Bug 282983

Summary:

net/keycloak: Update to 26.0.6

Product:

Ports & Packages

Reporter:

Matthias Wolf <freebsd>

Component:

Individual Port(s)

Assignee:

Robert Clausecker <fuz>

Status:

Closed FIXED

Severity:

Affects Only Me

CC:

fuz

Priority:

---

Flags:

fuz: merge-quarterly?

Version:

Latest

Hardware:

Any

OS:

Any

URL:

https://www.keycloak.org/2024/11/keycloak-2606-released.html

Attachments:

Description	Flags
net/keycloak	freebsd: maintainer-approval+
security/vuxml	none

Description Matthias Wolf 2024-11-26 10:08:31 UTC

Created attachment 255464 [details]
net/keycloak

Upgrade Keycloak to 26.0.6

Tested on 13.4-RELEASE.

Security: CVE-2024-9666, CVE-2024-10039, CVE-2024-10270, CVE-2024-10451, CVE-2024-10492

Comment 1 Matthias Wolf 2024-11-26 10:08:50 UTC

Created attachment 255465 [details]
security/vuxml

Comment 2 Robert Clausecker freebsd_committer

2024-11-26 12:26:11 UTC

As this has some security fixes, I'll merge the patch into the quarterly branch.  Ok?

Comment 3 commit-hook freebsd_committer

2024-11-27 12:02:39 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=2666126bb63f63f6b18453b96eb08a746ca2bf28

commit 2666126bb63f63f6b18453b96eb08a746ca2bf28
Author:     Matthias Wolf <freebsd@rheinwolf.de>
AuthorDate: 2024-11-26 12:23:17 +0000
Commit:     Robert Clausecker <fuz@FreeBSD.org>
CommitDate: 2024-11-27 11:57:29 +0000

    net/keycloak: document multiple vulnerabilities

    Security:       CVE-2024-9666 CVE-2024-10039 CVE-2024-10270
    Security:       CVE-2024-10451 CVE-2024-10492
    PR:             282983

 security/vuxml/vuln/2024.xml | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

Comment 4 commit-hook freebsd_committer

2024-11-27 12:02:47 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=118cf20d6e1eb0d4e45cede8418c3d16c6aef5f3

commit 118cf20d6e1eb0d4e45cede8418c3d16c6aef5f3
Author:     Matthias Wolf <freebsd@rheinwolf.de>
AuthorDate: 2024-11-26 12:25:15 +0000
Commit:     Robert Clausecker <fuz@FreeBSD.org>
CommitDate: 2024-11-27 11:57:29 +0000

    net/keycloak: update to 26.0.6

    Changelog: https://www.keycloak.org/2024/11/keycloak-2606-released.html

    PR:             282983
    MFH:            2024Q4
    Security:       7d7a28cd-7f5a-450a-852f-c49aaab3fa7e

 net/keycloak/Makefile | 2 +-
 net/keycloak/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

Comment 5 commit-hook freebsd_committer

2024-11-27 12:03:48 UTC

A commit in branch 2024Q4 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=2db5cf4da669853af2fa277c2637dffedc379e58

commit 2db5cf4da669853af2fa277c2637dffedc379e58
Author:     Matthias Wolf <freebsd@rheinwolf.de>
AuthorDate: 2024-11-26 12:25:15 +0000
Commit:     Robert Clausecker <fuz@FreeBSD.org>
CommitDate: 2024-11-27 12:02:38 +0000

    net/keycloak: update to 26.0.6

    Changelog: https://www.keycloak.org/2024/11/keycloak-2606-released.html

    PR:             282983
    MFH:            2024Q4
    Security:       7d7a28cd-7f5a-450a-852f-c49aaab3fa7e
    (cherry picked from commit 118cf20d6e1eb0d4e45cede8418c3d16c6aef5f3)

 net/keycloak/Makefile | 2 +-
 net/keycloak/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

Comment 6 Robert Clausecker freebsd_committer

2024-11-27 12:04:12 UTC

Thank you for your contribution.