Date: Fri, 7 Feb 2020 19:38:32 +0000 (UTC) From: Cy Schubert <cy@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r525498 - head/shells/ksh93-devel Message-ID: <202002071938.017JcWYN023753@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: cy Date: Fri Feb 7 19:38:32 2020 New Revision: 525498 URL: https://svnweb.freebsd.org/changeset/ports/525498 Log: Update to the latest att/ast github commit. This fixes CVE-2019-14868: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection. Submitted by: Siteshwar Vashisht <svashisht@redhat.com> Reported by: Marian Rehak MFH: 2020Q1 Security: CVE-2019-14868 https://bugzilla.redhat.com/show_bug.cgi?id=1757324 https://access.redhat.com/security/cve/CVE-2019-14868 Modified: head/shells/ksh93-devel/Makefile (contents, props changed) head/shells/ksh93-devel/distinfo (contents, props changed) Modified: head/shells/ksh93-devel/Makefile ============================================================================== --- head/shells/ksh93-devel/Makefile Fri Feb 7 19:38:23 2020 (r525497) +++ head/shells/ksh93-devel/Makefile Fri Feb 7 19:38:32 2020 (r525498) @@ -12,8 +12,8 @@ LICENSE= EPL USES= compiler:c11 meson ninja python:build -HASH= db54d369 -AST_COMMIT_DATE= 2020.01.30 +HASH= 8cf92b28 +AST_COMMIT_DATE= 2020.02.07 USE_GITHUB= yes GH_ACCOUNT= att Modified: head/shells/ksh93-devel/distinfo ============================================================================== --- head/shells/ksh93-devel/distinfo Fri Feb 7 19:38:23 2020 (r525497) +++ head/shells/ksh93-devel/distinfo Fri Feb 7 19:38:32 2020 (r525498) @@ -1,3 +1,3 @@ -TIMESTAMP = 1580443934 -SHA256 (att-ast-2020.01.30-db54d369_GH0.tar.gz) = 322deb2c6e63726751de7d0f0e1bae8de4047849b1956432a33555de11f5a750 -SIZE (att-ast-2020.01.30-db54d369_GH0.tar.gz) = 2229756 +TIMESTAMP = 1581102021 +SHA256 (att-ast-2020.02.07-8cf92b28_GH0.tar.gz) = bbff37f478c9dedd4f52ccf27ab3a90bb17f9fb0458ef11a1ac5316097df9278 +SIZE (att-ast-2020.02.07-8cf92b28_GH0.tar.gz) = 2229786
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202002071938.017JcWYN023753>