diff options
author | Cy Schubert <cy@FreeBSD.org> | 2015-02-04 20:47:04 +0000 |
---|---|---|
committer | Cy Schubert <cy@FreeBSD.org> | 2015-02-04 20:47:04 +0000 |
commit | a0e8af7e0f53d8bb69ef23d4a6266f127daa6fa1 (patch) | |
tree | 9f7ec47e0f4e680a123a688259ad589635f37f37 /security/krb5/Makefile | |
parent | bb27919f0b14b56bd89f62501650d54c90096f6b (diff) | |
download | ports-a0e8af7e0f53d8bb69ef23d4a6266f127daa6fa1.tar.gz ports-a0e8af7e0f53d8bb69ef23d4a6266f127daa6fa1.zip |
Address: krb5 -- Vulnerabilities in kadmind, libgssrpc,
gss_process_context_token VU#540092
CVE-2014-5352: gss_process_context_token() incorrectly frees context
CVE-2014-9421: kadmind doubly frees partial deserialization results
CVE-2014-9422: kadmind incorrectly validates server principal name
CVE-2014-9423: libgssrpc server applications leak uninitialized bytes
Security: VUXML: 24ce5597-acab-11e4-a847-206a8a720317
Security: MIT KRB5: VU#540092
Security: CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423
Notes
Notes:
svn path=/head/; revision=378417
Diffstat (limited to 'security/krb5/Makefile')
-rw-r--r-- | security/krb5/Makefile | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/security/krb5/Makefile b/security/krb5/Makefile index 760618ee38ee..5d19e3ffd7e9 100644 --- a/security/krb5/Makefile +++ b/security/krb5/Makefile @@ -3,10 +3,12 @@ PORTNAME= krb5 PORTVERSION= 1.13 +PORTREVISION= 1 CATEGORIES= security MASTER_SITES= http://web.mit.edu/kerberos/dist/${PORTNAME}/${PORTVERSION:C/^[0-9]*\.[0-9]*/&X/:C/X\.[0-9]*$//:C/X//}/ DISTNAME= ${PORTNAME}-${PORTVERSION}-signed EXTRACT_SUFX= .tar +PATCHFILES= 2015-001-patch-r113.txt PATCH_SITES= http://web.mit.edu/kerberos/advisories/ PATCH_DIST_STRIP= -p2 @@ -67,7 +69,13 @@ PLIST_SUB+= LDAP="@comment " .endif .if ${PORT_OPTIONS:MREADLINE} +.if ${OSVERSION} >= 1100000 +# libtool has some gas with libreadline in 11-CURRENT. +BUILD_DEPENDS+= ${LOCALBASE}/lib/libreadline.so.6:${PORTSDIR}/devel/readline +LIB_DEPENDS+= ${LOCALBASE}/lib/libreadline.so.6:${PORTSDIR}/devel/readline +.else USES+= readline:port +.endif CONFIGURE_ARGS+= --with-readline .endif |