ports/175158: print/acroread9 is vulnerable
Tsurutani Naoki
turutani at scphys.kyoto-u.ac.jp
Wed Jan 9 11:40:01 UTC 2013
>Number: 175158
>Category: ports
>Synopsis: print/acroread9 is vulnerable
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Jan 09 11:40:00 UTC 2013
>Closed-Date:
>Last-Modified:
>Originator: Tsurutani Naoki
>Release: FreeBSD 8.2-PRERELEASE i386
>Organization:
>Environment:
System: FreeBSD h120.65.226.10.32118.vlan.kuins.net 8.2-PRERELEASE FreeBSD 8.2-PRERELEASE #25: Mon Jan 24 10:37:18 JST 2011 turutani at h120.65.226.10.32118.vlan.kuins.net:/usr/local/work/usr/obj/usr/src/sys/POLYMER i386
>Description:
print/acroread9 is vulnerable.
ref: http://www.adobe.com/support/security/bulletins/apsb13-02.html
>How-To-Repeat:
>Fix:
acroread 9.5.3 is available only for english version.
here are patches:
--- Makefile.orig 2012-11-23 06:28:54.000000000 +0900
+++ Makefile 2013-01-09 20:12:39.000000000 +0900
@@ -6,7 +6,7 @@
#
PORTNAME= acroread9
-PORTVERSION?= 9.5.1
+PORTVERSION?= 9.5.3
CATEGORIES?= print linux
MASTER_SITES?= http://ardownload.adobe.com/pub/adobe/reader/unix/9.x/${PORTVERSION}/${ADOBE_LANG:L}/ \
ftp://ftp.adobe.com/pub/adobe/reader/unix/9.x/${PORTVERSION}/${ADOBE_LANG:L}/
--- distinfo.orig 2012-06-15 06:55:27.000000000 +0900
+++ distinfo 2013-01-09 20:15:17.000000000 +0900
@@ -1,2 +1,2 @@
-SHA256 (acroread/AdbeRdr9.5.1-1_i486linux_enu.tar.bz2) = a6bcb881d5de4fb58c00fe24c3541122123881a3148a9feb0f62eda8dd82bca6
-SIZE (acroread/AdbeRdr9.5.1-1_i486linux_enu.tar.bz2) = 57138807
+SHA256 (acroread/AdbeRdr9.5.3-1_i486linux_enu.tar.bz2) = 8d4b8c58ef41f10058cc0cc7bccc8fb0fd1bf0bc0230a214e6df5779aeed504d
+SIZE (acroread/AdbeRdr9.5.3-1_i486linux_enu.tar.bz2) = 57176697
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list