Bug 252007 - mail/postsrsd: update to 1.10
Summary: mail/postsrsd: update to 1.10
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Juraj Lutter
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-12-20 21:50 UTC by Krzysztof
Modified: 2020-12-25 11:42 UTC (History)
1 user (show)

See Also:

Attachments
postsrsd_update_1_10 (5.43 KB, patch)
2020-12-20 21:50 UTC, Krzysztof 		ports: maintainer-approval+
Details | Diff
postsrsd_poudriere_log (32.97 KB, text/plain)
2020-12-20 21:51 UTC, Krzysztof 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Krzysztof 2020-12-20 21:50:51 UTC 
Created attachment 220768 [details]
postsrsd_update_1_10

There is new version of postsrsd. I've made a patch which updates a port. Also I'm including log from poudriere
Comment 1 Krzysztof 2020-12-20 21:51:39 UTC 
Created attachment 220769 [details]
postsrsd_poudriere_log
Comment 2 Krzysztof 2020-12-20 21:52:14 UTC 
Comment on attachment 220768 [details]
postsrsd_update_1_10

approval of patch
Comment 3 Juraj Lutter freebsd_committer freebsd_triage 2020-12-21 18:26:38 UTC 
review D27702
Comment 4 commit-hook freebsd_committer freebsd_triage 2020-12-25 11:41:55 UTC 
A commit references this bug:

Author: otis
Date: Fri Dec 25 11:41:38 UTC 2020
New revision: 559235
URL: https://svnweb.freebsd.org/changeset/ports/559235

Log:
  mail/postsrsd: update to 1.10

  Changelog:
    - SECURITY FIX [CVE-2020-35573]: PostSRSd could be tricked into consuming a
      lot of CPU time with an SRS address that has a very long time stamp tag
    - Fixed a bug where PostSRSd would occasionally create invalid SRS addresses
      if the used secret is extremely long

  PR:		252007
  Submitted by:	ports@bsdserwis.com
  Reviewed by:	osa (mentor)
  Approved by:	osa (mentor)
  Security:	eb2845c4-43ce-11eb-aba5-00a09858faf5
  Differential Revision:	https://reviews.freebsd.org/D27702

Changes:
  head/mail/postsrsd/Makefile
  head/mail/postsrsd/distinfo
  head/mail/postsrsd/files/patch-CMakeLists.txt
Comment 5 Juraj Lutter freebsd_committer freebsd_triage 2020-12-25 11:42:54 UTC 
Committed a slightly modified patch wrt portfmt, portclippy, portlint. No other changes.