Bug 240999

Summary: net-mgmt/cacti: Update to 1.2.7
Product: Ports & Packages Reporter: Michael Muenz <m.muenz>
Component: Individual Port(s)Assignee: Kai Knoblich <kai>
Status: Closed FIXED    
Severity: Affects Many People CC: freebsd-ports, kai
Priority: --- Keywords: security
Version: LatestFlags: freebsd-ports: maintainer-feedback+
kai: merge-quarterly+
Hardware: Any   
OS: Any   
URL: https://github.com/Cacti/cacti/releases/tag/release%2F1.2.7
Attachments:
Description Flags
1.2.7 kai: maintainer-approval+, m.muenz: maintainer-approval+

Description Michael Muenz 2019-10-02 08:39:47 UTC
Created attachment 208010 [details]
1.2.7

This patch is an update to 1.2.7. 
Please note that this is security related [1]

Last update[2] lead to a maintainer timeout, maybe someone knows better if it's better to wait for feedback or not.



[1]https://www.cacti.net/changelog.php
[2]https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=238434
Comment 1 commit-hook freebsd_committer freebsd_triage 2019-10-02 09:44:03 UTC
A commit references this bug:

Author: kai
Date: Wed Oct  2 09:43:49 UTC 2019
New revision: 513564
URL: https://svnweb.freebsd.org/changeset/ports/513564

Log:
  security/vuxml: Document net-mgmt/cacti issue

  PR:		240999
  Reported by:	Michael Muenz <m.muenz@gmail.com>
  Security:	CVE-2019-16723

Changes:
  head/security/vuxml/vuln.xml
Comment 2 Daniel Austin 2019-10-02 09:53:15 UTC
I'm happy for you to take over maintainer if you wish - my time has been severely limited lately i'm afraid :-(
Comment 3 Michael Muenz 2019-10-02 10:11:58 UTC
My intention is not to take over maintainership, quite sure your knowledge with Cacti&BSD is bigger than mine. 

If it helps to keep your quality code high for your other ports I'm happy to help. :)
Comment 4 Kai Knoblich freebsd_committer freebsd_triage 2019-10-02 13:14:51 UTC
Comment on attachment 208010 [details]
1.2.7

^ Triage: Set maintainer-approval to '+' on attachment as feedback/approval was given in comment #2 with the offer to take over maintainership.

Please correct me if I'm wrong here.
Comment 5 Kai Knoblich freebsd_committer freebsd_triage 2019-10-02 15:43:29 UTC
Committed to the head branch, still waiting for approval from the ports-secteam to merge change into the 2019Q4 branch.
Comment 6 Kai Knoblich freebsd_committer freebsd_triage 2019-10-05 21:52:08 UTC
Ok, committed to head in ports 513582 and to 2019Q4 in ports 513661, thank you for the patch and approvals!

All done so far but unfortunately I did a typo in the both commits and used "204999" as PR reference. So there are no commit notifications in this PR.