From owner-freebsd-ports-bugs@FreeBSD.ORG Fri Mar 28 14:50:02 2008 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 455851065679 for ; Fri, 28 Mar 2008 14:50:02 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 1CCDD8FC26 for ; Fri, 28 Mar 2008 14:50:02 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.14.2/8.14.2) with ESMTP id m2SEo2VN071414 for ; Fri, 28 Mar 2008 14:50:02 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.2/8.14.1/Submit) id m2SEo25x071413; Fri, 28 Mar 2008 14:50:02 GMT (envelope-from gnats) Resent-Date: Fri, 28 Mar 2008 14:50:02 GMT Resent-Message-Id: <200803281450.m2SEo25x071413@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Robert Felber Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F15DF1065671 for ; Fri, 28 Mar 2008 14:49:40 +0000 (UTC) (envelope-from robtone@ek-muc.de) Received: from robtone.ek-muc.de (robtone.ek-muc.de [62.225.182.35]) by mx1.freebsd.org (Postfix) with ESMTP id 9F0F28FC1A for ; Fri, 28 Mar 2008 14:49:40 +0000 (UTC) (envelope-from robtone@ek-muc.de) Received: from localhost (localhost [127.0.0.1]) by robtone.ek-muc.de (Postfix) with ESMTP id 6FD02C42B4 for ; Fri, 28 Mar 2008 15:49:15 +0100 (CET) Received: by robtone.ek-muc.de (Postfix, from userid 1001) id 5998AC42A7; Fri, 28 Mar 2008 15:49:06 +0100 (CET) Message-Id: <20080328144906.5998AC42A7@robtone.ek-muc.de> Date: Fri, 28 Mar 2008 15:49:06 +0100 (CET) From: Robert Felber To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Cc: Subject: ports/122194: Update port: mail/postfix-policyd-weight (security-fix) X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Robert Felber List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Mar 2008 14:50:02 -0000 >Number: 122194 >Category: ports >Synopsis: Update port: mail/postfix-policyd-weight (security-fix) >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Fri Mar 28 14:50:01 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Robert Felber >Release: FreeBSD 6.1-RELEASE-p7 i386 >Organization: Autohaus Erich Kuttendreier >Environment: System: FreeBSD 6.1-RELEASE-p7 >Description: This pr closes ports/122060 See changelog excerpts below. 0.1.14 beta-17 - (security) Using File::Spec->canonpath for normalization (trailing slashes) Check ownership of real directories to avoid race attacks for symlinks. Thanks to Robert Buchholz. 0.1.14 beta-16 (not released) - (security) The check for symlinked directories was half complete. perl ignores -l if the argument has a trailung slash. Thanks to Andrej Kacian. >How-To-Repeat: >Fix: --- postfix-policyd-weight-0.1.14.17.diff begins here --- diff -ruN /usr/ports/mail/postfix-policyd-weight/Makefile ./postfix-policyd-weight-0.1.14.17/Makefile --- /usr/ports/mail/postfix-policyd-weight/Makefile Mon Jan 21 00:03:20 2008 +++ ./postfix-policyd-weight-0.1.14.17/Makefile Fri Mar 28 15:40:36 2008 @@ -6,7 +6,7 @@ # PORTNAME= policyd-weight -PORTVERSION= 0.1.14.14 +PORTVERSION= 0.1.14.17 CATEGORIES= mail MASTER_SITES= http://www.policyd-weight.org/releases/ PKGNAMEPREFIX= postfix- @@ -20,6 +20,8 @@ PLIST_FILES= bin/${PORTNAME} etc/${PORTNAME}.conf.sample USE_RC_SUBR+= policyd-weight +USE_PERL5= yes +NO_BUILD= yes MAN8+= policyd-weight.8 MAN5+= policyd-weight.conf.5 diff -ruN /usr/ports/mail/postfix-policyd-weight/distinfo ./postfix-policyd-weight-0.1.14.17/distinfo --- /usr/ports/mail/postfix-policyd-weight/distinfo Mon Jan 21 00:03:20 2008 +++ ./postfix-policyd-weight-0.1.14.17/distinfo Fri Mar 28 15:40:36 2008 @@ -1,3 +1,3 @@ -MD5 (policyd-weight-0.1.14.14.tar.gz) = ec8f36dd68edb2c0bcad8899a9e51668 -SHA256 (policyd-weight-0.1.14.14.tar.gz) = 22c0842388d1695c35ae0fd44597c34b664fb3f9f1c8e11ad2df4dea7f06152d -SIZE (policyd-weight-0.1.14.14.tar.gz) = 54125 +MD5 (policyd-weight-0.1.14.17.tar.gz) = c90128d2442ba343e8127dc0dbdcfd9a +SHA256 (policyd-weight-0.1.14.17.tar.gz) = c13bac397cbd8c018b41686da4e4ce9450fb045752d7f0ab518d9836b39dbf36 +SIZE (policyd-weight-0.1.14.17.tar.gz) = 54942 diff -ruN /usr/ports/mail/postfix-policyd-weight/files/policyd-weight.in ./postfix-policyd-weight-0.1.14.17/files/policyd-weight.in --- /usr/ports/mail/postfix-policyd-weight/files/policyd-weight.in Sun May 27 13:41:04 2007 +++ ./postfix-policyd-weight-0.1.14.17/files/policyd-weight.in Tue Mar 25 00:33:09 2008 @@ -38,7 +38,7 @@ policyd_weight_stop() { echo "Stopping $name" - /usr/local/bin/policyd-weight stop + /usr/local/bin/policyd-weight -k stop } run_rc_command "$1" --- postfix-policyd-weight-0.1.14.17.diff ends here --- >Release-Note: >Audit-Trail: >Unformatted: