ports/136093: security/ca_root_nss is out of date
Bryan Drewery
bryan at shatow.net
Sat Jun 27 15:00:09 UTC 2009
>Number: 136093
>Category: ports
>Synopsis: security/ca_root_nss is out of date
>Confidential: no
>Severity: serious
>Priority: high
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sat Jun 27 15:00:08 UTC 2009
>Closed-Date:
>Last-Modified:
>Originator: Bryan Drewery
>Release: FreeBSD 7.2
>Organization:
>Environment:
>Description:
The NSS ca root port is at 3.11.9. The current release of the CA root is 3.12.3. Patch provided updated Makefile to use newest version.
>How-To-Repeat:
>Fix:
See patch.
Patch attached with submission follows:
--- Makefile.orig 2009-06-27 09:39:56.000000000 -0500
+++ Makefile 2009-06-27 09:50:25.000000000 -0500
@@ -25,7 +25,7 @@
CERTDIR?= share/certs
PLIST_SUB+= CERTDIR=${CERTDIR}
-VERSION_NSS= 3.11.9
+VERSION_NSS= 3.12.3
VERSION_APACHE= 1.3.41
VERSION_MODSSL= 2.8.31
MASTER_SITES_MODSSL= http://www.modssl.org/source/ \
@@ -34,7 +34,7 @@
ftp://ftp.fu-berlin.de/unix/security/mod_ssl/ \
${MASTER_SITE_RINGSERVER:S,%SUBDIR%,net/www/mod_ssl/source,}
MODSSL_FILE= mod_ssl-${VERSION_MODSSL}-${VERSION_APACHE}${EXTRACT_SUFX}
-NSS_FILE= nss-${VERSION_NSS}${EXTRACT_SUFX}
+NSS_FILE= nss-${VERSION_NSS}.tar.bz2
CERTDATA_TXT_PATH= nss-${VERSION_NSS}/mozilla/security/nss/lib/ckfw/builtins/certdata.txt
CA_BUNDLE_PL_PATH= mod_ssl-${VERSION_MODSSL}-${VERSION_APACHE}/pkg.sslcfg/ca-bundle.pl
@@ -51,7 +51,7 @@
@${MKDIR} ${WRKDIR}
@${TAR} -C ${WRKDIR} -xf ${DISTDIR}/${MODSSL_FILE} \
${CA_BUNDLE_PL_PATH}
- @${TAR} -C ${WRKDIR} -xf ${DISTDIR}/nss-${VERSION_NSS}${EXTRACT_SUFX} \
+ @${TAR} -C ${WRKDIR} -xf ${DISTDIR}/${NSS_FILE} \
${CERTDATA_TXT_PATH}
@${CP} ${WRKDIR}/${CA_BUNDLE_PL_PATH} ${WRKDIR}
@${CP} ${WRKDIR}/${CERTDATA_TXT_PATH} ${WRKDIR}
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list