ports/156391: [UPDATE] www/hiawatha

Thu Apr 14 07:00:21 UTC 2011

>Number:         156391
>Category:       ports
>Synopsis:       [UPDATE] www/hiawatha
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Thu Apr 14 07:00:02 UTC 2011
>Closed-Date:
>Last-Modified:
>Originator:     C-S
>Release:        
>Organization:
>Environment:
>Description:
Update to 7.4.1:

This is a security update incorporating the patch that was already applied in the previous version of this port.
>How-To-Repeat:

>Fix:


Patch attached with submission follows:

diff -ruN hiawatha.orig/Makefile hiawatha/Makefile

--- hiawatha.orig/Makefile	2011-04-14 08:53:33.752589985 +0200
+++ hiawatha/Makefile	2011-04-14 08:53:40.206320432 +0200
@@ -6,8 +6,7 @@
 #
 
 PORTNAME=	hiawatha
-PORTVERSION=	7.4
-PORTREVISION=	1
+PORTVERSION=	7.4.1
 CATEGORIES=	www
 MASTER_SITES=	http://www.hiawatha-webserver.org/files/ \
 		http://www.c-s.li/ports/
diff -ruN hiawatha.orig/distinfo hiawatha/distinfo
--- hiawatha.orig/distinfo	2011-04-14 08:53:33.752589985 +0200
+++ hiawatha/distinfo	2011-04-14 08:53:40.206320432 +0200
@@ -1,2 +1,2 @@
-SHA256 (hiawatha-7.4.tar.gz) = 71e8935926e91632c0e601520f1b60c20dc961e085c692454018c6ac86ab58d2
-SIZE (hiawatha-7.4.tar.gz) = 274169
+SHA256 (hiawatha-7.4.1.tar.gz) = d541447c9d8cfec5f306772a8f67449cd456d8a34243b8e0a7a8efc6f3975d35
+SIZE (hiawatha-7.4.1.tar.gz) = 275573
diff -ruN hiawatha.orig/files/patch-hiawatha.c hiawatha/files/patch-hiawatha.c
--- hiawatha.orig/files/patch-hiawatha.c	2011-04-14 08:53:33.752589985 +0200
+++ hiawatha/files/patch-hiawatha.c	1970-01-01 01:00:00.000000000 +0100
@@ -1,19 +0,0 @@
---- ./hiawatha.c.orig	2010-11-02 17:03:24.000000000 -0400
-+++ ./hiawatha.c	2011-02-25 16:41:31.000000000 -0500
-@@ -34,6 +34,7 @@
- #include <sys/wait.h>
- #include <sys/socket.h>
- #include <sys/time.h>
-+#include <limits.h>
- #include "alternative.h"
- #include "mimetype.h"
- #include "serverconfig.h"
-@@ -418,7 +419,7 @@
- 							*strend = '\0';
- 							content_length = str2int(strstart);
- 							*strend = '\r';
--							if (content_length < 0) {
-+							if ((content_length < 0) || (INT_MAX - content_length - 2 <= header_length)) {
- 								result = 400;
- 								break;
- 							}


>Release-Note:
>Audit-Trail:
>Unformatted:

