From owner-svn-ports-head@freebsd.org Mon Oct 3 09:26:35 2016 Return-Path: Delivered-To: svn-ports-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D4083AF2EC5; Mon, 3 Oct 2016 09:26:35 +0000 (UTC) (envelope-from pi@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id A7074FDB; Mon, 3 Oct 2016 09:26:35 +0000 (UTC) (envelope-from pi@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id u939QYoM036939; Mon, 3 Oct 2016 09:26:34 GMT (envelope-from pi@FreeBSD.org) Received: (from pi@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id u939QYkc036937; Mon, 3 Oct 2016 09:26:34 GMT (envelope-from pi@FreeBSD.org) Message-Id: <201610030926.u939QYkc036937@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: pi set sender to pi@FreeBSD.org using -f From: Kurt Jaeger Date: Mon, 3 Oct 2016 09:26:34 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r423178 - head/databases/p5-DBD-mysql X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Oct 2016 09:26:35 -0000 Author: pi Date: Mon Oct 3 09:26:34 2016 New Revision: 423178 URL: https://svnweb.freebsd.org/changeset/ports/423178 Log: databases/p5-DBD-mysql: 4.036 -> 4.037 Security release to patch possible buffer overflow in prepared statements. Reported and fixed by Pali Rohar. This vulnerability is present in all releases at least back to versions 3.0 of the driver, which were released in 2005. Security: CVE-2016-1246 Changes: http://cpansearch.perl.org/src/MICHIELB/DBD-mysql-4.037/Changes MFH: 2016Q3 Modified: head/databases/p5-DBD-mysql/Makefile head/databases/p5-DBD-mysql/distinfo Modified: head/databases/p5-DBD-mysql/Makefile ============================================================================== --- head/databases/p5-DBD-mysql/Makefile Mon Oct 3 09:02:32 2016 (r423177) +++ head/databases/p5-DBD-mysql/Makefile Mon Oct 3 09:26:34 2016 (r423178) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= DBD-mysql -PORTVERSION= 4.036 +PORTVERSION= 4.037 CATEGORIES= databases perl5 MASTER_SITES= CPAN PKGNAMEPREFIX= p5- Modified: head/databases/p5-DBD-mysql/distinfo ============================================================================== --- head/databases/p5-DBD-mysql/distinfo Mon Oct 3 09:02:32 2016 (r423177) +++ head/databases/p5-DBD-mysql/distinfo Mon Oct 3 09:26:34 2016 (r423178) @@ -1,3 +1,3 @@ -TIMESTAMP = 1473321825 -SHA256 (DBD-mysql-4.036.tar.gz) = 5c48a823f86b8110ccb6504c6176ca248b52f56829dd4548bc39c3509f4154cf -SIZE (DBD-mysql-4.036.tar.gz) = 146513 +TIMESTAMP = 1475482010 +SHA256 (DBD-mysql-4.037.tar.gz) = df578acef28ed3f6aaae52dc98e6821a1407d3bfa88585255729bb0ebfed3cfc +SIZE (DBD-mysql-4.037.tar.gz) = 146639