turba-4.2.25.tgz) = 5e8485f400a51458d136be5cfcc2a736735aaec551a4200f38d2d94114ae13ef >-SIZE (Horde/turba-4.2.25.tgz) = 2002750 >+TIMESTAMP = 1655228038 >+SHA256 (Horde/turba-4.2.28.tgz) = 9634383f57308198341c8247114e3487445f26267decaa347658ed9b759d4907 >+SIZE (Horde/turba-4.2.28.tgz) = 2004320 >-- >2.36.1 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=234685">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 264523
:
234527
|
234685
|
234777