devel/libgit2: security update to 1.3.2

Changelog:
https://github.com/libgit2/libgit2/releases/tag/v1.3.2

This is a security release with multiple changes.

    This provides compatibility with git's changes to address CVE 2022-29187. As a follow up to CVE 2022-24765, now not only is the working directory of a non-bare repository examined for its ownership, but the .git directory and the .git file (if present) are also examined for their ownership.

    A fix for compatibility with git's (new) behavior for CVE 2022-24765 allows users on POSIX systems to access a git repository that is owned by them when they are running in sudo.

    A fix for further compatibility with git's (existing) behavior for CVE 2022-24765 allows users on Windows to access a git repository that is owned by the Administrator when running with escalated privileges (using runas Administrator).

    The bundled zlib is updated to v1.2.12, as prior versions had memory corruption bugs. It is not known that there is a security vulnerability in libgit2 based on these bugs, but we are updating to be cautious.

MFH:		2022Q3

2 files changed, 4 insertions, 4 deletions

diff --git a/devel/libgit2/Makefile b/devel/libgit2/Makefile
index 269fcf01efc2..e1a5adc474a3 100644
--- a/devel/libgit2/Makefile
+++ b/devel/libgit2/Makefile
@@ -5,7 +5,7 @@
 
 PORTNAME=	libgit2
 DISTVERSIONPREFIX=	v
-DISTVERSION=	1.3.1
+DISTVERSION=	1.3.2
 CATEGORIES=	devel
 
 MAINTAINER=	mfechner@FreeBSD.org
diff --git a/devel/libgit2/distinfo b/devel/libgit2/distinfo
index f862bbd2ecb9..9e0e5ff0cdf9 100644
--- a/devel/libgit2/distinfo
+++ b/devel/libgit2/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1655709923
-SHA256 (libgit2-libgit2-v1.3.1_GH0.tar.gz) = a2a0a90d577f1771ba9f7e98042865c3f6386c896eeefa846c3fc0c37ce7c6e0
-SIZE (libgit2-libgit2-v1.3.1_GH0.tar.gz) = 5602265
+TIMESTAMP = 1657692035
+SHA256 (libgit2-libgit2-v1.3.2_GH0.tar.gz) = 3a4469b32b73d53f9dbb7bf17b61b0cfb7dae9020e199f928fa96f12d6eb29cb
+SIZE (libgit2-libgit2-v1.3.2_GH0.tar.gz) = 5824473