Date: Tue, 22 May 2018 19:30:50 +0000 (UTC) From: Kirill Ponomarev <krion@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r470654 - head/mail/sympa Message-ID: <201805221930.w4MJUoZw092657@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: krion Date: Tue May 22 19:30:50 2018 New Revision: 470654 URL: https://svnweb.freebsd.org/changeset/ports/470654 Log: Security update to 6.2.32 Description: A vulnerability has been discovered in Sympa web interface that allows write access to files on the server filesystem. This flaw allows to create or modify any file writable by the Sympa user, located on the server filesystem, using the function of Sympa web interface template file saving. PR: 227642 Submitted by: maintainer Modified: head/mail/sympa/Makefile head/mail/sympa/distinfo Modified: head/mail/sympa/Makefile ============================================================================== --- head/mail/sympa/Makefile Tue May 22 19:22:58 2018 (r470653) +++ head/mail/sympa/Makefile Tue May 22 19:30:50 2018 (r470654) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= sympa -DISTVERSION= 6.2.30 +DISTVERSION= 6.2.32 CATEGORIES= mail MAINTAINER= dgeo@centrale-marseille.fr Modified: head/mail/sympa/distinfo ============================================================================== --- head/mail/sympa/distinfo Tue May 22 19:22:58 2018 (r470653) +++ head/mail/sympa/distinfo Tue May 22 19:30:50 2018 (r470654) @@ -1,3 +1,3 @@ -TIMESTAMP = 1522755872 -SHA256 (sympa-community-sympa-6.2.30_GH0.tar.gz) = 3613738824c482719461675f93672811ba0618fb53caa5d8e6c9c956bb6d9fb1 -SIZE (sympa-community-sympa-6.2.30_GH0.tar.gz) = 10303628 +TIMESTAMP = 1524158051 +SHA256 (sympa-community-sympa-6.2.32_GH0.tar.gz) = ab3a17826846e74fe222f482aa6ab68fa5349f726dc1700d4512c348ab82807a +SIZE (sympa-community-sympa-6.2.32_GH0.tar.gz) = 10305699
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201805221930.w4MJUoZw092657>