Bug 119496

Summary: [patch] mail/prayer is out of date
Product: Ports & Packages Reporter: Mike Bristow <mike>
Component: Individual Port(s)Assignee: Beech Rintoul <beech>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Mike Bristow 2008-01-09 18:00:07 UTC 
mail/prayer is out of date.  I have diff -Nur output; note that 
prayer/files/patch-prayer_chroot.c is a new file.

The Changelog (docs/DONE) says this about the releases since 1.0.16:

04/09/2006
==========

Release: Prayer 1.0.18

Important Security fix:
  os_connect_unix() had a strcpy() which should have been strncpy() to
  prevent buffer overrun. Prayer 1.0.17 was mostly safe.

By 28/06/2006
=============

Release: Prayer 1.0.17

Fix small foulup wuth gethostbyname() calculations when binding Prayer
to specific interfaces.

Cleanups to stop char vs unsigned char warnings with latest c-client.

Make sure that all internal draft messages consistently use CRLF.

Security audit for Prayer frontend following attack:
  Optional Chroot environment (See chroot options in config file).
  Stripped out debugging code.
Comment 1 Beech Rintoul freebsd_committer freebsd_triage 2008-01-10 07:39:38 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->beech

I'll take it
Comment 2 dfilter service freebsd_committer freebsd_triage 2008-01-10 19:00:17 UTC 
beech       2008-01-10 19:00:09 UTC

  FreeBSD ports repository

  Modified files:
    mail/prayer          Makefile distinfo pkg-plist 
    mail/prayer/files    patch-Config 
  Added files:
    mail/prayer/files    patch-prayer_chroot.c 
  Log:
  - Update to 1.0.18
  - Makefile and plist cleanup
  
  - Release: Prayer 1.0.18
  - Important Security fix:
  - os_connect_unix() had a strcpy() which should have been strncpy() to
    prevent buffer overrun. Prayer 1.0.17 was mostly safe.
  
  - Release: Prayer 1.0.17
  - Fix small foulup wuth gethostbyname() calculations when binding  
    Prayer to specific interfaces.
  - Cleanups to stop char vs unsigned char warnings with latest    
    c-client.
  - Make sure that all internal draft messages consistently use CRLF.
  - Security audit for Prayer frontend following attack:
  - Optional Chroot environment (See chroot options in config file).
  - Stripped out debugging code.
  
  PR:             ports/119496
  Submitted by:   Mike Bristow <mike@urgle.com>
  Approved by:    linimon (mentor)
  
  Revision  Changes    Path
  1.9       +7 -8      ports/mail/prayer/Makefile
  1.7       +3 -3      ports/mail/prayer/distinfo
  1.4       +8 -8      ports/mail/prayer/files/patch-Config
  1.1       +19 -0     ports/mail/prayer/files/patch-prayer_chroot.c (new)
  1.5       +2 -19     ports/mail/prayer/pkg-plist
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 3 Beech Rintoul freebsd_committer freebsd_triage 2008-01-10 19:00:36 UTC 
State Changed
From-To: open->closed

Committed, Thanks!