git: 8522ddedb83d - main - security/krb5-121: Update to 1.21.2

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Cy Schubert <cy_at_FreeBSD.org>
Date: Wed, 16 Aug 2023 14:12:57 UTC
The branch main has been updated by cy:

URL: https://cgit.FreeBSD.org/ports/commit/?id=8522ddedb83d4815964c9d2b4121980b187f4c53

commit 8522ddedb83d4815964c9d2b4121980b187f4c53
Author:     Cy Schubert <cy@FreeBSD.org>
AuthorDate: 2023-08-16 14:11:13 +0000
Commit:     Cy Schubert <cy@FreeBSD.org>
CommitDate: 2023-08-16 14:11:13 +0000

    security/krb5-121: Update to 1.21.2
    
    Major changes in 1.21.2 (2023-08-14)
    ====================================
    
    This is a bug fix release.
    
    * Fix double-free in KDC TGS processing [CVE-2023-39975].
    
    MFH:    2023Q3
---
 security/krb5-121/Makefile                       |  3 +--
 security/krb5-121/distinfo                       |  6 +++---
 security/krb5-121/files/patch-kdc_do__tgs__req.c | 14 --------------
 3 files changed, 4 insertions(+), 19 deletions(-)

diff --git a/security/krb5-121/Makefile b/security/krb5-121/Makefile
index fe0251da5e19..a3b296eb8016 100644
--- a/security/krb5-121/Makefile
+++ b/security/krb5-121/Makefile
@@ -1,6 +1,5 @@
 PORTNAME=		krb5
-PORTVERSION=		1.21.1
-PORTREVISION=		1
+PORTVERSION=		1.21.2
 CATEGORIES=		security
 MASTER_SITES=		http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/
 .if !defined(MASTERDIR)
diff --git a/security/krb5-121/distinfo b/security/krb5-121/distinfo
index 5fcb6cda8ca1..ade8730ee9f7 100644
--- a/security/krb5-121/distinfo
+++ b/security/krb5-121/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1689066284
-SHA256 (krb5-1.21.1.tar.gz) = 7881c3aaaa1b329bd27dbc6bf2bf1c85c5d0b6c7358aff2b35d513ec2d50fa1f
-SIZE (krb5-1.21.1.tar.gz) = 8623049
+TIMESTAMP = 1692194668
+SHA256 (krb5-1.21.2.tar.gz) = 9560941a9d843c0243a71b17a7ac6fe31c7cebb5bce3983db79e52ae7e850491
+SIZE (krb5-1.21.2.tar.gz) = 8622513
diff --git a/security/krb5-121/files/patch-kdc_do__tgs__req.c b/security/krb5-121/files/patch-kdc_do__tgs__req.c
deleted file mode 100644
index b42861d35c02..000000000000
--- a/security/krb5-121/files/patch-kdc_do__tgs__req.c
+++ /dev/null
@@ -1,14 +0,0 @@
---- kdc/do_tgs_req.c.orig	2023-07-10 13:58:20.000000000 -0700
-+++ kdc/do_tgs_req.c	2023-08-14 07:23:14.383349000 -0700
-@@ -1010,8 +1010,9 @@
-     }
- 
-     if (t->req->kdc_options & (KDC_OPT_VALIDATE | KDC_OPT_RENEW)) {
--        /* Copy the whole header ticket except for authorization data. */
--        ticket_reply = *t->header_tkt;
-+        /* Copy the header ticket server and all enc-part fields except for
-+         * authorization data. */
-+        ticket_reply.server = t->header_tkt->server;
-         enc_tkt_reply = *t->header_tkt->enc_part2;
-         enc_tkt_reply.authorization_data = NULL;
-     } else {