diff options
| author | Craig Leres <leres@FreeBSD.org> | 2024-01-22 17:53:28 +0000 |
|---|---|---|
| committer | Craig Leres <leres@FreeBSD.org> | 2024-01-22 17:53:28 +0000 |
| commit | e81dfaab6a0511eeb704adfffeb68c6be034bb4c (patch) | |
| tree | a8e115f6fb054eee5d57937627d5ccc85258ebc7 | |
| parent | 0922b4e467be9bfb6fd66949d8c5d3e348acf794 (diff) | |
| download | ports-e81dfaab6a0511eeb704adfffeb68c6be034bb4c.tar.gz ports-e81dfaab6a0511eeb704adfffeb68c6be034bb4c.zip | |
security/zeek: Update to 6.0.3
https://github.com/zeek/zeek/releases/tag/v6.0.3
This release fixes the following potential DoS vulnerability:
- A specially-crafted series of packets containing nested MIME
entities can cause Zeek to spend large amounts of time parsing
the entities.
This release fixes the following bugs:
- CMake correctly passes along third-party package information
when building plugins.
- Fix a problem with the HTTP analyzer where a signature regex
ending in '$' used to match against 'http-request-body' or
'http-reply-bdoy' will never succeed.
- The DNS analyzer now understands the Ed25519 and Ed448 signature
algorithms.
- The SMB::State$recent_files field was not correctly expiring
entries, leading to unbounded state growth.
- The &create_expire attribute is now kept valid after clearing a
table.
Reported by: Tim Wojtulewicz
Security: fedf7e71-61bd-49ec-aaf0-6da14bdbb319
| -rw-r--r-- | security/zeek/Makefile | 3 | ||||
| -rw-r--r-- | security/zeek/distinfo | 6 | ||||
| -rw-r--r-- | security/zeek/pkg-plist | 2 |
3 files changed, 6 insertions, 5 deletions
diff --git a/security/zeek/Makefile b/security/zeek/Makefile index 79b7ba0eed14..b2c0bc260b52 100644 --- a/security/zeek/Makefile +++ b/security/zeek/Makefile @@ -1,6 +1,5 @@ PORTNAME= zeek -DISTVERSION= 6.0.2 -PORTREVISION= 1 +DISTVERSION= 6.0.3 CATEGORIES= security MASTER_SITES= https://download.zeek.org/ DISTFILES= ${DISTNAME}${EXTRACT_SUFX} diff --git a/security/zeek/distinfo b/security/zeek/distinfo index 2f9b2eae87e8..677c0645e529 100644 --- a/security/zeek/distinfo +++ b/security/zeek/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1698437165 -SHA256 (zeek-6.0.2.tar.gz) = 2421989adcee6a29f48a8f7272f719edbe954d66c2e86e3a52e79cae177f887c -SIZE (zeek-6.0.2.tar.gz) = 60175209 +TIMESTAMP = 1705944333 +SHA256 (zeek-6.0.3.tar.gz) = 227edf0e1e6b54dc9893cfd1ecd8621291cc85d1d06808874394aad555f8a8a4 +SIZE (zeek-6.0.3.tar.gz) = 60225127 diff --git a/security/zeek/pkg-plist b/security/zeek/pkg-plist index d7c06b5f6092..c009aca9bf16 100644 --- a/security/zeek/pkg-plist +++ b/security/zeek/pkg-plist @@ -739,6 +739,7 @@ include/zeek/analyzer/protocol/login/Telnet.h include/zeek/analyzer/protocol/login/events.bif.h include/zeek/analyzer/protocol/login/functions.bif.h include/zeek/analyzer/protocol/mime/MIME.h +include/zeek/analyzer/protocol/mime/consts.bif.h include/zeek/analyzer/protocol/mime/events.bif.h include/zeek/analyzer/protocol/modbus/Modbus.h include/zeek/analyzer/protocol/modbus/events.bif.h @@ -1379,6 +1380,7 @@ share/man/man8/zeek.8.gz %%DATADIR%%/base/bif/plugins/Zeek_KRB.types.bif.zeek %%DATADIR%%/base/bif/plugins/Zeek_Login.events.bif.zeek %%DATADIR%%/base/bif/plugins/Zeek_Login.functions.bif.zeek +%%DATADIR%%/base/bif/plugins/Zeek_MIME.consts.bif.zeek %%DATADIR%%/base/bif/plugins/Zeek_MIME.events.bif.zeek %%DATADIR%%/base/bif/plugins/Zeek_MQTT.events.bif.zeek %%DATADIR%%/base/bif/plugins/Zeek_MQTT.types.bif.zeek |