ports/56705: Security fix for www/phpbb
Kevin Golding
kevin at caomhin.demon.co.uk
Thu Sep 11 15:40:18 UTC 2003
>Number: 56705
>Category: ports
>Synopsis: Security fix for www/phpbb
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Thu Sep 11 08:40:14 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator: Kevin Golding
>Release: FreeBSD 4.8-RELEASE-p1 i386
>Organization:
>Environment:
System: FreeBSD hive.caomhin.org 4.8-RELEASE-p1 FreeBSD 4.8-RELEASE-p1 #1: Tue Aug 5 07:52:48 GMT 2003 kgolding at hive.caomhin.org:/usr/obj/usr/src/sys/HIVE i386
>Description:
A vulnerability was discovered in www/phpbb that the project maintainers regard as serious. They updated the code but didn't roll a new tarball. The ports will complain about checksum mismatch so users should hopefully investigate further, but obviously it would be nice to have the correct checksum at some point.
>How-To-Repeat:
cd /usr/ports/www/phpbb && make checksum
>Fix:
--- phpbb-security begins here ---
--- distinfo.orig Sun Aug 24 11:37:24 2003
+++ distinfo Thu Sep 11 15:18:57 2003
@@ -1 +1 @@
-MD5 (phpBB-2.0.6.tar.bz2) = 28f20c82fce9ad6329b937c967eb1c72
+MD5 (phpBB-2.0.6.tar.bz2) = ee73baaac8f2f72c2a1d879ea811bd07
--- phpbb-security ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list