Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 23 Jul 2019 22:43:27 +0000 (UTC)
From:      Matthias Andree <mandree@FreeBSD.org>
To:        ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org
Subject:   svn commit: r507257 - in branches/2019Q3/security/putty: . files
Message-ID:  <201907232243.x6NMhRdt074907@repo.freebsd.org>

next in thread | raw e-mail | index | archive | help
Author: mandree
Date: Tue Jul 23 22:43:27 2019
New Revision: 507257
URL: https://svnweb.freebsd.org/changeset/ports/507257

Log:
  MFH: r507001
  
  Security update to new upstream release 0.72.
  
  Security fixes found by the EU-funded bug bounty:
  - two separate vulnerabilities affecting the obsolete SSH-1 protocol, both available before host key checking
  - a vulnerability in all the SSH client tools (PuTTY, Plink, PSFTP and PSCP) if a malicious program can impersonate Pageant
  
  Changelog:	https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
  
  Switch off -DSTATIC_GSSAPI build as that produces non-working executables
  (assertion failures). Bug has been reported upstream.
  
  Security:	5914705c-ab03-11e9-a4f9-080027ac955c
  
  Approved by:	ports-secteam (miwi)

Deleted:
  branches/2019Q3/security/putty/files/patch-config.c
  branches/2019Q3/security/putty/files/patch-settings.c
  branches/2019Q3/security/putty/files/patch-ssh.c
  branches/2019Q3/security/putty/files/patch-ssh2transport.c
  branches/2019Q3/security/putty/files/patch-ssh2userauth.c
  branches/2019Q3/security/putty/files/patch-sshserver.c
Modified:
  branches/2019Q3/security/putty/Makefile
  branches/2019Q3/security/putty/distinfo
Directory Properties:
  branches/2019Q3/   (props changed)

Modified: branches/2019Q3/security/putty/Makefile
==============================================================================
--- branches/2019Q3/security/putty/Makefile	Tue Jul 23 22:41:19 2019	(r507256)
+++ branches/2019Q3/security/putty/Makefile	Tue Jul 23 22:43:27 2019	(r507257)
@@ -1,7 +1,7 @@
 # $FreeBSD$
 
 PORTNAME=	putty
-PORTVERSION=	0.71
+PORTVERSION=	0.72
 CATEGORIES=	security ipv6
 MASTER_SITES=	http://the.earth.li/~sgtatham/putty/${PORTVERSION}/ \
 		ftp://ftp.chiark.greenend.org.uk/users/sgtatham/putty-latest/
@@ -34,7 +34,7 @@ CONFLICTS_INSTALL?=	pssh-[0-9]* putty-gtk2-[0-9]* putt
 
 .include <bsd.port.options.mk>
 
-CFLAGS+=	-DBSD_PTYS -DOMIT_UTMP -DIPV6
+CFLAGS+=	-DBSD_PTYS -DOMIT_UTMP -DIPV6 -DHAVE_FUTIMES
 LDFLAGS+=	-Wl,--as-needed
 
 .if (${PORT_OPTIONS:MGTK2} || ${PORT_OPTIONS:MGTK3}) && !defined(WITHOUT_X11)
@@ -64,15 +64,12 @@ MAKE_ARGS+=	GTK_CONFIG=:
 .endif
 
 .if ${PORT_OPTIONS:MGSSAPI_BASE}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:base,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .elif ${PORT_OPTIONS:MGSSAPI_HEIMDAL}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:heimdal,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .elif ${PORT_OPTIONS:MGSSAPI_MIT}
-_COMPAT=		-DSTATIC_GSSAPI
 USES+=		gssapi:mit,flags
 MAKE_ARGS+=	KRB5CONFIG=${KRB5CONFIG}
 .else

Modified: branches/2019Q3/security/putty/distinfo
==============================================================================
--- branches/2019Q3/security/putty/distinfo	Tue Jul 23 22:41:19 2019	(r507256)
+++ branches/2019Q3/security/putty/distinfo	Tue Jul 23 22:43:27 2019	(r507257)
@@ -1,3 +1,3 @@
-TIMESTAMP = 1552820659
-SHA256 (putty-0.71.tar.gz) = 2f931ce2f89780cc8ca7bbed90fcd22c44515d2773f5fa954069e209b48ec6b8
-SIZE (putty-0.71.tar.gz) = 2423752
+TIMESTAMP = 1563631735
+SHA256 (putty-0.72.tar.gz) = f236b5a26b0905809b3cd190158e8b95d81f86ad34fdd97a4312c1877f2cec5f
+SIZE (putty-0.72.tar.gz) = 2449516



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201907232243.x6NMhRdt074907>