Bug 241210 - databases/mongodb40: upgrade 4.0.8 -> 4.0.12, fix security issues
Summary: databases/mongodb40: upgrade 4.0.8 -> 4.0.12, fix security issues
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Kurt Jaeger
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-10-12 08:33 UTC by Kurt Jaeger
Modified: 2019-10-12 10:35 UTC (History)
1 user (show)

See Also:
dev.ashevchuk: maintainer-feedback+


Attachments
patch (2.61 KB, patch)
2019-10-12 08:33 UTC, Kurt Jaeger
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Kurt Jaeger freebsd_committer 2019-10-12 08:33:55 UTC
Created attachment 208255 [details]
patch

testbuilds are fine.

CVE-2019-2389, CVE-2019-2390, CVE-2019-2386
similar to the fixes for -34 and 36.

TODO: check if vuxml entry needs to include 40
Comment 1 commit-hook freebsd_committer 2019-10-12 10:34:00 UTC
A commit references this bug:

Author: pi
Date: Sat Oct 12 10:33:00 UTC 2019
New revision: 514327
URL: https://svnweb.freebsd.org/changeset/ports/514327

Log:
  databases/mongodb40: upgrade 4.0.8 -> 4.0.12

  PR:		241210
  Approved by:	Andrew Shevchuk <dev.ashevchuk@gmail.com> (maintainer)
  MFH:		2019Q4
  Relnotes:	https://docs.mongodb.com/manual/release-notes/4.0/
  Security:	CVE-2019-2386, CVE-2019-2389, CVE-2019-2390

Changes:
  head/databases/mongodb40/Makefile
  head/databases/mongodb40/distinfo
  head/databases/mongodb40/files/patch-boost-1.67
Comment 2 commit-hook freebsd_committer 2019-10-12 10:35:01 UTC
A commit references this bug:

Author: pi
Date: Sat Oct 12 10:34:45 UTC 2019
New revision: 514328
URL: https://svnweb.freebsd.org/changeset/ports/514328

Log:
  MFH: r514327

  databases/mongodb40: upgrade 4.0.8 -> 4.0.12

  PR:		241210
  Approved by:	Andrew Shevchuk <dev.ashevchuk@gmail.com> (maintainer)
  Relnotes:	https://docs.mongodb.com/manual/release-notes/4.0/
  Security:	CVE-2019-2386, CVE-2019-2389, CVE-2019-2390
  Approved by:	ports-secteam (miwi, implicit)

Changes:
_U  branches/2019Q4/
  branches/2019Q4/databases/mongodb40/Makefile
  branches/2019Q4/databases/mongodb40/distinfo
  branches/2019Q4/databases/mongodb40/files/patch-boost-1.67
Comment 3 Kurt Jaeger freebsd_committer 2019-10-12 10:35:22 UTC
Thanks!
Comment 4 Kurt Jaeger freebsd_committer 2019-10-12 10:35:34 UTC
(checked: vuxml is fine)