svn commit: r507001 - in head/security/putty: . files
Matthias Andree
mandree at FreeBSD.org
Sat Jul 20 16:16:43 UTC 2019
Author: mandree
Date: Sat Jul 20 16:16:42 2019
New Revision: 507001
URL: https://svnweb.freebsd.org/changeset/ports/507001
Log:
Security update to new upstream release 0.72.
Security fixes found by the EU-funded bug bounty:
- two separate vulnerabilities affecting the obsolete SSH-1 protocol, both available before host key checking
- a vulnerability in all the SSH client tools (PuTTY, Plink, PSFTP and PSCP) if a malicious program can impersonate Pageant
Changelog: https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
Switch off -DSTATIC_GSSAPI build as that produces non-working executables
(assertion failures). Bug has been reported upstream.
MFH: 2019Q3
Security: 5914705c-ab03-11e9-a4f9-080027ac955c
Deleted:
head/security/putty/files/patch-config.c
head/security/putty/files/patch-settings.c
head/security/putty/files/patch-ssh.c
head/security/putty/files/patch-ssh2transport.c
head/security/putty/files/patch-ssh2userauth.c
head/security/putty/files/patch-sshserver.c
Modified:
head/security/putty/Makefile
head/security/putty/distinfo
Modified: head/security/putty/Makefile
==============================================================================
--- head/security/putty/Makefile Sat Jul 20 16:13:25 2019 (r507000)
+++ head/security/putty/Makefile Sat Jul 20 16:16:42 2019 (r507001)
@@ -1,7 +1,7 @@
# $FreeBSD$
PORTNAME= putty
-PORTVERSION= 0.71
+PORTVERSION= 0.72
CATEGORIES= security ipv6
MASTER_SITES= http://the.earth.li/~sgtatham/putty/${PORTVERSION}/ \
ftp://ftp.chiark.greenend.org.uk/users/sgtatham/putty-latest/
@@ -34,7 +34,7 @@ CONFLICTS_INSTALL?= pssh-[0-9]* putty-gtk2-[0-9]* putt
.include <bsd.port.options.mk>
-CFLAGS+= -DBSD_PTYS -DOMIT_UTMP -DIPV6
+CFLAGS+= -DBSD_PTYS -DOMIT_UTMP -DIPV6 -DHAVE_FUTIMES
LDFLAGS+= -Wl,--as-needed
.if (${PORT_OPTIONS:MGTK2} || ${PORT_OPTIONS:MGTK3}) && !defined(WITHOUT_X11)
@@ -64,15 +64,12 @@ MAKE_ARGS+= GTK_CONFIG=:
.endif
.if ${PORT_OPTIONS:MGSSAPI_BASE}
-_COMPAT= -DSTATIC_GSSAPI
USES+= gssapi:base,flags
MAKE_ARGS+= KRB5CONFIG=${KRB5CONFIG}
.elif ${PORT_OPTIONS:MGSSAPI_HEIMDAL}
-_COMPAT= -DSTATIC_GSSAPI
USES+= gssapi:heimdal,flags
MAKE_ARGS+= KRB5CONFIG=${KRB5CONFIG}
.elif ${PORT_OPTIONS:MGSSAPI_MIT}
-_COMPAT= -DSTATIC_GSSAPI
USES+= gssapi:mit,flags
MAKE_ARGS+= KRB5CONFIG=${KRB5CONFIG}
.else
Modified: head/security/putty/distinfo
==============================================================================
--- head/security/putty/distinfo Sat Jul 20 16:13:25 2019 (r507000)
+++ head/security/putty/distinfo Sat Jul 20 16:16:42 2019 (r507001)
@@ -1,3 +1,3 @@
-TIMESTAMP = 1552820659
-SHA256 (putty-0.71.tar.gz) = 2f931ce2f89780cc8ca7bbed90fcd22c44515d2773f5fa954069e209b48ec6b8
-SIZE (putty-0.71.tar.gz) = 2423752
+TIMESTAMP = 1563631735
+SHA256 (putty-0.72.tar.gz) = f236b5a26b0905809b3cd190158e8b95d81f86ad34fdd97a4312c1877f2cec5f
+SIZE (putty-0.72.tar.gz) = 2449516
More information about the svn-ports-all
mailing list