Bug 209217 - irc/atheme-services: update to 7.2.7 (security)
Summary: irc/atheme-services: update to 7.2.7 (security)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Mikhail Pchelin
URL: http://www.openwall.com/lists/oss-sec...
Depends on:
Reported: 2016-05-02 23:39 UTC by Jason Unovitch
Modified: 2016-12-16 09:08 UTC (History)
2 users (show)

See Also:
junovitch: maintainer-feedback+
misha: merge-quarterly+


Note You need to log in before you can comment on or make changes to this bug.
Description Jason Unovitch freebsd_committer freebsd_triage 2016-05-02 23:39:20 UTC
Maintainer of atheme-services,
The upcoming 7.2.7 of atheme-services may have CVE's assigned to security issues found.  Can you ensure the port gets updated when the update is release and documented in VuXML appropriately?

Comment 1 Jason Unovitch freebsd_committer freebsd_triage 2016-12-16 01:48:29 UTC
Assign to committer that resolved in https://svnweb.FreeBSD.org/changeset/ports/428616
Comment 2 commit-hook freebsd_committer freebsd_triage 2016-12-16 02:15:07 UTC
A commit references this bug:

Author: junovitch
Date: Fri Dec 16 02:14:29 UTC 2016
New revision: 428640
URL: https://svnweb.freebsd.org/changeset/ports/428640

  Document two CVEs fixed in Atheme 7.2.7

  PR:		209217
  Security:	CVE-2014-9773
  Security:	CVE-2016-4478
  Security:	https://vuxml.FreeBSD.org/freebsd/e47ab5db-c333-11e6-ae1b-002590263bf5.html

Comment 3 Jason Unovitch freebsd_committer freebsd_triage 2016-12-16 02:17:10 UTC
Set maintainer-feedback+ based on the approved by in r428616.
Drop the needs-* as that's not valid anymore.
VuXML is done.

Please set merge-quarterly+ after you have committed per my approval email and go ahead and close when you are done.  Thanks!
Comment 4 commit-hook freebsd_committer freebsd_triage 2016-12-16 09:07:35 UTC
A commit references this bug:

Author: misha
Date: Fri Dec 16 09:07:23 UTC 2016
New revision: 428662
URL: https://svnweb.freebsd.org/changeset/ports/428662

  MFH: r428616

  - update from 7.2.6 to 7.2.7
  - add LICENSE
  - add 'ssl', 'localbase' and 'cpe' to USES
  - simplify options handling

  PR:		209217
  Approved by:	ports-secteam (junovitch)
  Security:	CVE-2014-9773
  Security:	CVE-2016-4478

_U  branches/2016Q4/