svn commit: r512280 - branches/2019Q3/security/bro
Craig Leres
leres at FreeBSD.org
Wed Sep 18 17:16:17 UTC 2019
Author: leres
Date: Wed Sep 18 17:16:16 2019
New Revision: 512280
URL: https://svnweb.freebsd.org/changeset/ports/512280
Log:
MFH: r512245
security/bro: Update to 2.6.4 and address a potential Denial of
Service vulnerability:
https://raw.githubusercontent.com/zeek/zeek/3b5a9f88ece1d274edee897837e280ef751bde94/NEWS
- The NTLM analyzer did not properly handle AV Pair sequences that
were either empty or unterminated, resulting in invalid memory
access or heap buffer over-read. The NTLM analyzer is enabled
by default and used in the analysis of SMB, DCE/RPC, and GSSAPI
protocols.
Approved by: ler (mentor, implicit)
Security: 55571619-454e-4769-b1e5-28354659e152
Approved by: ports-secteam (miwi)
Modified:
branches/2019Q3/security/bro/Makefile
branches/2019Q3/security/bro/distinfo
Directory Properties:
branches/2019Q3/ (props changed)
Modified: branches/2019Q3/security/bro/Makefile
==============================================================================
--- branches/2019Q3/security/bro/Makefile Wed Sep 18 17:14:34 2019 (r512279)
+++ branches/2019Q3/security/bro/Makefile Wed Sep 18 17:16:16 2019 (r512280)
@@ -2,7 +2,7 @@
# $FreeBSD$
PORTNAME= bro
-PORTVERSION= 2.6.3
+PORTVERSION= 2.6.4
CATEGORIES= security
MASTER_SITES= https://www.zeek.org/downloads/
DISTFILES= ${DISTNAME}${EXTRACT_SUFX}
Modified: branches/2019Q3/security/bro/distinfo
==============================================================================
--- branches/2019Q3/security/bro/distinfo Wed Sep 18 17:14:34 2019 (r512279)
+++ branches/2019Q3/security/bro/distinfo Wed Sep 18 17:16:16 2019 (r512280)
@@ -1,5 +1,5 @@
-TIMESTAMP = 1565320389
-SHA256 (bro-2.6.3.tar.gz) = 469dd7456af388ba65d8722fbfdd5b9182f14def16149aa5ebceb1cfd881697f
-SIZE (bro-2.6.3.tar.gz) = 28480249
+TIMESTAMP = 1568760632
+SHA256 (bro-2.6.4.tar.gz) = a47a9cdcef0ea14d5f70c390ab266f0333063ff96f3869a5f1609581a1d1ceb7
+SIZE (bro-2.6.4.tar.gz) = 28481281
SHA256 (bro-bro-netmap-cf88debf487b31ab30dc3b5bac64783b4e49997e_GH0.tar.gz) = 383423f92932c3ef244194954708b3a237b4f37ebc358014f51dcb3b9786896b
SIZE (bro-bro-netmap-cf88debf487b31ab30dc3b5bac64783b4e49997e_GH0.tar.gz) = 24630
More information about the svn-ports-all
mailing list