svn commit: r507001 - in head/security/putty: . files

Matthias Andree mandree at FreeBSD.org
Sat Jul 20 16:16:43 UTC 2019 

Author: mandree
Date: Sat Jul 20 16:16:42 2019
New Revision: 507001
URL: https://svnweb.freebsd.org/changeset/ports/507001

Log:
  Security update to new upstream release 0.72.
  
  Security fixes found by the EU-funded bug bounty:
  - two separate vulnerabilities affecting the obsolete SSH-1 protocol, both available before host key checking
  - a vulnerability in all the SSH client tools (PuTTY, Plink, PSFTP and PSCP) if a malicious program can impersonate Pageant
  
  Changelog:	https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
  
  Switch off -DSTATIC_GSSAPI build as that produces non-working executables
  (assertion failures). Bug has been reported upstream.
  
  MFH:		2019Q3
  Security:	5914705c-ab03-11e9-a4f9-080027ac955c

Deleted:
  head/security/putty/files/patch-config.c
  head/security/putty/files/patch-settings.c
  head/security/putty/files/patch-ssh.c
  head/security/putty/files/patch-ssh2transport.c
  head/security/putty/files/patch-ssh2userauth.c
  head/security/putty/files/patch-sshserver.c
Modified:
  head/security/putty/Makefile
  head/security/putty/distinfo

Modified: head/security/putty/Makefile
==============================================================================
--- head/security/putty/Makefile	Sat Jul 20 16:13:25 2019	(r507000)
+++ head/security/putty/Makefile	Sat Jul 20 16:16:42 2019	(r507001)
@@ -1,7 +1,7 @@
 # $FreeBSD$
 
 PORTNAME=	putty
-PORTVERSION=	0.71
+PORTVERSION=	0.72
 CATEGORIES=	security ipv6
 MASTER_SITES=	http://the.earth.li/~sgtatham/putty/${PORTVERSION}/ \
 		ftp://ftp.chiark.greenend.org.uk/users/sgtatham/putty-latest/
@@ -34,7 +34,7 @@ CONFLICTS_INSTALL?=	pssh-[0-9]* putty-gtk2-[0-9]* putt
 
 .include <bsd.port.options.mk>
 
-CFLAGS+=	-DBSD_PTYS -DOMIT_UTMP -DIPV6
+CFLAGS+=	-DBSD_PTYS -DOMIT_UTMP -DIPV6 -DHAVE_FUTIMES
 LDFLAGS+=	-Wl,--as-needed
 
 .if (${PORT_OPTIONS:MGTK2} || ${PORT_OPTIONS:MGTK3}) && !defined(WITHOUT_X11)
@@ -64,15 +64,12 @@ MAKE_ARGS+=	GTK_CONFIG=:
 .endif
 
 .if ${PORT_OPTIONS:MGSSAPI_BASE}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:base,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .elif ${PORT_OPTIONS:MGSSAPI_HEIMDAL}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:heimdal,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .elif ${PORT_OPTIONS:MGSSAPI_MIT}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:mit,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .else

Modified: head/security/putty/distinfo
==============================================================================
--- head/security/putty/distinfo	Sat Jul 20 16:13:25 2019	(r507000)
+++ head/security/putty/distinfo	Sat Jul 20 16:16:42 2019	(r507001)
@@ -1,3 +1,3 @@
-TIMESTAMP = 1552820659
-SHA256 (putty-0.71.tar.gz) = 2f931ce2f89780cc8ca7bbed90fcd22c44515d2773f5fa954069e209b48ec6b8
-SIZE (putty-0.71.tar.gz) = 2423752
+TIMESTAMP = 1563631735
+SHA256 (putty-0.72.tar.gz) = f236b5a26b0905809b3cd190158e8b95d81f86ad34fdd97a4312c1877f2cec5f
+SIZE (putty-0.72.tar.gz) = 2449516

More information about the svn-ports-all mailing list