diff options
| author | Kurt Jaeger <pi@FreeBSD.org> | 2020-05-27 16:02:32 +0000 |
|---|---|---|
| committer | Kurt Jaeger <pi@FreeBSD.org> | 2020-05-27 16:02:32 +0000 |
| commit | 45bb7bc6b5233a1d55a02c25cdf91043d3718df9 (patch) | |
| tree | c06047907b0c7e7a9644924473226fbcd4fdfe2d /mail/sympa | |
| parent | 1e9999ddafb341c00dd0f6b0f84ac860379e34f6 (diff) | |
| download | ports-45bb7bc6b5233a1d55a02c25cdf91043d3718df9.tar.gz ports-45bb7bc6b5233a1d55a02c25cdf91043d3718df9.zip | |
mail/sympa: update 6.2.54 -> 6.2.56, fix security issue
- A vulnerability has been discovered in Sympa web interface by
which attacker can execute arbitrary code with root privileges.
PR: 246701
Submitted by: William F. Dudley Jr. <wfdudley@gmail.com>
Approved by: dgeo@centrale-marseille.fr (maintainer)
MFH: 2020Q2
Relnotes: https://github.com/sympa-community/sympa/releases/tag/6.2.56
Security: CVE-2020-10936
https://sympa-community.github.io/security/2020-002.html
https://github.com/sympa-community/sympa/issues/943
Notes
Notes:
svn path=/head/; revision=536696
Diffstat (limited to 'mail/sympa')
| -rw-r--r-- | mail/sympa/Makefile | 2 | ||||
| -rw-r--r-- | mail/sympa/distinfo | 6 | ||||
| -rw-r--r-- | mail/sympa/files/pkg-install.in | 5 | ||||
| -rw-r--r-- | mail/sympa/pkg-plist | 7 |
4 files changed, 14 insertions, 6 deletions
diff --git a/mail/sympa/Makefile b/mail/sympa/Makefile index ca4236da1f38..a551d51a1f8e 100644 --- a/mail/sympa/Makefile +++ b/mail/sympa/Makefile @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= sympa -DISTVERSION= 6.2.54 +DISTVERSION= 6.2.56 CATEGORIES= mail MAINTAINER= dgeo@centrale-marseille.fr diff --git a/mail/sympa/distinfo b/mail/sympa/distinfo index 8ccf1ecd7f5d..9d36f0b68f3f 100644 --- a/mail/sympa/distinfo +++ b/mail/sympa/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1583604282 -SHA256 (sympa-community-sympa-6.2.54_GH0.tar.gz) = 3322555bf92f1ffee53d8f943b5376b9eaec2d00ee884340543dceee3d59f6a0 -SIZE (sympa-community-sympa-6.2.54_GH0.tar.gz) = 10256308 +TIMESTAMP = 1590500677 +SHA256 (sympa-community-sympa-6.2.56_GH0.tar.gz) = 52c575880992b2e9dd84a68ff066f549b184768de13f115fb053034a4afc1cc2 +SIZE (sympa-community-sympa-6.2.56_GH0.tar.gz) = 10353468 diff --git a/mail/sympa/files/pkg-install.in b/mail/sympa/files/pkg-install.in index ea0a7a125e17..e0a1239dd448 100644 --- a/mail/sympa/files/pkg-install.in +++ b/mail/sympa/files/pkg-install.in @@ -9,7 +9,7 @@ if [ "$2" = "POST_INSTALL" ]; then else if [ $(tail -1 %%ETCDIR%%/data_structure.version | cut -d. -f3) -lt 2 ]; then echo "It seems you are upgrading from version <6.2 ($(cat %%ETCDIR%%/data_structure.version))" - echo "You'll have to read https://www.sympa.org/faq/upgrade-to-v6.2 and (at least) run:" + echo "You'll have to read https://sympa-community.github.io/manual/upgrade/notes.html and (at least) run:" echo " # %%PREFIX%%/libexec/sympa/sympa.pl --upgrade_config_location" echo " # %%PREFIX%%/libexec/sympa/sympa.pl --upgrade" echo " # %%PREFIX%%/libexec/sympa/upgrade_bulk_spool.pl" @@ -18,6 +18,9 @@ if [ "$2" = "POST_INSTALL" ]; then else echo "to upgrade, run:" echo " # %%PREFIX%%/libexec/sympa/sympa.pl --upgrade" + echo "" + echo "Don't forget to read:" + echo " https://sympa-community.github.io/manual/upgrade/notes.html" fi fi fi diff --git a/mail/sympa/pkg-plist b/mail/sympa/pkg-plist index 611b7a647cd7..006035d11709 100644 --- a/mail/sympa/pkg-plist +++ b/mail/sympa/pkg-plist @@ -169,6 +169,7 @@ libexec/sympa/Sympa/Tracking.pm libexec/sympa/Sympa/Upgrade.pm libexec/sympa/Sympa/User.pm libexec/sympa/Sympa/WWW/Auth.pm +libexec/sympa/Sympa/WWW/FastCGI.pm libexec/sympa/Sympa/WWW/Marc.pm libexec/sympa/Sympa/WWW/Marc/Search.pm libexec/sympa/Sympa/WWW/Report.pm @@ -371,6 +372,7 @@ man/man3/Sympa::Tools::Text.3Sympa.gz man/man3/Sympa::Tools::Time.3Sympa.gz man/man3/Sympa::Tracking.3Sympa.gz man/man3/Sympa::User.3Sympa.gz +man/man3/Sympa::WWW::FastCGI.3Sympa.gz man/man3/Sympa::WWW::Marc::Search.3Sympa.gz man/man3/Sympa::WWW::Session.3Sympa.gz man/man3/Sympa::WWW::SharedDocument.3Sympa.gz @@ -427,6 +429,7 @@ share/locale/fr/LC_MESSAGES/sympa.mo share/locale/fr/LC_MESSAGES/web_help.mo share/locale/gl/LC_MESSAGES/sympa.mo share/locale/gl/LC_MESSAGES/web_help.mo +share/locale/hr/LC_MESSAGES/sympa.mo share/locale/hu/LC_MESSAGES/sympa.mo share/locale/hu/LC_MESSAGES/web_help.mo share/locale/id/LC_MESSAGES/sympa.mo @@ -901,6 +904,8 @@ share/locale/zh_TW/LC_MESSAGES/sympa.mo %%DATADIR%%/static/js/respondjs/respond.min.js %%DATADIR%%/static/js/sympa.js %%PORTDOCS%%%%DOCSDIR%%/NEWS.md +@group sympa +@dir %%ETCDIR%% @dir %%ETCDIR%%/create_list_templates @dir %%ETCDIR%%/custom_actions @dir %%ETCDIR%%/custom_conditions @@ -913,11 +918,11 @@ share/locale/zh_TW/LC_MESSAGES/sympa.mo @dir %%ETCDIR%%/web_tt2 @dir libexec/sympa/Sympa/Template/Plugin @dir libexec/sympa/Sympa/List +@owner sympa @dir %%DATADIR%%/arc @dir %%DATADIR%%/bounce @dir %%DATADIR%%/list_data @dir %%DATADIR%%/static -@owner sympa @dir %%DATADIR%%/static/css @dir %%DATADIR%%/static/pictures @dir /var/run/sympa |