221399 – devel/mercurial: Update to 4.3.1

Bug 221399 - devel/mercurial: Update to 4.3.1

Summary: devel/mercurial: Update to 4.3.1

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	Po-Chuan Hsieh

URL:
Keywords:	patch-ready

Depends on:
Blocks:

Reported:	2017-08-10 20:39 UTC by Olivier Duchateau
Modified:	2017-08-12 19:29 UTC (History)
CC List:	0 users

See Also:

Flags:	bugzilla: maintainer-feedback? (python) duchateau.olivier: merge-quarterly?

Attachments
patch to update devel/mercurial (9.43 KB, patch) 2017-08-10 20:39 UTC, Olivier Duchateau	no flags	Details \| Diff
patch security/vuxml (1.37 KB, patch) 2017-08-10 20:41 UTC, Olivier Duchateau	no flags	Details \| Diff
patch to update devel/mercurial to 4.3.1 (9.44 KB, patch) 2017-08-11 17:39 UTC, Olivier Duchateau	no flags	Details \| Diff
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Olivier Duchateau 2017-08-10 20:39:05 UTC

Created attachment 185243 [details]
patch to update devel/mercurial

- Update to 4.3 (4.2.3 is also available)
- Fix 2 vulnerabilities (CVE-2017-1000115 and CVE-2017-1000116)

Comment 1 Olivier Duchateau 2017-08-10 20:41:36 UTC

Created attachment 185244 [details]
patch security/vuxml

Document 2 vulnerabilities discovered in Mercurial prior to 4.3

Comment 2 Olivier Duchateau 2017-08-11 02:28:28 UTC

(In reply to Olivier Duchateau from comment #1)

It's wrong range, it should be 4.2.3.

Comment 3 Olivier Duchateau 2017-08-11 17:39:20 UTC

Created attachment 185294 [details]
patch to update devel/mercurial to 4.3.1

4.3 does not contains security patches correctly.

Upgrade to 4.3.1

Comment 4 Po-Chuan Hsieh freebsd_committer

2017-08-12 19:29:37 UTC

Updated to 4.3.1 in r447854. Thanks!