svn commit: r534277 - branches/2020Q2/security/zeek

Craig Leres leres at FreeBSD.org
Thu May 7 17:17:18 UTC 2020 

Author: leres
Date: Thu May  7 17:17:17 2020
New Revision: 534277
URL: https://svnweb.freebsd.org/changeset/ports/534277

Log:
  MFH: r534211
  
  security/zeek: Update to 3.0.6 and address multiple vulnerabilites:
  
      https://raw.githubusercontent.com/zeek/zeek/v3.0.6/NEWS
  
   - Fix buffer over-read in Ident analyzer
  
   - Fix SSL scripting error leading to uninitialized field access
     and memory leak
  
   - Fix POP3 analyzer global buffer over-read
  
   - Fix potential stack overflows due to use of Variable-Length-Arrays
  
  Other changes since 3.0.5 include:
  
   - Fix unusable `subscriber.poll()` method in Broker Python bindings
  
   - Fix uninitialized field access in `ssl/log-hostcerts-only.zeek`
  
   - Fix missing default function for Kerberos constant-lookup-tables
  
   - Fix cloning of `TypeType` values
  
   - Remove misleading error message on empty bloomfilter lookup
  
   - Fix `misc/stats.zeek` skipping log entry on termination
  
  Approved by:	ports-secteam (joneum)

Modified:
  branches/2020Q2/security/zeek/Makefile
  branches/2020Q2/security/zeek/distinfo
Directory Properties:
  branches/2020Q2/   (props changed)

Modified: branches/2020Q2/security/zeek/Makefile
==============================================================================
--- branches/2020Q2/security/zeek/Makefile	Thu May  7 17:11:41 2020	(r534276)
+++ branches/2020Q2/security/zeek/Makefile	Thu May  7 17:17:17 2020	(r534277)
@@ -2,7 +2,7 @@
 # $FreeBSD$
 
 PORTNAME=	zeek
-PORTVERSION=	3.0.4
+PORTVERSION=	3.0.6
 CATEGORIES=	security
 MASTER_SITES=	https://old.zeek.org/downloads/
 DISTFILES=	${DISTNAME}${EXTRACT_SUFX}

Modified: branches/2020Q2/security/zeek/distinfo
==============================================================================
--- branches/2020Q2/security/zeek/distinfo	Thu May  7 17:11:41 2020	(r534276)
+++ branches/2020Q2/security/zeek/distinfo	Thu May  7 17:17:17 2020	(r534277)
@@ -1,5 +1,5 @@
-TIMESTAMP = 1586896367
-SHA256 (zeek-3.0.4.tar.gz) = 73d609dde02936a8711f0bdede7e1143ad27693253a2ee0ca3d18560ca752207
-SIZE (zeek-3.0.4.tar.gz) = 29329199
+TIMESTAMP = 1588807625
+SHA256 (zeek-3.0.6.tar.gz) = 57cd56c21a1c55dbe3e65f704835496fd8ba6f7b1e3166dac9d8b5579cb78ad1
+SIZE (zeek-3.0.6.tar.gz) = 29331321
 SHA256 (bro-bro-netmap-f3620df_GH0.tar.gz) = e51f420781c9a01b0494f93d82f94a1b045725c1cff406c33887974a9940c655
 SIZE (bro-bro-netmap-f3620df_GH0.tar.gz) = 24661

More information about the svn-ports-all mailing list