From nobody Sun Sep 17 15:30:01 2023 X-Original-To: dev-commits-ports-all@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RpX1546tbz4t576; Sun, 17 Sep 2023 15:30:01 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4RpX153CbYz4Q1T; Sun, 17 Sep 2023 15:30:01 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1694964601; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=/wNE8/v1jhHRnCWPioMntm+N/NJkxOXliYMVpA5egDg=; b=G2BwhylakQPBq4L4IrBzk+UQIBY6N+apPsDCUHkxesOtFuPcvPZW5dJ4ntBM+JkqjpIpy+ 6bJAGH+ud5gXWPX9ySS38OEPXzobysXsS7RGWt5x+ZAk+RaU/zexy3PbsGhf9ySzw1R1XY SPgUE8QFPVE5bwEsg+Pm43T/6JWrMwy7V6AivXfehLan7hSy5tLuZ+PfADDZ+/XMeiFhXE iBgs0m+nulBq9h82w4c9Ubs4TRS5HNhrbXlfm6oELeIAt9mz84pV+E8cGUI8Y/BjGNf2C8 NyCuB+KbC/skj7NGoIvEMHJxR4fjvCCKOBwmxX99EAXGNNwGwlGZBGVPF4mk+w== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1694964601; a=rsa-sha256; cv=none; b=RUoSPflQvytgw5iRHqqBGS6zZER6dutTVl0vsx54Dc6RPwxu/bQIP8KWvff8zunwtSMs+G JGoJcOXaY8/fZbo4QRmgG6WVm9Fz1QFnw9X9fV/f6Jr6Wh0BOQYyBScpJgrM2XUyvLotf/ 6tYPYoZOM/w06AFLpU85a8spXZsx9cX99qYEivVP5FEC4bPvAtS9CC7ewHCmh7Ci5nxXgk jr/CztES7cC/OydqmWhe3AsTHSqmXfcmiPg+peopdHmZvECg2LBOg0OAHXcfmJEQpVgy9n PiQjit3MmU2OKkyl4LO6hBeRQglotx732WfGA7kJfkiXXJ4DvhNKdlwcgmcuAg== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1694964601; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=/wNE8/v1jhHRnCWPioMntm+N/NJkxOXliYMVpA5egDg=; b=GOaA1utOj6mWIH5n48iqZvQB9Q7tbI+Tb3ipvLZcCm8XZkaGgEMz6y0wx4w2soHcpi0uxW 0XT6ktTy4SpG1XStbSMoj/u8cREyjgsnanwo4zJPYySU91KbdJ2Q5UageY+qT5GtnjPkHE QjnJxrVsKeir86GJzPgvmHnCTZEoPSYIhZPRqIAgYAzU9DS4MrrfmNkC8OrWFnGN/1q/eJ VWdbXmQHVLdbQc7d0vFDOygu0jh2uSMogdMcNdQC+hm05UJ5U59qMZBsXnAgQH8XS3IDwJ aSrjeyO+rwbK6YI5ZUyf42Efop9MfCtHnRYcc8FVapGwJbX9Neq4X7USjr+JGw== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4RpX15200nzv08; Sun, 17 Sep 2023 15:30:01 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.17.1/8.17.1) with ESMTP id 38HFU1ol008819; Sun, 17 Sep 2023 15:30:01 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.17.1/8.17.1/Submit) id 38HFU1hg008814; Sun, 17 Sep 2023 15:30:01 GMT (envelope-from git) Date: Sun, 17 Sep 2023 15:30:01 GMT Message-Id: <202309171530.38HFU1hg008814@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Robert Clausecker Subject: git: 9e3ed402d025 - main - net/routinator: Update to 0.12.2 List-Id: Commit messages for all branches of the ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-all List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-all@freebsd.org X-BeenThere: dev-commits-ports-all@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: fuz X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: 9e3ed402d025438539f648e7e46a1ad1131e374f Auto-Submitted: auto-generated The branch main has been updated by fuz: URL: https://cgit.FreeBSD.org/ports/commit/?id=9e3ed402d025438539f648e7e46a1ad1131e374f commit 9e3ed402d025438539f648e7e46a1ad1131e374f Author: Jaap Akkerhuis AuthorDate: 2023-09-15 12:04:30 +0000 Commit: Robert Clausecker CommitDate: 2023-09-17 15:23:15 +0000 net/routinator: Update to 0.12.2 Routinator 0.12.2 ‘Brutti, sporchi e cattivi’ This release fixes two issues in Routinator that can be exploited remotely by rogue RPKI CAs and repositories. We therefore advise all users of Routinator to upgrade to this release at their earliest convenience. The first issue, CVE-2022-39915, can lead to Routinator crashing when trying to decode certain illegal RPKI objects. The second issue, CVE-2022-39916, only affects users that have the rrdp-keep-responses option enabled which allows storing all received RRDP responses on disk. Because the file name for these responses is derived from the URI and the path wasn’t checked properly, a RRDP URI could be constructed that results in the response stored outside the directory, possibly overwriting existing files. We would like to thank Haya Shulman, Donika Mirdita and Niklas Vogel for discovering and reporting these issues. Changelog: https://nlnetlabs.nl/news/2023/Sep/13/routinator-0.12.2-released/ PR: 273826 MFH: 2023Q3 --- net/routinator/Makefile | 3 +-- net/routinator/Makefile.crates | 2 +- net/routinator/distinfo | 10 +++++----- 3 files changed, 7 insertions(+), 8 deletions(-) diff --git a/net/routinator/Makefile b/net/routinator/Makefile index b2c2c72fe7cf..01d7cfe1ff19 100644 --- a/net/routinator/Makefile +++ b/net/routinator/Makefile @@ -1,7 +1,6 @@ PORTNAME= routinator DISTVERSIONPREFIX= v -DISTVERSION= 0.12.1 -PORTREVISION= 6 +DISTVERSION= 0.12.2 CATEGORIES= net MASTER_SITES= ${ROUTINATOR_UI_URL}/v${ROUTINATOR_UI_VERSION}/:0 DISTFILES+= routinator-ui-build.tar.gz:0 diff --git a/net/routinator/Makefile.crates b/net/routinator/Makefile.crates index 49af910810a7..4c6d452859a1 100644 --- a/net/routinator/Makefile.crates +++ b/net/routinator/Makefile.crates @@ -3,7 +3,7 @@ CARGO_CRATES= adler-1.0.2 \ arc-swap-1.5.1 \ autocfg-1.1.0 \ base64-0.13.1 \ - bcder-0.7.0 \ + bcder-0.7.3 \ bitflags-1.3.2 \ bumpalo-3.11.1 \ bytes-1.3.0 \ diff --git a/net/routinator/distinfo b/net/routinator/distinfo index c6163855a8a9..e0b9a2a228ff 100644 --- a/net/routinator/distinfo +++ b/net/routinator/distinfo @@ -1,4 +1,4 @@ -TIMESTAMP = 1672860799 +TIMESTAMP = 1694695974 SHA256 (routinator-ui-build.tar.gz) = 7079096b3fd986aa01b03cf3e743cf74d37b8441d312844c25e2b065deed8290 SIZE (routinator-ui-build.tar.gz) = 756828 SHA256 (rust/crates/adler-1.0.2.crate) = f26201604c87b1e01bd3d98f8d5d9a8fcbb815e8cedb41ffccbeb4bf593a35fe @@ -11,8 +11,8 @@ SHA256 (rust/crates/autocfg-1.1.0.crate) = d468802bab17cbc0cc575e9b053f41e72aa36 SIZE (rust/crates/autocfg-1.1.0.crate) = 13272 SHA256 (rust/crates/base64-0.13.1.crate) = 9e1b586273c5702936fe7b7d6896644d8be71e6314cfe09d3167c95f712589e8 SIZE (rust/crates/base64-0.13.1.crate) = 61002 -SHA256 (rust/crates/bcder-0.7.0.crate) = f007d8acfb8ef7d219911c7164c025a6d3504735120fc5df59c3c479ab84ea51 -SIZE (rust/crates/bcder-0.7.0.crate) = 61289 +SHA256 (rust/crates/bcder-0.7.3.crate) = bf16bec990f8ea25cab661199904ef452fcf11f565c404ce6cffbdf3f8cbbc47 +SIZE (rust/crates/bcder-0.7.3.crate) = 63569 SHA256 (rust/crates/bitflags-1.3.2.crate) = bef38d45163c2f1dde094a7dfd33ccf595c92905c8f8f4fdc18d06fb1037718a SIZE (rust/crates/bitflags-1.3.2.crate) = 23021 SHA256 (rust/crates/bumpalo-3.11.1.crate) = 572f695136211188308f16ad2ca5c851a712c464060ae6974944458eb83880ba @@ -411,5 +411,5 @@ SHA256 (rust/crates/winreg-0.10.1.crate) = 80d0f4e272c85def139476380b12f9ac60926 SIZE (rust/crates/winreg-0.10.1.crate) = 25725 SHA256 (rust/crates/xattr-0.2.3.crate) = 6d1526bbe5aaeb5eb06885f4d987bcdfa5e23187055de9b83fe00156a821fabc SIZE (rust/crates/xattr-0.2.3.crate) = 11959 -SHA256 (NLnetLabs-routinator-v0.12.1_GH0.tar.gz) = 8150fe544f89205bb2d65bca46388f055cf13971d3163fe17508bf231f9ab8bc -SIZE (NLnetLabs-routinator-v0.12.1_GH0.tar.gz) = 5426830 +SHA256 (NLnetLabs-routinator-v0.12.2_GH0.tar.gz) = 5cc9c4aa4524bcde205c97c373e941db812675dc73dc42807c15aeb8bfbde22b +SIZE (NLnetLabs-routinator-v0.12.2_GH0.tar.gz) = 5427788