Bug 205961

Summary: textproc/kibana41: upgrade to version 4.1.4
Product: Ports & Packages Reporter: Jimmy Olgeni <olgeni>
Component: Individual Port(s)Assignee: Jimmy Olgeni <olgeni>
Status: Closed FIXED    
Severity: Affects Only Me CC: junovitch, skozlov
Priority: --- Keywords: patch
Version: LatestFlags: skozlov: maintainer-feedback+
junovitch: merge-quarterly+
Hardware: Any   
OS: Any   
Attachments:
Description Flags
Upgrade patch koobs: maintainer-approval+

Description Jimmy Olgeni freebsd_committer freebsd_triage 2016-01-06 16:43:20 UTC 
Created attachment 165162 [details]
Upgrade patch

Upgrade to version 4.1.4.

Poudriere log here:

http://olgeni.olgeni.com/~olgeni/log/kibana41-4.1.4.log
Comment 1 Serhii (Sergey) Kozlov freebsd_committer freebsd_triage 2016-01-06 18:09:08 UTC 
Looks fine for me. 
Thanks for the effort!
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-01-07 16:09:22 UTC 
A commit references this bug:

Author: olgeni
Date: Thu Jan  7 16:08:23 UTC 2016
New revision: 405463
URL: https://svnweb.freebsd.org/changeset/ports/405463

Log:
  Upgrade textproc/kibana41 to version 4.1.4.

  PR:		205961
  Submitted by:	olgeni
  Approved by:	maintainer

Changes:
  head/textproc/kibana41/Makefile
  head/textproc/kibana41/distinfo
Comment 3 Jimmy Olgeni freebsd_committer freebsd_triage 2016-01-07 16:11:43 UTC 
Patch committed.
Comment 4 Jason Unovitch freebsd_committer freebsd_triage 2016-01-08 00:05:49 UTC 
Reopen and set merge-quarterly?.  Can this get MFH'd?   See https://www.elastic.co/blog/kibana-4-3-1-and-4-2-2-and-4-1-4 as there is a security issue documented.

4.1.4 Changes
Fixes XSS vulnerability (CVE pending) - Thanks to Vladimir Ivanov for responsibly reporting
Comment 5 Jimmy Olgeni freebsd_committer freebsd_triage 2016-01-08 08:58:25 UTC 
Good point!

https://reviews.freebsd.org/D4829
Comment 6 commit-hook freebsd_committer freebsd_triage 2016-01-13 23:58:07 UTC 
A commit references this bug:

Author: junovitch
Date: Wed Jan 13 23:57:53 UTC 2016
New revision: 406081
URL: https://svnweb.freebsd.org/changeset/ports/406081

Log:
  Document Kibana 4.x XSS vulnerabilty

  PR:		205961
  PR:		205962
  PR:		205963
  Security:	https://vuxml.FreeBSD.org/freebsd/a7a4e96c-ba50-11e5-9728-002590263bf5.html

Changes:
  head/security/vuxml/vuln.xml
Comment 7 Jason Unovitch freebsd_committer freebsd_triage 2016-01-13 23:59:35 UTC 
Closed PR again and set merge-quartely+... Fix MFH'd in https://svnweb.FreeBSD.org/changeset/ports/406043