git: 28e0f477875e - main - security/zeek: Update to 7.0.2

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Craig Leres <leres_at_FreeBSD.org>
Date: Tue, 24 Sep 2024 05:47:20 UTC
The branch main has been updated by leres:

URL: https://cgit.FreeBSD.org/ports/commit/?id=28e0f477875e7e811544bc029721f81f5a8cc6dc

commit 28e0f477875e7e811544bc029721f81f5a8cc6dc
Author:     Craig Leres <leres@FreeBSD.org>
AuthorDate: 2024-09-24 05:46:46 +0000
Commit:     Craig Leres <leres@FreeBSD.org>
CommitDate: 2024-09-24 05:46:46 +0000

    security/zeek: Update to 7.0.2
    
        https://github.com/zeek/zeek/releases/tag/v7.0.2
    
    This release fixes the following potential DoS vulnerability:
    
     - The POP3 parser has been hardened to avoid unbounded state growth
       in the face of one-sided traffic capture or when enabled for
       non-POP3 traffic.
    
    This release fixes the following bugs:
    
     - Support for SASL+SPNEGO+NTLMSSP was added to the LDAP analyzer.
    
     - Telemetry callbacks are now handled via Zeek instead of depending
       on the prometehus-cpp library to handle them.
    
    Reported by:    Tim Wojtulewicz
---
 security/zeek/Makefile  | 2 +-
 security/zeek/distinfo  | 6 +++---
 security/zeek/pkg-plist | 2 ++
 3 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/security/zeek/Makefile b/security/zeek/Makefile
index 47bc4fa517ad..3f7841c5239f 100644
--- a/security/zeek/Makefile
+++ b/security/zeek/Makefile
@@ -1,5 +1,5 @@
 PORTNAME=	zeek
-DISTVERSION=	7.0.1
+DISTVERSION=	7.0.2
 CATEGORIES=	security
 MASTER_SITES=	https://download.zeek.org/
 
diff --git a/security/zeek/distinfo b/security/zeek/distinfo
index 06b29c5e8308..f386e3a8ceef 100644
--- a/security/zeek/distinfo
+++ b/security/zeek/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1725405349
-SHA256 (zeek-7.0.1.tar.gz) = bcfec8c61b96a92068ee3dd6d1affc399f114224cea9caf7944679da2ca89e2b
-SIZE (zeek-7.0.1.tar.gz) = 95820593
+TIMESTAMP = 1727154773
+SHA256 (zeek-7.0.2.tar.gz) = 3b40304a01059d08c732e8f24b34f0070ec716e266e69edb24ad96ceed064781
+SIZE (zeek-7.0.2.tar.gz) = 95828919
diff --git a/security/zeek/pkg-plist b/security/zeek/pkg-plist
index c36899956264..0d7ee7a549f7 100644
--- a/security/zeek/pkg-plist
+++ b/security/zeek/pkg-plist
@@ -819,6 +819,7 @@ include/zeek/analyzer/protocol/ntp/ntp.pac
 include/zeek/analyzer/protocol/ntp/types.bif.h
 include/zeek/analyzer/protocol/pia/PIA.h
 include/zeek/analyzer/protocol/pop3/POP3.h
+include/zeek/analyzer/protocol/pop3/consts.bif.h
 include/zeek/analyzer/protocol/pop3/events.bif.h
 include/zeek/analyzer/protocol/radius/RADIUS.h
 include/zeek/analyzer/protocol/radius/events.bif.h
@@ -1456,6 +1457,7 @@ share/man/man8/zeek.8.gz
 %%DATADIR%%/base/bif/plugins/Zeek_NetBIOS.functions.bif.zeek
 %%DATADIR%%/base/bif/plugins/Zeek_NoneWriter.none.bif.zeek
 %%DATADIR%%/base/bif/plugins/Zeek_PE.events.bif.zeek
+%%DATADIR%%/base/bif/plugins/Zeek_POP3.consts.bif.zeek
 %%DATADIR%%/base/bif/plugins/Zeek_POP3.events.bif.zeek
 %%DATADIR%%/base/bif/plugins/Zeek_RADIUS.events.bif.zeek
 %%DATADIR%%/base/bif/plugins/Zeek_RDP.events.bif.zeek