From owner-freebsd-ports-bugs@FreeBSD.ORG Fri Mar 7 11:20:02 2014 Return-Path: Delivered-To: freebsd-ports-bugs@smarthost.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 43B49B15 for ; Fri, 7 Mar 2014 11:20:02 +0000 (UTC) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:1900:2254:206c::16:87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 08F9310A for ; Fri, 7 Mar 2014 11:20:02 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.8/8.14.8) with ESMTP id s27BK1j1035169 for ; Fri, 7 Mar 2014 11:20:01 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.8/8.14.8/Submit) id s27BK1ZJ035168; Fri, 7 Mar 2014 11:20:01 GMT (envelope-from gnats) Resent-Date: Fri, 7 Mar 2014 11:20:01 GMT Resent-Message-Id: <201403071120.s27BK1ZJ035168@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Moritz Wilhelmy Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 82131AB9; Fri, 7 Mar 2014 11:17:05 +0000 (UTC) Received: from furnace.wzff.de (furnace.wzff.de [176.9.216.40]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 2BD56C4; Fri, 7 Mar 2014 11:17:01 +0000 (UTC) Received: from root by furnace.wzff.de with local (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1WLsf2-000Eof-8t; Fri, 07 Mar 2014 12:09:52 +0100 Message-Id: Date: Fri, 07 Mar 2014 12:09:52 +0100 From: Moritz Wilhelmy To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.114 Subject: ports/187346: switch emacs24 over to gnutls3 Cc: wg@FreeBSD.org, novel@FreeBSD.org, shish@FreeBSD.org X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list Reply-To: Moritz Wilhelmy List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 07 Mar 2014 11:20:02 -0000 >Number: 187346 >Category: ports >Synopsis: switch emacs24 over to gnutls3 >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Fri Mar 07 11:20:01 UTC 2014 >Closed-Date: >Last-Modified: >Originator: Moritz Wilhelmy >Release: FreeBSD 9.1-RELEASE-p6 amd64 >Organization: >Environment: FreeBSD ports collection as of yesterday >Description: emacs24 still uses gnutls 2.x rather than gnutls 3.x. This is problematic because the 2.x series seems to be no longer maintained by upstream (at least, it isn't listed here: http://gnutls.org/download.html ). Since 3.x is already in the ports repository, emacs should be switched over to use the newer release series of gnutls. Two rather critical vulnerabilities were recently fixed in gnutls: http://gnutls.org/news.html Seeing that security/gnutls was last updated in Feb 2013 and 2.x was last updated in 2012 according to http://www.freshports.org/security/gnutls and the mtime on the distfiles on the gnutls master site, maybe it would be best to remove version 2.x from the ports tree entirely. Therefore I'm putting all the editors/emacs, security/gnutls and security/gnutls3 maintainers into Cc. (Sorry for excessive overzealousness) >How-To-Repeat: Compile emacs with gnutls enabled in "make config", watch it pull in security/gnutls rather than security/gnutls3 >Fix: >Release-Note: >Audit-Trail: >Unformatted: