Bug 222092 - security/doas: Update port to version 6.0p1
Summary: security/doas: Update port to version 6.0p1
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Tobias Kortkamp
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2017-09-06 01:09 UTC by Jesse Smith
Modified: 2017-10-01 13:18 UTC (History)
1 user (show)

See Also:
tobik: merge-quarterly-


Attachments
Patch to update doas port to upstream version 6.0p1 (959 bytes, text/plain)
2017-09-06 01:09 UTC, Jesse Smith
jsmith: maintainer-approval+
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Jesse Smith 2017-09-06 01:09:59 UTC
Created attachment 186103 [details]
Patch to update doas port to upstream version 6.0p1

This update brings the security/doas port up to date with upstream. This gives us the added benefit of restricted path searching. Which means if the admin puts a relative path in the doas.conf file, doas will limit the number of places where the executable can be found. This prevents users from putting malicious executables with the same name in their custom path.
Comment 1 commit-hook freebsd_committer freebsd_triage 2017-09-06 10:04:29 UTC
A commit references this bug:

Author: tobik
Date: Wed Sep  6 10:03:52 UTC 2017
New revision: 449334
URL: https://svnweb.freebsd.org/changeset/ports/449334

Log:
  security/doas: Update to 6.0p1

  This update brings the security/doas port up to date with upstream.
  This gives us the added benefit of restricted path searching.  Which
  means if the admin puts a relative path in the doas.conf file, doas
  will limit the number of places where the executable can be found.
  This prevents users from putting malicious executables with the same
  name in their custom path.

  PR:		222092
  Submitted by:	jsmith@resonatingmedia.com (maintainer)
  MFH:		2017Q3

Changes:
  head/security/doas/Makefile
  head/security/doas/distinfo
Comment 2 Tobias Kortkamp freebsd_committer freebsd_triage 2017-10-01 13:18:22 UTC
Closing because I've never gotten approval for MFH'ing the update and it seems pointless now...

@jsmith, thank you for the quick port update though!